Senior Offensive Security Engineer

Overview

This is an opportunity for an intermediate/senior level Offensive Security Professional to join our Product Security team. As an experienced researcher you will help maintain critical security systems within our architecture, as well as assisting the wider engineering and devops practices with their activities. In Product Security our mission is to continuously improve the security posture of BitMEX from the inside, and we are looking for someone capable and flexible who can work with our excellent staff on that mission!

A crypto trading exchange is a security environment that is fairly rare in the infosec industry: we regularly get attacked by nation-state APT groups, we have continuous attempts by everyone from script kiddies to our own users trying to find ways to illegitimately extract money from us, and we protect vast amounts of crypto. All at the same time having a software stack that requires extreme uptime, minimal latency, and absolute accuracy in how it takes and processes orders.

If you want to help protect an environment where the threats are very real and continuous, this is the job for you. We will check that you are not from the DPRK, be warned; it would not be the first (or second, or third) time.

Key Responsibilities

• Manage our bug bounty program, reviewing reports, engaging with researchers and cooperating with software engineering to fix bugs
• Reviewing the outcomes of external penetration tests, replicat