Offchainlabs11mo ago

Senior Security Engineer (Offensive)

RemoteFull-timemid

EngineeringSecuritySecurity EngineerCybersecurity

4 views0 saves0 applied

Apply Now

Quick Summary

Overview

At Offchain Labs, we aren’t just building products: we’re leading a movement. As pioneers in blockchain scalability and security, we're at the forefront of transforming how the world interacts with decentralized applications.

Technical Tools

awsgopython

At Offchain Labs, we aren’t just building products: we’re leading a movement.

As pioneers in blockchain scalability and security, we're at the forefront of transforming how the world interacts with decentralized applications. We're laying the foundation that will define the next generation of digital commerce, governance, and human interaction. This involves tackling real-world challenges that come with scaling blockchain technology, without compromising on its core principles: decentralization, security and transparency.

At the center of this vision is our people. Our team is made up of thinkers and doers that embrace new challenges and seek solutions that push existing boundaries. If you’re energized by solving unprecedented problems, and believe in the role that decentralized systems will play in creating a more equitable digital future, then we want to hear from you.

Why Offchain Labs?

Offchain Labs is setting the pace for the entire Ethereum ecosystem. We built the Arbitrum stack that powers Arbitrum One, the most widely adopted Ethereum scaling solution that exists today.

Arbitrum’s ecosystem is undergoing tremendous growth with hundreds of projects and dApps on Arbitrum One today. Over 100 different teams have used Offchain Labs technology to build their own Arbitrum chains. Major players in the space, Robinhood, BlackRock, Ethena Labs, Securitize, Aave, and Apechain are all using the Arbitrum stack.

Arbitrum’s thriving ecosystem wouldn’t exist without our advanced technology stack. Arbitrum, Prysm, ZeroDev. These aren’t just product names. These are tools that are actively reshaping what's possible on Ethereum and advancing its core infrastructure.

To top it all off? We’re backed by $124 million in funding. We’ve demonstrated consistent execution with billions in secured value, thousands of supported projects, and infrastructure processing millions of transactions seamlessly.

Conduct comprehensive code audits across a variety of internal applications and infrastructure.

Conduct comprehensive penetration tests across cloud environments (AWS), infrastructure, and backend applications.

Collaborate with detection engineering, threat intelligence, and incident response groups to review security controls, uncover coverage gaps, and enhance overall detection quality.

Build, maintain, and evolve custom offensive tools, scripts, and automation frameworks to increase assessment speed.

Offer offensive security expertise during incident investigations, including log analysis and root cause reviews.

Keep up with evolving threats, vulnerabilities, and attack methods; share research internally and engage with the wider security community.

Own offensive security projects from start to finish, mentor junior team members, and cultivate a culture of ongoing learning and knowledge exchange.

5+ years of experience in offensive security, penetration testing, red teaming, or a closely related field.

Extensive experience with conducting code audits to identify and remediate security issues.

Experience with binary exploitation.

Mastery of AWS & specific attack techniques and configuration weaknesses.

Strong understanding of adversary tactics and frameworks like MITRE ATT&CK.

In-depth knowledge of web application security, including OWASP Top 10, ASVS, and common vulnerability categories.

Proficiency using offensive security tools such as Burp Suite, nuclei~~Cobalt Strike,~~ and similar frameworks.

Strong programming skills in Python, Go, or similar languages, with proven experience developing tools or automation.

Excellent written and verbal communication skills, with the ability to present complex technical details as clear, risk-focused recommendations.

A natural ability to think like an attacker - creative, determined, and skilled at assessing risk across complex systems.

Web3 / blockchain security exposure: smart contract auditing, bug bounty hunting (e.g., Immunefi, Code4rena), or DeFi protocol review.

Familiarity with Ethereum L1 / L2 node architecture and security risks.

Experience in blockchain infrastructure penetration testing.

Location & Eligibility

Where is the job

Worldwide

Fully remote, anywhere in the world

Who can apply

Same as job location

Listed under

Worldwide

Listing Details

Posted: May 23, 2025
First seen: March 26, 2026
Last seen: May 11, 2026

Posting Health

Days active: 46
Repost count: 0
Trust Level: 30%
Scored at: May 11, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust

Apply for this position

Offchainlabs

lever

Jobs

View 12 jobs

View company profile

Apply now

External application · ~5 min on Offchainlabs's site

Please let Offchainlabs know you found this job on Jobera.

4 other jobs at Offchainlabs

View all →

Explore open roles at Offchainlabs.

Senior PR & Communications Manager

Full-time

Similar Security Engineer jobs

View all →

Stripe

Security Engineer - Offensive Security

Stripe

Security Engineer - Threat Detection

Emburse

Senior Security Engineer

Staff Security Engineer (Digital Trust Taiwan)

Newsletter

Stay ahead of the market

Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.

Join 12,000+ marketers

No spam. Unsubscribe at any time.

Senior Security Engineer (Offensive)

Apply Now

Senior Security Engineer (Offensive)

Quick Summary

Location & Eligibility

Listing Details

Posting Health

4 other jobs at Offchainlabs

Similar Security Engineer jobs

Browse Similar Jobs

Stay ahead of the market