Senior Blockchain Security Developer

## About us OpenZeppelin is the security standard onchain finance is built on. Founded in 2015, our mission is to accelerate the world's transition to an open financial system, built on open standards and secured by rigorous research. Our open-source Contract Libraries have facilitated over $35 trillion in onchain value and are used by 10 of the top 10 tokenized money market funds and 9 of the top 10 stablecoins by market cap. We combine AI-native security tooling with deep research and a decade of audit expertise to support leading institutions and crypto-native teams shaping the next generation of digital assets like DTCC, Fidelity, Coinbase, Uniswap, Aave, the Ethereum Foundation, and many more across the full secure development lifecycle.

## Within this, you will: - Own the development of the OpenZeppelin Contracts Library for Daml end-to-end: vaults, hooks, RBAC, credentials, messaging gateway, accounts, and more. - Lead the technical design and implementation of the year-1 Reference Implementations: privacy-preserving DEX, lending protocol, cross-chain stablecoin settlement, and confidential auction launchpad. - Implement and shepherd the OZ Daml versions of CIP-56, CIP-86, CIP-103, and CIP-104. Coordinate with Digital Asset on spec evolution and with ChainSafe on middleware alignment. - Run client-facing roadmap, design, and milestone discussions with Digital Asset, the Canton Foundation, and ChainSafe. - Collaborate with OpenZeppelin's auditors and security researchers on threat models, audit prep, and full-stack reviews for every Reference Implementation. - Use AI systems as core daily tools. Extend them: build agents, skills, and workflows that compound the team's leverage on the Canton engagement and beyond. - Apply AI directly to security work and share what works back to the team: audit assistance, invariant generation, spec analysis, fuzzing harnesses, custom evals. - Contribute developer-experience and security feedback upstream into the Canton protocol, Splice, the Daml SDK, and the Splice Wallet Kernel. - Conduct open-ended research around privacy-preserving DeFi, multi-party authorization patterns, and Canton-specific primitives; you'll have time to publish and contribute back to OpenZeppelin's body of knowledge.

## You have: - **Production Daml fluency**. You have shipped non-trivial Daml in production. - **3+ years of experience in UTXO-based protocol development**. You can reason about Canton's privacy boundaries. - **3+ years of experience on DeFi engineering in production**. You have shipped non-trivial DeFi primitives in production. - **A security-first mindset**. You think adversarially about every line of code you write. - **Library / SDK API design taste**. You've built reusable, import-first developer libraries. - **Cross-chain interoperability exposure**. Production work with at least one major cross-chain messaging protocol. - **Institutional / compliance design fluency**. You can design with credential gates, multi-party attestation, custody flows, and compliance hooks as native constraints. - **An AI-native workflow**. Claude Code, Cursor, or equivalent is your daily driver. - **Experience applying AI to security work**: You've already used AI as a serious instrument in security workflows. - **Fluency in client-facing communication (English)**. - **Autonomy and proactivity**.

## Benefits: - Company in-person gatherings in different locations around the world. - Fully remote work. - Flexible time off. - Paid parental leave. - One time work-from-home equipment stipend of up to $500 USD. - Medical insurance coverage. - Learning & Development opportunities. - Work with a global team in a fast-growing industry.

OpenZeppelin is the global leader in blockchain security, providing institutional-grade smart contract audits, open-source contract libraries, and developer tools for secure decentralized application development. The company serves financial institutions, DeFi protocols, and blockchain platforms, with 9 of the top 10 stablecoins and 10 of the top 10 tokenized funds built using OpenZeppelin Contracts.