Security & Audit Jobs in Crypto & Web3

Smart contract auditors are the last line of defense before code goes live with user funds at stake. The work means reading contracts adversarially, hunting for reentrancy, access-control flaws, oracle manipulation, and arithmetic and logic bugs that automated tools miss, then writing clear reports that teams can act on.

Auditors typically master Solidity or Rust, use Foundry, Slither, and fuzzing or formal verification, and study every notable exploit closely. Employers and audit firms value a proven track record, whether through published reports, top finishes in audit contests on platforms like Code4rena or Sherlock, or responsibly disclosed bug bounties.

83open jobs
$112k–$180ktypical salary
52companies hiring
3added this week
100%remote

Open Security & Audit roles

83 jobs

Frequently asked questions

How do I break into smart contract auditing?
Build a track record through audit contests on Code4rena, Sherlock, or similar platforms, study past exploits, and publish writeups. Demonstrated findings matter more than credentials.
Do I need to be a developer first?
Yes, in practice. Auditing requires reading and reasoning about Solidity or Rust at a deep level, so strong contract development skills come first.
What tools do auditors use?
Foundry for testing and fuzzing, static analyzers like Slither, and sometimes formal verification, combined with rigorous manual review of the code.