GSR-3
Security Researcher

Culture

At Guardian, we are dedicated to delivering unparalleled Smart Contract Security and cultivating a space where you can truly unleash your highest potential.

Here's how our "Culture First" approach manifests:

• Culture fit: Beyond skill-level, a genuine alignment with our values is paramount. We only onboard individuals who truly resonate with our ethos and want to solve the problem of Smart Contract Security as much as we do.
• Pushing Each Other: Guardian is where A players come to learn from each other, compete, and reach new heights together.
• Championing The Team: At Guardian, nobody is bigger than the team — we all have each other’s back and understand that the best way to grow our own slice is to grow the whole pie.

What You’ll Do

• Conduct thorough and detailed Solidity security reviews, uncovering as many vulnerabilities as possible while making a significant impact on DeFi and Web3 adoption.
• Collaborate closely with peers and protocol developers to understand the full scope and nuances of the most influential and targeted Smart Contract systems in the world.
• Develop and implement proof-of-concept (PoC) exploits for identified high-impact vulnerabilities to demonstrate risk.
• Provide comprehensive and actionable remediation recommendations to clients, ensuring that they are both robust and feasible.
• Stay updated with the latest developments in Solidity, smart contract vulnerabilities, and mitigation techniques.
• Participate in team knowledge-sharing sessions and contribute to Guardian’s internal knowledge base.
• When not on engagements, Contribute to the creation and refinement of Guardian's security review methodologies and tools.
• Take ownership over security reviews and engagement outcomes.
• Mentor less experienced team members, sharing expertise and fostering skill development.
• Take “research weeks” to study whatever it is that interests you in DeFi or Security and otherwise recover from high performing engagement weeks.

Expected Results

• Consistently contributes to at least 70% of the findings in each engagement.
• Crafts reports masterfully with every issue clearly comprehended by clients.
• Validates all High and Critical issues with PoC’s.
• Reviews client remediations, ensuring no vulnerabilities are introduced.
• Owns testing and verification efforts with thoughtful fuzzing and written tests.
• Holds others to a standard of security excellence and leads by example.
• On engagements roughly 42 weeks of the year. Non-engagement time is spent reflecting as a team and improving team methodologies and tools.

What We Look For In You

We believe in hiring not just based on credentials, but also on passion and drive. While we do have a set of criteria, we're open to candidates who showcase exceptional talent and drive.

For the Ideal Candidate:

Experience:

• ≥3 years of Web3 Security experience
• Proven track record of outstanding performance and team leadership across countless reviews with Guardian or another team.

Achievements (At least 1):

• Demonstrates exceptional auditing performance, consistently ranking highly in public contests.
• Exhibits outstanding performance and dedication during private audits.
• Has a track record of commendable vulnerability disclosures.

Skills:

• Proficient in identifying vulnerabilities and implementing mitigation strategies.
• Strong understanding of Ethereum blockchain concepts, protocols, and associated security risks.
• Adept at crafting and testing proof-of-concept exploits.
• Skilled in effective communication and report writing, ensuring clarity and understanding for others.
• Familiarity with the latest tools, platforms, and methodologies in smart contract auditing.
• Proficient with advanced EVM concepts, can handle all assembly blocks without issue.

Traits:

• Detail-oriented and meticulous in analysis and review processes.
• Collaborative mindset, encouraging and facilitating team collaboration and fostering a positive working environment.
• Proactive in continuous learning, staying updated with the ever-evolving DeFi landscape.
• Independent thinker, able to generate unique solutions and perspectives while encouraging and enabling others to do the same.

Role Progression

We believe in creating opportunities to satisfy the largest of ambitions. Show us your potential, and we'll provide you with the opportunities and resources to ascend to Security Researcher levels, or leadership roles.

In your form submission below, be sure to include the phrase “red dot” in one of your responses.

Salary

• $180,000-$200,000 OTE (On-Target-Earnings), with a base salary being 50% and projected findings bonuses being 50%.
• Additional profit sharing after 1 year at the company.

Benefits

Flexible Working Hours 💡 - Enjoy the freedom to work remotely and choose the hours that align with your productivity peaks.

Team Retreats 🏝️ - Don’t just audit together, cultivate meaningful friendships that make fortifying the Web3 ecosystem a fulfilling experience with planned team retreats and get-togethers.

Paid Time Off (PTO) ✈️ - High performance requires high quality rest. We offer unlimited PTO, the right candidate derives great passion and fulfillment from security research and can manage their time off responsibly.