We are seeking an Application Security Engineer to join our team at Polygon Labs. As a full-stack security expert, you will be responsible for owning end-to-end security reviews, building and shipping a security CI/CD pipeline, and designing and maintaining specialized AI-powered code reviewers. You will also triage and manage the bug bounty program, follow through on remediation, and embed across engineering teams at all stages. The ideal candidate will have full-stack security fluency, smart contract security as a core competency, and proven AI workflow depth. We offer a comprehensive compensation plan, including remote work, industry-leading health insurance, 401k matching, and flexible time off.
Requirements
- Full-stack security fluency across multiple languages: Solidity, Go, TypeScript, and Python
- Smart contract security as a core competency: production experience auditing or building secure Solidity, deep familiarity with EVM internals, common DeFi protocol patterns, and the historical record of smart contract exploits
- Proven AI workflow depth, not just tool usage: custom prompt chains, CI integrations, and task-specific plugins for security work
- Experience making security decisions under real-time pressure in a Web3 environment
- A public portfolio that demonstrates your security thinking: audit reports, bug bounty writeups, research posts, or open-source tooling
Benefits
- Remote first global workforce
- Industry leading Medical, Dental and Vision health insurance
- Company matching 401k with 3% match
- $1,500 Home Office Set Up Allowance (life-time max)
- $200 Annual AI Allowance Program
- $75 Monthly internet or phone reimbursement
- Flexible Time Off
- Company issued laptop
- Egg freezing, mental health, and employee wellness benefits
Originally posted on Himalayas