Security Engineer

Responsibilities

• Monitor the performance and reliability Noble’s blockchain and all of our products from a security perspective
• Develop and maintain security policies, procedures, and best practices
• Triage all bug reports from both asset and ecosystem partners alongside the Developer Relations Manager
• Conduct simulations to stress-test Noble products under various market conditions and attack scenarios
• Work closely with the Product and Engineering teams to ensure robust security measures for all new developments on Noble’s blockchain
• Conduct regular security audits and vulnerability assessments of all assets and systems, and manage real-time monitoring systems to detect unusual activities and potential exploits
• Work with third party auditors on a weekly basis to ensure there is complete auditability of the Noble blockchain 
• Design and maintain secure key management systems for various asset types, including but not limited to RWAs, native tokens, and stablecoins. Work with third-party custodian providers like Fireblocks to ensure proper key management systems and signing processes
• Improve and maintain an incident response plan and develop mitigation strategies for identified risks
• Ensure all security measures comply with regulations and industry standards for both crypto and traditional institutions
• Implement safeguards to protect Noble against common crypto exploits, including but not limited to, MEV like sandwich attacks, flash loans, etc.
• Maintain secure mechanisms for liquidity provision and withdrawal and implement safeguards against impermanent loss and other liquidity risks
• Architect, implement, and maintain complex cloud infrastructure using tools like Terraform, with expertise in major cloud platforms including AWS and Google Cloud, ensuring scalability, security, and cost-effectiveness of multi-cloud environments
• Scope out and recommend a bug bounty program for Noble using industry leading service providers (i.e. HackerOne)

Requirements 

• 3+ years of experience in cybersecurity-related roles, including experience developing and implementing security procedures and processes
• Coding proficiency in Python and Golang
• Experience in cryptography, distributed systems, and risk analysis software and tooling
• Have a working knowledge of key security components of the Cosmos stack (CometBFT, Cosmos SDK, and IBC)
• Deep understanding of decentralized finance (DeFi), including trading and lending. 
• High-level understanding of off and on-chain asset systems, from bank deposits to mint allowances
• Strong problem-solving abilities, attention to detail, and the ability to work in a fast-paced environment
• Proficient in spoken and written English