Matter Labs
Senior Infrastructure Security Engineer
Matter Labs
is a leading zero-knowledge blockchain company building ZKsync, a verifiable blockchain network secured by zero-knowledge proofs. With over $250 million in funding, we move fast, ship often, and judge ourselves by the impact we create.
About the Company At Matter Labs, we believe freedom drives progress and prosperity. Our mission is to advance freedom for all through mass adoption of crypto. More than 20 teams already run or are building custom ZKsync chains on our network, including
Crypto.com ,
Abstract ,
Lens ,
Deutsche Bank , and
Xsolla .
The Role Join Matter Labs as a Senior Infrastructure Security Engineer and play a critical role in securing the infrastructure that powers zkSync. You’ll work across cloud, application, and systems layers to build and maintain robust defenses, partnering closely with DevOps, engineering, and protocol security to embed security into everything we ship.
Key Responsibilities
Design and implement secure infrastructure, including hardening cloud environments, containers, and CI/CD pipelines.
Help build detection and monitoring systems (e.g., SIEM, alerting pipelines) for early threat detection and effective incident response.
Collaborate with engineers and DevOps to identify security risks in architecture reviews, system upgrades, and deployment plans.
Contribute to the design and review of Terraform, Ansible, or similar IaC to embed security from the ground up.
Participate in threat modeling, internal audits, and hands‑on vulnerability remediation across our stack.
Work closely with Protocol Security, DevOps, and Product Engineering to align on shared security goals and ensure coverage across the full lifecycle.
Optional: Help implement tools to detect unusual infrastructure-level activity from on‑chain signals (e.g., misuse of credentials or suspicious deployment patterns).
What We're Looking For
Strong Infrastructure Security Background – hands‑on experience securing cloud‑native environments (AWS, GCP), Kubernetes, CI/CD pipelines, and internal systems.
Deep Technical Fluency – knowledge of threat modeling, incident response, vulnerability management, and systems architecture.
IaC & DevSecOps Mindset – familiarity with Terraform, secrets management, and security automation tooling.
Bias for Action – a self‑starter comfortable with ambiguity who can drive security work through delivery.
Collaborative Communicator – able to partner across teams, raise risks constructively, and translate complex security concepts to both technical and non‑technical stakeholders.
Web3 Awareness (Nice to Have) – familiarity with the security considerations of decentralized infrastructure and open‑source ecosystems; bonus for knowledge of Ethereum, Solidity, or ZK‑related tech.
Work Model & Pay
Remote‑first: work wherever you’re most effective; optional travel to team or industry events. Ideally East Coast or European time zone.
Freedom & ownership culture: no time tracking, minimum bureaucracy—only results matter.
Benefits Snapshot
Competitive compensation, equity, and token package.
Premium health, dental, and vision coverage.
16 weeks paid parental leave.
Flexible paid time off plus company‑wide closure weeks.
$2 000 equipment stipend and $300 monthly co‑working allowance.
For more on how we work, check out our Team Handbook. [See full benefits]
#J-18808-Ljbffr
is a leading zero-knowledge blockchain company building ZKsync, a verifiable blockchain network secured by zero-knowledge proofs. With over $250 million in funding, we move fast, ship often, and judge ourselves by the impact we create.
About the Company At Matter Labs, we believe freedom drives progress and prosperity. Our mission is to advance freedom for all through mass adoption of crypto. More than 20 teams already run or are building custom ZKsync chains on our network, including
Crypto.com ,
Abstract ,
Lens ,
Deutsche Bank , and
Xsolla .
The Role Join Matter Labs as a Senior Infrastructure Security Engineer and play a critical role in securing the infrastructure that powers zkSync. You’ll work across cloud, application, and systems layers to build and maintain robust defenses, partnering closely with DevOps, engineering, and protocol security to embed security into everything we ship.
Key Responsibilities
Design and implement secure infrastructure, including hardening cloud environments, containers, and CI/CD pipelines.
Help build detection and monitoring systems (e.g., SIEM, alerting pipelines) for early threat detection and effective incident response.
Collaborate with engineers and DevOps to identify security risks in architecture reviews, system upgrades, and deployment plans.
Contribute to the design and review of Terraform, Ansible, or similar IaC to embed security from the ground up.
Participate in threat modeling, internal audits, and hands‑on vulnerability remediation across our stack.
Work closely with Protocol Security, DevOps, and Product Engineering to align on shared security goals and ensure coverage across the full lifecycle.
Optional: Help implement tools to detect unusual infrastructure-level activity from on‑chain signals (e.g., misuse of credentials or suspicious deployment patterns).
What We're Looking For
Strong Infrastructure Security Background – hands‑on experience securing cloud‑native environments (AWS, GCP), Kubernetes, CI/CD pipelines, and internal systems.
Deep Technical Fluency – knowledge of threat modeling, incident response, vulnerability management, and systems architecture.
IaC & DevSecOps Mindset – familiarity with Terraform, secrets management, and security automation tooling.
Bias for Action – a self‑starter comfortable with ambiguity who can drive security work through delivery.
Collaborative Communicator – able to partner across teams, raise risks constructively, and translate complex security concepts to both technical and non‑technical stakeholders.
Web3 Awareness (Nice to Have) – familiarity with the security considerations of decentralized infrastructure and open‑source ecosystems; bonus for knowledge of Ethereum, Solidity, or ZK‑related tech.
Work Model & Pay
Remote‑first: work wherever you’re most effective; optional travel to team or industry events. Ideally East Coast or European time zone.
Freedom & ownership culture: no time tracking, minimum bureaucracy—only results matter.
Benefits Snapshot
Competitive compensation, equity, and token package.
Premium health, dental, and vision coverage.
16 weeks paid parental leave.
Flexible paid time off plus company‑wide closure weeks.
$2 000 equipment stipend and $300 monthly co‑working allowance.
For more on how we work, check out our Team Handbook. [See full benefits]
#J-18808-Ljbffr