Web3 Wallet Security Auditor
Bybit
About Bybit:
Established in March 2018, Bybit is one of the fastest growing cryptocurrency derivatives exchanges, with more than 10 million registered users. We offer a professional platform where crypto traders can find an ultra-fast matching engine, excellent customer service and multilingual community support. We provide innovative online spot and derivatives trading services, mining and staking products, as well as API support, to retail and institutional clients around the world, and strives to be the most reliable exchange for the emerging digital asset class.
Bybit's founder and CEO, Ben Zhou, was formerly from XM, one of the world's largest forex and CFD trading brokerage firms. The company comprises professionals from investment banks, tech firms, the forex industry, and early adopters of blockchain. The development team includes talents from Morgan Stanley, Baidu, Alibaba, Tencent, etc.
Our core values define us. We listen, care, and improve to create a faster, fairer, and more humane trading environment for our users.
Our innovative, highly advanced, user-friendly platform has been designed from the ground-up using best-in-class infrastructure to provide our users with the industry's safest, fastest, fairest, and most transparent trading experience. Built on customer-centric values, we endeavour to provide a professional, 24/7 multi-language customer support to help in a timely manner.
As of today, Bybit is one of the most trusted, reliable, and transparent cryptocurrency derivatives platforms in the space.
Responsibilities:
- Responsible for security audit work related to web3 wallet (mainly Java code), identify potential risks such as business requirements and Technology Implementation schemes, provide solutions and promote landing;
- Study the characteristics of the new chain, deeply understand the latent risks that may exist in the docking process of the new chain, and promote risk avoidance in code implementation;
- Participate in the R & D process of the entire Product R & D team and promote the implementation of SDL;
Qualifications:
- Familiar with and master relevant application security and blockchain security knowledge, understand the internal principles, mining methods, vulnerability code scenarios, exploitation methods, solutions, etc. of common security bugs;
- At least 3 years of experience in business development and security audit based on Java or other languages, leading or participating in SDL implementation;
- Familiar with the blockchain industry and related technologies, common security risks, and the working principles of mainstream chains (BTC, ETH, etc.);
- Familiar with commonly used encryption, decryption, signature, and other algorithms, especially those commonly used in web3 wallets, such as ECDSA, ED25519, RSA, AES, SSS, etc.;
- Have a certain background in penetration knowledge and be familiar with mainstream attack methods;
- Have a strong interest in emerging blockchain technology and be able to self-drive to learn and understand.
Preferred Qualifications:
- Actually wrote a local wallet project;
- Participated in well-known open source projects;
- Have some understanding of on-chain attack methods and have a deep understanding of the principles of attacks.
About Bybit:
Established in March 2018, Bybit is one of the fastest growing cryptocurrency derivatives exchanges, with more than 10 million registered users. We offer a professional platform where crypto traders can find an ultra-fast matching engine, excellent customer service and multilingual community support. We provide innovative online spot and derivatives trading services, mining and staking products, as well as API support, to retail and institutional clients around the world, and strives to be the most reliable exchange for the emerging digital asset class.
Bybit's founder and CEO, Ben Zhou, was formerly from XM, one of the world's largest forex and CFD trading brokerage firms. The company comprises professionals from investment banks, tech firms, the forex industry, and early adopters of blockchain. The development team includes talents from Morgan Stanley, Baidu, Alibaba, Tencent, etc.
Our core values define us. We listen, care, and improve to create a faster, fairer, and more humane trading environment for our users.
Our innovative, highly advanced, user-friendly platform has been designed from the ground-up using best-in-class infrastructure to provide our users with the industry's safest, fastest, fairest, and most transparent trading experience. Built on customer-centric values, we endeavour to provide a professional, 24/7 multi-language customer support to help in a timely manner.
As of today, Bybit is one of the most trusted, reliable, and transparent cryptocurrency derivatives platforms in the space.
Responsibilities:
- Responsible for security audit work related to web3 wallet (mainly Java code), identify potential risks such as business requirements and Technology Implementation schemes, provide solutions and promote landing;
- Study the characteristics of the new chain, deeply understand the latent risks that may exist in the docking process of the new chain, and promote risk avoidance in code implementation;
- Participate in the R & D process of the entire Product R & D team and promote the implementation of SDL;
Qualifications:
- Familiar with and master relevant application security and blockchain security knowledge, understand the internal principles, mining methods, vulnerability code scenarios, exploitation methods, solutions, etc. of common security bugs;
- At least 3 years of experience in business development and security audit based on Java or other languages, leading or participating in SDL implementation;
- Familiar with the blockchain industry and related technologies, common security risks, and the working principles of mainstream chains (BTC, ETH, etc.);
- Familiar with commonly used encryption, decryption, signature, and other algorithms, especially those commonly used in web3 wallets, such as ECDSA, ED25519, RSA, AES, SSS, etc.;
- Have a certain background in penetration knowledge and be familiar with mainstream attack methods;
- Have a strong interest in emerging blockchain technology and be able to self-drive to learn and understand.
Preferred Qualifications:
- Actually wrote a local wallet project;
- Participated in well-known open source projects;
- Have some understanding of on-chain attack methods and have a deep understanding of the principles of attacks.