Software Engineer (Security)

San Francisco, CA, United States • $125k - $150k • 0.1% - 1.0%

Magic Labs, Inc.

Role Location

  • San Francisco, CA, United States


  • $125k - $150k
  • 0.1% - 1.0%


11 - 25 people


396 Townsend St
San Francisco, CA, 94107, US

Tech Stack

  • Python
  • React
  • React Native
  • Terraform
  • AWS
  • TypeScript
  • JavaScript
  • MySQL
  • Redis
  • CI/CD

Role Description

Fortmatic is seeking to work with a highly talented and self-motivated Software Engineer/Security who is passionate about solving security problems at scale. As a Software Engineer/Security on the team, you will help to ensure the security of our products and systems throughout the development and the development life cycle (from both internal and external threats).

You will

  • Implement tools and automation to proactively detect security risks and threats for internal systems
  • Collaborate with other engineers to identify security gaps and integrate security into software development process
  • Perform scheduled technical security exercises, security assessments, and code audits
  • Ensure best security practices and procedures are maintained and carried out by all engineering teams through system design input and code reviews
  • Create internal frameworks and tools for engineers to use and to improve security
  • Develop automated technical solutions to help mitigate security vulnerabilities and integrity
  • Be the go-to expert for security concerns on the team

What you bring to the team

  • 3+ years of work experience in any security engineering domain using SDL, threat modeling, SIEM, vulnerability scanning, pentesting and etc.
  • Proficient in shell scripting and scripting languages in Python/Ruby
  • In-depth knowledge in secure coding practices and strong passion in helping other engineers to adopt them
  • Relevant knowledge in modern web app and mobile app security landscape, real-world attacks and mitigations
  • Strong foundation in applied cryptography, network and computer security, authentication and security protocols
  • Have hands-on experience in the public cloud environment leveraging best security practices


  • Experience in implementing an intrusion detection system with automated mitigation steps
  • Have DevOps experience in public cloud environments
  • Have participated in SOC2 Type 2 audit
  • Have a startup personality and mentality: smart, hardworking, productive, team player, ethical, can execute under pressure

Technologies that we are currently using include React, Python, Docker, AWS, HashiCorp, etc. We are deeply driven by the agile development principles. We are looking for people who share the same philosophy, perform under pressure and are comfortable with frequent change requests.

About Magic Labs, Inc.

We're a company that leverages blockchain to provide decentralized authentication. Our mission is to empower developers and users to own their auth, #OwnYourAuth. By owning your auth, you own the identities along with data generated with your identities. Fortmatic offers an SDK that enables developers to build and own their authentication experience, without being locked into any centralized identity provider and without compromising end-user privacy and security - a flexible and future-proof solution that will be able to support companies’ auth needs from start to scale.

Company Culture

We are a process- and procedure-driven company that values communication and resourceful attitude towards work. We adopt leader-to-leader mentality. Everyone in the company is a leader. They hold themselves accountable and go extra miles to make the products better. Team members get full autonomy on the projects that they are building. It is based on the foundation of the strong communication culture.

Interested in this role?
Skip straight to final-round interviews by applying through Triplebyte.