The Smart Contract Security Engineer will lead security audits, mentor engineers, oversee security architecture, and develop monitoring tools, ensuring the security of DeFi protocols.
Veda is the largest vault infrastructure platform in DeFi, powering the next generation of onchain financial products. Our BoringVault is the most widely used vault standard in DeFi, securing over $5 billion in TVL across 100k+ users and enabling institutions, protocols, and applications to build enterprise-grade yield products at scale.
Role
We're looking for a Smart Contract Security Engineer to serve as a core technical leader on our security team. You'll work directly with our Head of Security and engineering leadership to establish security standards, drive critical audits, and ensure the integrity of infrastructure managing billions in user assets.
This is a high-impact individual contributor role where you'll combine deep technical expertise with meaningful influence over Veda's security posture. You'll own complex security initiatives end-to-end, from architecture review to post-deployment monitoring, while elevating the security capabilities of engineers across the organization.
Key Responsibilities
Security Architecture and Auditing
- Lead end-to-end security audits of Veda's smart contract systems, with focus on the BoringVault architecture, cross-chain bridge integrations, and complex DeFi composability patterns
- Identify novel attack vectors in vault accounting logic, share pricing mechanisms, and multi-strategy capital allocation systems
- Partner with external audit firms to coordinate comprehensive reviews and effectively address findings
Technical Leadership
- Evolve Veda's smart contract security standards, testing methodologies, and deployment practices
- Mentor smart contract engineers on secure coding patterns, gas optimization trade-offs, and defense-in-depth strategies
- Serve as the security subject matter expert in architecture discussions and design reviews
Tooling & Research
- Build and maintain custom security tools including fuzzing harnesses, invariant testing frameworks, and symbolic execution pipelines
- Research emerging attack patterns in DeFi and translate findings into defensive measures
- Contribute to Veda's security knowledge base through internal documentation and post-mortems
Incident Response & Monitoring
- Design and implement real-time monitoring systems for on-chain anomaly detection
- Lead on-chain security incident response when needed, including root cause analysis and remediation
- Maintain security runbooks and escalation procedures for the engineering team
What You'll Bring
- EVM Expertise: Deep understanding of EVM architecture, opcode-level behavior, gas mechanics, and storage patterns.
- Solidity Mastery: 3+ years writing and auditing production Solidity code, with strong instincts for identifying subtle vulnerabilities in complex contract systems
- DeFi Security Experience: Proven track record conducting security audits or vulnerability research in DeFi protocols. You understand composability risks, oracle dependencies, and economic attack vectors
- Audit Methodology: Experience performing comprehensive smart contract audits from threat modeling through remediation validation
- Security Tooling: Hands-on experience with tools like Foundry, Echidna, Slither, Manticore, or similar frameworks for testing and analysis
- Communication: Exceptional written communication skills. You can translate complex technical vulnerabilities into clear, actionable guidance for both technical and non-technical stakeholders
- Proven Security Track Record: Professional experience at a tier-1 audit firm, security role at a leading DeFi protocol, or top placements in competitive audit contests
- Familiarity with MEV infrastructure, mempool analysis, and transaction ordering dependencies
- Understanding of cross-chain security challenges including bridge architecture, message verification, and multi-chain state synchronization
- Track record of discovering high-severity vulnerabilities in production DeFi protocols
Preferred Skills & Experience
- Active participation in security communities (competitive CTFs, bug bounties, or published research)
- Experience with symbolic execution and formal verification methods
- Experience with non-EVM environments (Solana, Move)
Benefits at Veda
We’re a small, tight-knit team building the infrastructure that powers a new generation of financial products, on-chain, composable, and accessible to anyone. We believe the full potential of DeFi is still ahead of us, and we’re here to help unlock it.
We also believe that great work comes from people who feel trusted, supported, and aligned with the mission. Here’s how we try to make that happen:
Health Coverage
We offer medical, dental, and vision coverage for employees. For international contractors, we work closely to ensure access to appropriate local or global health coverage.
Flexible Time Off
We don’t track vacation days. Take the time you need to rest and recharge—we trust you to manage your schedule.
Remote-First by Design
Our team spans time zones and geographies. We work async, with a focus on autonomy over micromanagement.
Parental Leave
Paid leave is available for new parents, whether you’re the primary or secondary caregiver.
Learning & Development
We offer stipends to support ongoing learning - whether it’s a course, a conference, or something else that helps you grow.
Top Skills
Echidna
Evm
Foundry
Manticore
Slither
Solidity
Similar Jobs
Cloud • Information Technology • Security • Software • Cybersecurity
Seeking a Senior Majors Account Executive to lead strategic customer engagements, manage complex sales cycles, and drive enterprise-level revenue growth. Ideal candidates will possess deep knowledge of enterprise architecture and cloud solutions, engaging with C-suite executives and leading virtual teams.
Top Skills:
Google SuiteMeddpiccMsft SuiteSalesforceTableau
Fintech • HR Tech • Payments • Social Impact • Financial Services
The Client Platform Engineer II will design, implement, and manage client endpoint platforms, develop automation strategies, enhance security, and mentor junior engineers.
Top Skills:
Ci/CdCrowdstrikeDhcpDnsFortinetGitGoogle WorkspaceIntuneJAMFJAMFJIRAMerakiNetskopeOktaPalo AltoPythonShellTcp/IpTerraformVpnZero TrustZscaler
Computer Vision • Healthtech • Information Technology • Logistics • Machine Learning • Software • Manufacturing
Dandy seeks a Principal Product Manager for supply chain technology, focusing on production planning and scheduling systems to enhance manufacturing efficacy.
Top Skills:
APIsManufacturing Execution Systems (Mes)SQLSystem Integrations
What you need to know about the Charlotte Tech Scene
Ranked among the hottest tech cities in 2024 by CompTIA, Charlotte is quickly cementing its place as a major U.S. tech hub. Home to more than 90,000 tech workers, the city’s ecosystem is primed for continued growth, fueled by billions in annual funding from heavyweights like Microsoft and RevTech Labs, which has created thousands of fintech jobs and made the city a go-to for tech pros looking for their next big opportunity.
Key Facts About Charlotte Tech
- Number of Tech Workers: 90,859; 6.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lowe’s, Bank of America, TIAA, Microsoft, Honeywell
- Key Industries: Fintech, artificial intelligence, cybersecurity, cloud computing, e-commerce
- Funding Landscape: $3.1 billion in venture capital funding in 2024 (CED)
- Notable Investors: Microsoft, Google, Falfurrias Management Partners, RevTech Labs Foundation
- Research Centers and Universities: University of North Carolina at Charlotte, Northeastern University, North Carolina Research Campus
