logo inner

Senior Security Engineer

MagicUnited StatesRemote
This job is no longer open

Magic's aims to bring "a wallet to every internet user," focusing on simplifying the onboarding of mainstream users into the Web3 ecosystem and enabling Web3-powered use cases for customers.
Since our founding in 2018, we’ve onboarded over 25 million users and 170,000 developers into the Web3 ecosystem and enabled Web3 use cases for prominent brands such as Mattel and Forbes, while powering some of the top Web3 customers such as Polymarket, Helium, Immutable, and WalletConnect. We’ve also raised over $80 million from notable investors, including PayPal Ventures, Lightspeed, Placeholder, SV Angel, Naval Ravikant, and Balaji Srinivasan.Our team is deeply passionate about Magic's mission.

Joining Magic means partnering with the best minds in Web3 to shape our industry. We foster an environment that promotes peak performance by offering robust support through a collaborative culture, opportunities to make a meaningful impact, and a suite of top-tier benefits.If you are excited to shape the future of Web3, let's chat!

The Role


Magic's security team is critical – it is responsible for safeguarding Magic’s tools and products. We are looking for a Senior Security Engineer to play a pivotal role in expanding our security program. The Senior Security Engineer will also work on some of the most challenging and high-visibility risks the company is facing. You will identify and mitigate security risks in our product and infrastructure, in addition to conducting security assessments, and assist with investigations. The ideal candidate will be an innovative self-starter, who is motivated by our mission and results-driven, and will be able to extract, assimilate, and correlate a wide variety of data in order to surface and disrupt threat actors across multiple spaces. This is a fully remote position for US and Canada-based candidates.

Unfortunately, we are unable to sponsor or take over sponsorship of employment visas at this time, and applicants must be authorized to work for any employer in the US or Canada.

You will


  • Contribute to further securing our SDLC, to include secure coding practices, CI/CD pipelines, and regression tests. 
  • Lead and grow our vulnerability management program, which spans across our cloud infrastructure (AWS) and endpoint machines (macOS).
  • Collaborate with Engineering teams to harden our frontend and backend systems (Next.js, Typescript, AWS, Python)
  • Foster your extensive experience securing a cloud microservices platform like Kubernetes, including ingress/egress, and container communication. 
  • Manage our external bug bounty program and be able to technically contribute to mitigations.
  • Support compliance standards like NIST, ISO 27001, SOC 2 Type 2, and GDPR.
  • Build a security mindset across the organization by providing security guidance and best practices.
  • Take a holistic approach towards security, ensuring coverage from code quality up and out to our edge services including Cloudflare and Vercel.  
  • Participate in 24/7 on-call and security incidents, acting as Incident Manager.

You have


  • 6+ years of security engineering or software security experience in either frontend or backend environments. 
  • Experience with programming and scripting languages such as Python, Golang, or TypeScript.
  • Excellent Incident Management skills to navigate and lead incidents adeptly to ensure platform uptime.

Bonus Points:


  • Have previously built or managed a SIEM like OpenSearch or Splunk.
  • Built out modular authentication flows including WebAuthn OAuth.
  • Experience with Web3 protocol or smart contract security auditing.  

Benefits:


  • Fully remote team and flexible working hours
  • Competitive salary and stock options
  • Unlimited paid time off
  • Health, Vision, Dental, Disability, and Life Insurance
  • 401(k) program
  • Top of the line equipment
  • $300 monthly budget for home office needs and professional development
  • Annual team meetups

Salary Range: 


  • $170K-$210K

At Magic, we believe building a team full of diverse perspectives and experiences is vital to success. Therefore, we strongly encourage anyone historically underrepresented in tech to apply for this role. Magic does not discriminate based on gender, sexual orientation, race, religion, citizenship status, age, or physical ability. Empathy, authenticity, and inclusivity are at the core of all we do.US Candidates: Magic Labs, Inc. participates in E-Verify to confirm the identity and employment eligibility of all new US hires.

This job is no longer open

Life at Magic

Thrive Here & What We Value- Fully remote team and flexible working hours- Competitive salary and stock options- Unlimited paid time off- Health, Vision, and Dental insurance- 401(k) program- Top of the line equipment- Annual team meetups- Emphasis on building a diverse team with empathy, authenticity, and inclusivity.
Your tracker settings

We use cookies and similar methods to recognize visitors and remember their preferences. We also use them to measure ad campaign effectiveness, target ads and analyze site traffic. To learn more about these methods, including how to disable them, view our Cookie Policy or Privacy Policy.

By tapping `Accept`, you consent to the use of these methods by us and third parties. You can always change your tracker preferences by visiting our Cookie Policy.

logo innerThatStartupJob
Discover the best startup and their job positions, all in one place.
Copyright © 2024