Skip to content

Instantly share code, notes, and snippets.

@maurelian

maurelian/20171011-consensys-diligence-auditor-role.md

Last active October 14, 2017 18:45
Show Gist options
  • Save maurelian/aa88d22b4e036f176c440a129725a747 to your computer and use it in GitHub Desktop.
Save maurelian/aa88d22b4e036f176c440a129725a747 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
20171011-consensys-diligence-auditor-role.md

Smart Contract Auditor Role at ConsenSys Diligence

ConsenSys Diligence is looking for people with a strong knowledge of Solidity and the EVM, to audit exciting contract systems for both ConsenSys spokes, and our clients who are among the top quality projects on the ethereum blockchain.

Our job is to hack crucial contracts before the bad guys do.

Traits

  • You relish in technical subtleties and minutiae, and have a passion for combining them with creativity and insight to hack smart contracts.
  • You like to go deep learning about technical topics. When you want to understand something about the EVM, you either read the yellow paper, or the client written in your favorite language.
  • You're good at communicating what you've learned in tutorials, blog posts or documentation.

Skills and experience

MUST haves

  • Experience writing and deploying smart contract systems written in Solidity
  • Good knowledge of the inner-workings of the Ethereum Virtual Machine
  • Experience auditing smart contracts, with published materials you can point to
  • A commitment to improving security, ethics and best practices in the Ethereum ecosystem.
  • The ability to take ownership, and remain accountable for meeting deadlines

NICE to haves

  • Demonstrated expertise and contributions towards smart contract security, EIPs (Ethereum Improvement Proposals), or research.
  • Experience work in information security roles, such as ethical hacking, penetration testing, and software auditing
  • Experience in a software consulting environment
  • Experience with test driven software development
  • Knowledge of game theory and crypto-economics

The role

The primary focus of this role is:

Analyzing smart contracts written by our clients, and identifying opportunities to break them.

Other facets of this role include:

  • Creating reports describing findings and recommendations for our clients.
  • Researching and publishing articles related to smart contract design patterns, security, and best practices.
  • Identifying and learning how to use new tools for security analysis.
  • Be a good citizen of the ConsenSys "mesh", helping to foster a culture of learning, and technical excellence.
  • Building tools to automate our processes.

How to apply

Submit the following to this job posting: https://consensys.net/open-positions/?gh_jid=609611.

  • Your resume.
  • Informal responses to the following questions (where useful, please provide links):
    1. What things about ConsenSys Diligence do you find exciting?
    2. Are there any specific aspects to your background that you think will be an exciting addition to our team of smart contract auditors? If so, what are those things?
    3. How did you get involved in blockchain technologies? What have you built with them?
    4. Have you ever completed an audit, or otherwise identified a flaw or vulnerability in a smart contract?
    5. What security specific skills or experience do you possess?
    6. What is your ideal team working environment / style?
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment