Responsibilities

📍Design and implement security measures across Story’s infrastructure, including cloud services, smart contracts, APIs, and databases, to ensure end-to-end protection. 📍Perform security assessments on the platform’s smart contracts, APIs, and services, identifying and mitigating vulnerabilities. 📍Develop and integrate security tools and processes for continuous monitoring, logging, and real-time alerts to proactively detect and respond to potential threats. 📍Collaborate with engineering teams to ensure secure coding practices, conducting regular code reviews and security audits of new features and updates. 📍Lead incident response efforts and work on post-mortem analysis to prevent recurrence of security incidents. 📍Evaluate third-party integrations for security risks, ensuring that all external partners and services comply with our security standards. 📍Stay ahead of emerging security threats in the blockchain/web3 space and contribute to the development of our threat intelligence framework. 📍Contribute to security policy development and foster a culture of security awareness across the organization through training and guidance.

Who you are:

📍Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or a related field. 📍5+ years of experience in security engineering, with a focus on blockchain technology, cloud infrastructure, web applications and services. 📍Deep understanding of security best practices for cloud platforms (AWS, GCP, or similar), including knowledge of IAM, network security, and infrastructure hardening. 📍Proven experience in performing security assessments and identifying vulnerabilities in code, infrastructure, and third-party services. 📍Familiarity with common security frameworks such as OWASP, NIST, and CIS. 📍Excellent problem-solving skills, with the ability to proactively mitigate potential risks before they become critical issues. 📍Strong communication skills, capable of articulating complex security concepts to both technical and non-technical stakeholders.