SonicJobs Logo
Left arrow iconBack to search

Security / DevSecOps Engineer (Web3 Fintech)

Stealth
Posted 5 days ago, valid for 17 days
Location

Chicago, IL, US

Salary

$160,000 - $200,000 per year

Contract type

Full Time

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Sonic Summary

info
  • A venture-backed startup focused on fintech and Web3 is seeking a Security/DevSecOps Engineer with 4+ years of experience in security engineering or DevSecOps, including at least 1 year in a blockchain/Web3 context.
  • The role involves embedding security into the development pipeline, designing CI/CD pipelines, conducting threat modeling, and ensuring compliance with financial security frameworks.
  • Candidates should have hands-on experience with smart contract auditing tools and proficiency in Python, Go, or Solidity, along with cloud security expertise in AWS or GCP.
  • The compensation for this position ranges from $160K to $200K base salary, plus equity.
  • The startup is still in stealth mode, and specific product details will be shared under NDA during the interview process.

Venture-backed startup, focused on building foundational infrastructure at the intersection of fintech and Web3. We are currently in stealth mode, developing USHP- a next-generation product designed to address critical gaps in financial systems.

We are a small, deliberate team at an early stage. The people joining now will shape not just what we build, but how we build it, our culture, our standards, and our long-term trajectory. We are not looking for passengers; we are looking for builders who take ownership and thrive in environments where the path is still being defined.

Due to the nature of our work, specific product details are shared during the interview process under NDA.

USHP is building two related products: a proprietary daily predictive index of U.S. home prices, and an on-chain token whose value tracks that index. The token is collateralized by real U.S. residential properties and pays staking yield from the net income generated by the underlying portfolio. The protocol includes a full DeFi integration suite: Pendle yield tokenization, Aave/Morpho collateral, and Uniswap/Curve liquidity.

Security / DevSecOps Engineer — Web3 Fintech

About the Role Security is foundational architecture at our company. We're looking for a DevSecOps engineer who lives at the intersection of blockchain security and cloud infrastructure, and can embed security thinking into every stage of our development pipeline.

Responsibilities

  • Design and maintain CI/CD pipelines with integrated SAST, DAST, and SCA tooling
  • Conduct threat modeling, vulnerability assessments, and smart contract security reviews
  • Build automated security controls across AWS/GCP infrastructure (IAM, secrets management, network policies)
  • Monitor for incidents, anomalies, and on-chain threats; develop response playbooks
  • Own container and Kubernetes security hardening
  • Partner with engineering on secure-by-default coding practices
  • Ensure compliance with SOC 2, GDPR, and applicable financial security frameworks

Requirements

  • 4+ years in security engineering or DevSecOps, with at least 1 year in a blockchain/Web3 context
  • Hands-on experience with smart contract auditing tools (Slither, MythX, Echidna) or willingness to ramp quickly
  • Proficiency in Python, Go, or Solidity for scripting and tooling
  • Strong command of cloud security (AWS or GCP preferred), Docker, Kubernetes
  • Experience with Gnosis Safe, multi-sig wallet infrastructure, and key management systems is a major plus
  • Certifications (CISSP, CEH, AWS Security Specialty) are nice to have, not required

Compensation: $160K–$200K base + equity 




Learn more about this Employer on their Career Site

Apply now in a few quick clicks

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.