Magic simplifies web3 onboarding by providing the most simple solution to access its endless benefits. We help businesses of all sizes build trusted customer relationships like never before.
Magic has seen incredible traction since its founding in 2018, with year-over-year growth exceeding 300%. To date, we’ve created over 25 million wallets in partnership with leading brands like Mattel, Macy’s, 7-Eleven, Beam Suntory, Animoca Brands, Immutable, Xsolla, WalletConnect, Forbes, Synchrony, and Magic Eden. We’ve also raised over $80M from iconic investors such as Paypal Ventures, Tiger Global, Northzone, Placeholder, Cherubic, Lightspeed Ventures, Alexis Ohanian, and Balaji Srinivasan.Our team is deeply passionate about Magic’s mission.
Joining Magic means partnering with the best minds in Web3 to shape our industry. We foster an environment that promotes peak performance by offering robust support through a collaborative culture, opportunities to make a meaningful impact, and a suite of top-tier benefits. If you are excited to onboard the next billion users to web3, let’s chat!
The Role
Magic is seeking an experienced and passionate Security Technical Lead to join our security team. You will take on large areas of ownership in Magic’s application and infrastructure security, safeguarding our millions of end users’ data and assets. Security is the core pillar of our organization, and your work will be mission-critical to protect Magic’s customers. You will work closely with the CEO and partner cross-functionally to protect our infrastructure product and continue to perfect our security practices. If you are passionate about shaping the future of technology in a fast-paced startup environment, we’d love to hear from you!
Key Responsibilities:
- Technical Execution: Lead the hands-on technical aspects of safeguarding Magic and our customers, including implementing security features and operationalizing security measures and protocols.
- Cross-functional Collaboration: Work with cross-functional teams to seamlessly integrate security measures across all aspects of the organization.
- Player-Coach Role: Serve as a player-coach, offering technical guidance to the Security team and actively contributing to security initiatives.
- Risk Management: Identify and assess potential security risks and vulnerabilities, and develop strategies to mitigate and address them effectively.
- Incident Response Coordination: Lead the response to security incidents, including investigation, containment, and recovery efforts.
- Customer Advisory: Address security questions and advise on best security practices for customers during pre- and post-onboarding phases.
- Security Training and Awareness: Conduct security training sessions for staff and promote a culture of security awareness organization-wide.
- Stay Informed on Security Trends: Continuously research new security threats, trends, and technologies to enhance protective measures.
Qualifications:
- Bachelor's degree in Computer Science or a related field.
- Proven experience (5+ years) in a leadership role overseeing security functions, with 10+ years of holistic technical experience.
- Proficiency in implementing security features within application and infrastructure
- Experience securing cloud production environments and development pipelines
- Strong knowledge of SaaS architectures, web and mobile, and cybersecurity best practices.
- Excellent communication skills, with the ability to articulate complex technical concepts to cross-functional stakeholders and customers.
Bonus points:
- Understanding of blockchain technologies, protocols, exploits, and frameworks
- Experience with React/Typescript
- Previously helped shape a security program, incident response policy, and bug bounty program
- Experience in leading, participating, and maintaining SOC2 Type2, ISO27001, HIPAA, CCPA, or GDPR
- Interest in applied cryptography and cryptosystem design
Salary Range: $185K-$250K base
Benefits:
- Fully remote team and flexible working hours
- Competitive salary and stock options
- Unlimited paid time off
- Bonus eligible
- Health insurance for full-time employees
- Top-of-the-line equipment
- $300 monthly budget for home office needs and professional development for full-time employees
- Annual team meetups in the U.S.
Magic is an E-Verify employer which means as part of the hiring process, we will verify the identity and employment eligibility of all new hires using E-Verify. For more information please visit E-Verify.At Magic, we believe building a team full of diverse perspectives and experiences is vital to success. Therefore, we strongly encourage anyone historically underrepresented in tech to apply for this role. Magic does not discriminate based on gender, sexual orientation, race, religion, citizenship status, age, or physical ability.
Empathy, authenticity, and inclusivity are at the core of all we do.
