Security Software Engineer

About Us

As stewards of the Polkadot and Substrate ecosystem, Parity is laying the foundation for a better web—one that respects individual freedom and data, and empowers developers to build better services through decentralised technology. The internet is too important to billions of people for it to be at the mercy of a few powerful companies.

With a remote-first, global team, Parity is building open-source technologies for developers and organizations to implement and build upon. Our Web3 tech stack includes Polkadot, Substrate, and Kusama.

We believe in a decentralized web that respects individual freedom and data, enabling developers to create groundbreaking services. Our mission? To make Polkadot the most active and innovative community in blockchain.

People in Our Collective Are

• Highly motivated to contribute to Parity’s mission and be part of something bigger

• Excited to work on projects that are groundbreaking and complex

• Autonomous workers who self-initiate but also collaborate well

• Accountable and low-ego team players

• Comfortable adapting to the ever-changing Web3 space

• Continuously learning about Parity and the wider ecosystem

About the Team

Parity’s Security Engineering team is at the forefront of protecting the Polkadot ecosystem by designing and implementing secure software, auditing code for vulnerabilities, and building cutting-edge ML tools to automate security analysis. We work closely with development teams to embed security best practices across our open-source stack, ensuring that our blockchain infrastructure is robust, resilient, and secure by design.

About the Position

As a Software Security Engineer, you will go beyond traditional application security - you’ll audit and ideally write secure Rust or C++ code where needed, conduct deep manual and automated code audits, and leverage machine learning to enhance security across our ecosystem. This is an opportunity to shape the security landscape of the next generation of decentralized applications and protocols.

• Assist in developing Secure Software – Write and optimise Rust or C++ code to build security-critical components and tools.

• Code Auditing & Vulnerability Analysis – Perform deep manual and automated code reviews to identify and mitigate security vulnerabilities.

• ML-Powered Security – Design and implement machine learning models for automated security analysis, anomaly detection, and threat mitigation.

• Bug Bounty & Vulnerability Management – Manage bug bounty submissions, triage security reports, and collaborate with ethical hackers to resolve issues.

• Secure Development Best Practices – Work with engineering teams to integrate security best practices into the software development lifecycle.

• Threat Modeling & Risk Assessment – Identify and assess security risks in our blockchain infrastructure, smart contracts, and core software.

• Stay Cutting-Edge – Research and implement the latest advancements in secure coding, ML-driven security, and blockchain security.

• Strong software engineering skills with Rust or C++.

• Ability to influence best security practices across a wide range of stakeholders.

• Ability to understand the power of outcomes in influencing and delivering strong security and prioritising in an uncertain world.

• Experience with secure coding practices and memory safety concepts.

• Background in code auditing, vulnerability analysis, or exploit development.

• Experience triaging and resolving bug bounty reports.

• Knowledge of machine learning techniques applied to security (e.g., anomaly detection, fuzzing, automated threat detection).

• Familiarity with cryptographic principles, blockchain security, or decentralized systems.

• Strong problem-solving skills and an offensive security mindset. Ability to work independently in a remote-first environment.

• Experience in blockchain security, smart contract auditing, or protocol security research.

• Contributions to open-source security tools or ML security research.

• Prior work in formal verification, symbolic execution, or fuzz testing.

If you're excited about writing secure software, auditing code, and pioneering ML-driven security solutions for Web3, we’d love to hear from you!