Application Security Engineer

Role Responsibilities:

• Own end-to-end security reviews across smart contracts (Solidity), backend services (Go, TypeScript, Python), and frontend surfaces, producing written findings at the quality level of a top external audit firm.
• Build and ship an agentic security CI/CD pipeline: agent-driven review that runs autonomously against every PR and release candidate, reasoning about changes in context.
• Design and maintain specialized AI-powered code reviewers tuned to specific vulnerability classes, Solidity-aware and protocol-aware.

What You'll Need:

• Full-stack security fluency across multiple languages: Solidity, Go, TypeScript, and Python are the surfaces that matter most.
• Smart contract security as a core competency: production experience auditing or building secure Solidity, familiarity with EVM internals and DeFi protocol patterns.
• Proven AI workflow depth: custom prompt chains, CI integrations, and task-specific plugins built for security work.

Preferred Qualifications:

• Experience running or contributing to a structured bug bounty program (triage, researcher communication, severity calibration).
• Direct exposure to payments protocols, stablecoin infrastructure, or regulated fintech environments.
• Prior work building security tooling that other engineers actually use and adopt.

Polygon Labs Perks:

• Remote first global workforce.
• Industry leading Medical, Dental and Vision health insurance.
• Company matching 401k with 3% match and $1,500 Home Office Set Up Allowance.
• Flexible Time Off, company issued laptop, and wellness benefits including egg freezing and mental health support.