Senior Protocol Security Engineer
Role details
Job location
Tech stack
Job description
As a Senior Protocol Security Engineer at Kiln, you'll own the security of our smart contract products from design through production.
You'll work hands-on across smart contract audits, monitoring, incident response, and security tooling, collaborating closely with Smart Contract, Protocol, and Infrastructure teams to strengthen security and safety across the entire product lifecycle.
Reporting to the VP of Security, you'll play a key role in defining, implementing, and operating Kiln's smart contract security posture at scale., * Protect Kiln's production protocols accros Kiln Onchain (dedicated staking and liquid staking protocols), Kiln DeFi (ERC-4626 vaults built on top of lending and RWA protocols), and Railnet (vault and validator infrastructure).
- Design and execute smart contract security testing, including invariants, fuzzing, and exploratory formal verification.
- Perform internal smart contract security audits and provide clear, actionable remediation guidance.
- Own security sign-off for smart contract releases and act as a key decision-maker on security trade-offs.
- Contribute to protocol-level threat modelling, including economic, governance, and composability risks.
- Build and maintain smart contract security tooling: contract inventory, governance automation, monitoring, and alerting in production.
- Continuously improve Kiln's smart contract security framework: aligned with business growth, protocol complexity, and compliance requirements.
- Act as the primary point of contact for smart contract security at Kiln, coordinating with external auditors and supporting security certifications.
- Partner closely with Protocol, EVM, Infrastructure, and Product teams to embed security into design reviews, CI/CD, testing, and release workflows.
Stack:
- Smart Contracts (EVM): Solidity, Vyper, Foundry, Certora
- Software: Python, Golang
- Infrastructure: AWS, Kubernetes, Web3Signer, Hashicorp Vault, Prometheus
Requirements
Do you have experience in Security?, * 5+ years of engineering experience in Web3, with smart contracts running in production.
- Strong hands-on experience with smart contract security, including audits, reviews, or protocol design.
- Solid understanding of protocol-level threat models, including MEV and oracle manipulation, governance and economic attacks, and composability or systemic risk.
- Experience working with external auditors, security reviews, or certification processes.
- Familiarity with bug bounty programs and vulnerability disclosure workflows.
- Excellent communication skills, with the ability to explain complex security topics to both technical and non-technical stakeholders.
Nice to have
- CTF and Bug bounty track record.
- Contributions to open-source security or smart contract tooling.
- Fluent (written and spoken) in both French and English.
Benefits & conditions
At Kiln, our values drive us: Technical Excellence ensures top security and usability; Innovation-Driven Meritocracy elevates groundbreaking ideas; Trust and Transparency build reliability through open communication; and People First keeps our team and clients at the heart of everything we do.
- A fast-paced, bureaucracy-free work environment
- Equity share options in the business: if Kiln succeeds, we all succeed!
- Competitive salary
- Flexible holiday
- Flexible remote working
- Choose your IT equipment
- Internet connection: €50/month
- Significant personal development budget (books, training)
- Overseas tech conferences budget
