Dusk Labs: Security Engineer - Research & Test

Related keywords: network engineer remote jobremote job researchremote job software engineer

Overview

Dusk Labs is looking for a mid-level Security Engineer to join their engineering team, which centers on security research and the creation of robust automated security testing infrastructure for their portfolio of fintech and cryptography projects. The role combines hands-on security analysis with systems engineering and is ideal for someone who can identify vulnerabilities and also build tools to continuously validate the security posture.

Role and Responsibilities

In this position, you will work across a diverse range of systems, from transport layer protocols implementing novel post-quantum cryptography to financial infrastructure that manages sensitive transactions. You'll be responsible for:

• Conducting security research and performing vulnerability analysis across fintech and cryptographic systems.

• Designing and building automated security testing infrastructure using Rust and shell scripts.

• Developing and maintaining comprehensive security test suites which include fuzzing, penetration testing automation, and cryptographic protocol testing.

• Building monitoring and alerting systems to detect security anomalies and potential attack vectors.

• Performing threat modeling and security assessments of system architecture and code implementations across multiple projects.

• Researching and analyzing emerging attack techniques, vulnerabilities, and defensive technologies relevant to financial systems and cryptographic protocols.

• Creating tools and frameworks for continuous security validation in CI/CD pipelines.

• Documenting security findings and translating research into actionable recommendations for the development team.

• Maintaining and enhancing existing security testing tools and infrastructure.

Required Qualifications

Candidates for this position should have:

• Strong software development fundamentals with 2-4 years of relevant experience.

• Solid experience with Rust or a willingness to learn quickly.

• Comfort with TypeScript and modern web technologies.

• Strong experience with Linux systems and shell scripting.

• Background in security testing methodologies including static analysis, dynamic analysis, and penetration testing.

• Knowledge of cryptographic concepts and secure coding practices.

• Experience in building automated testing infrastructure or CI/CD systems.

  

• Familiarity with security tools and frameworks like SAST, DAST, and fuzzing tools.

• Knowledge of network protocol analysis and traffic inspection tools.

• Strong analytical and problem-solving skills with attention to detail.

Preferred Qualifications

Although not required, the following qualifications would be advantageous:

• Experience with security research or vulnerability discovery.

• Background in cryptographic protocol analysis or implementation.

• Experience auditing DeFi protocols.

• Familiarity with containerization and orchestration technologies such as Docker and Kubernetes.

• Familiarity with reverse engineering tools and binary analysis.

• Experience with compliance frameworks and security standards.

• Background in malware analysis or incident response.

• Experience with cloud security and infrastructure-as-code.

• Open source contributions to security tools or research projects.

Work Environment

Dusk Labs prides itself on being an engineering-driven agency that assists early-stage companies in launching their engineering operations and aids mid-stage firms in developing greenfield software projects. They strive to remain at the cutting edge of technology while delivering high-quality work and unique results that set them apart from other development teams.

You will thrive in this role if you are passionate about technology, enjoy tackling complex problems, and are eager to learn. The company values autonomy and does not rigidly impose rules regarding work schedules. They prefer asynchronous communication and only hold occasional meetings, ensuring that these are efficient and minimize disruptions.

If you have a public record of your work, such as talks, publications, or open source projects, Dusk Labs would highly value seeing this, which can enhance your candidacy.

Conclusion

In summary, the Dusk Labs Security Engineer position is an exciting opportunity tailored for skilled individuals who are motivated by technology and are enthusiastic about joining a team focused on innovative security solutions in the fintech and cryptographic sectors. If you embody these traits and possess the required qualifications, this could be a great career move for you.

This job offer was originally published on weworkremotely.com