Web Application Security Engineer at TrustToken

In this role you’ll be protecting some of the world’s top crypto hedge funds, financial institutions, and traders from around the globe. This app is one of the main ways consumers interact with us as a company and brand, and so trust is paramount. 


  • Oversee the security of our TrueUSD web application
  • Manage private key security/crypto security
  • Smart contract security
  • Managing security audits of our smart contracts and web application
  • Threat modeling and risk assessment
  • Operational / company security
  • Managing and controlling risks from external vendors


  • Experience in securing web applications (including XSS, CSRF, 2FA/MFA, SSL, JWTs, SQL injection)
  • Knowledge of crypto and private key security (including smart contracts, multi-sig wallets, HW wallets, key splitting)
  • You love being the most paranoid person on the team
  • You should be sufficiently comfortable with full-stack web development to take a web application and secure it, without having to rely on other developers

Bonus Point For:

  • Blockchain experience
  • Experience building or managing fintech products

Our Current Tech Stack:

  • React
  • GraphQL
  • Apollo Client
  • Node
  • Express
  • Postgres
  • Heroku

Does this sound like you? We’d love to hear from you if so.