2,400+ jobs from 680+ companies · Updated daily
Web3 Jobs & Crypto Jobs Where crypto teams hire. Where builders get found.
The #1 crypto-native job board for web3 jobs, crypto jobs & blockchain vacancies. Every role in the ecosystem — dev, design, marketing & more. Remote-first at top protocols, DAOs & companies.
By using web3vacancy you agree to our Terms of Service and Privacy Policy.
Don't just browse — get discovered
5,000+ web3 builders · 680+ companies hiring
Hiring in web3?
Post a vacancy. Reach the largest crypto-native talent pool — live in 24h.
Browse Talent Pool →
5,000+ vetted builders · open to work
Rather search yourself?
Browse the talent pool — filter crypto-native candidates and reach out direct.
2,400+Open Jobs
680+Companies
$180kAvg Salary
94%Remote Roles
We're live on
Latest Crypto Job Vacancies
About this role
Join Copper as a Principal Security Architect, leading security architecture for institutional digital asset infrastructure. Shape security patterns and ensure compliance while working in a hybrid model with a competitive salary.
Description
Since being founded in 2018, Copper has been building the standard for institutional digital asset infrastructure with a focus on custody, collateral management, and prime services.
Led by Amar Kuchinad, Copper's Global CEO, the firm provides a comprehensive suite of custody, trading and settlement solutions that reduce counterparty risk and bring greater capital and operational efficiency to digital asset markets. At the heart of Copper's offering is Multi-Party Computation (MPC) technology – the gold standard in secure custody. Copper’s multi-award winning custody system is unique in that it can be connected to centralised exchanges, DeFi applications and even staking pools without the assets leaving the custody.
Built on top of this state-of-the-art custody, ClearLoop is the first solution in the market that overcomes a growing industry challenge; counterparty risk with exchanges. This solution underpins a full prime services offering, connecting global exchanges, and enabling customers to trade and settle directly from the safety of their MPC-secured wallets. By reducing settlement time for transfers to a few milliseconds (without blockchain network dependency) and offering enhanced security measures, ClearLoop is rapidly reshaping the way asset managers trade and manage capital.
In addition to industry-leading security certifications, Copper has one of the strongest insurance coverages in the industry from an A+ rated insurer, positioning the firm as the partner of choice for institutions seeking to safeguard their assets.
Responsibilities
### Key Responsibilities:
- **Architectural authority**
- Hold formal security sign-off authority for major changes to Copper's platforms, infrastructure, and integrations.
- Shape and maintain the security architecture patterns, principles, and reference designs that engineering teams build against.
- Provide the senior technical security position in architectural and business decisions, including escalations where security and delivery pressures conflict.
- **Custody, signing, and cryptographic architecture**
- Provide architectural security leadership over Copper's signing infrastructure, working alongside specialist engineering and cryptography teams. Scope covers the people, process, and operational design around MPC-based signing. Solid conceptual grounding in threshold cryptography and signature schemes is required; cryptographer-level work is not.
- Review and approve changes to transaction construction, signing flows, approval policy, and key lifecycle operations.
- Provide architectural assurance over chain-of-trust constructs adjacent to custody, including verifiable build pipelines, hardware-backed code signing, and authenticator-bound administrative paths.
- **Multi-chain and integration security**
- Reason at architectural depth across the range of blockchains Copper supports, including EVM, UTXO, and account-based non-EVM families. This requires a working understanding of transaction construction, signing semantics, consensus assumptions, and validator and staking models across these environments, without being a protocol engineer in any of them.
- Assess third-party smart contract architectures, implementations, and audit reports to a level sufficient to understand the exploit and risk surface, without performing line-by-line code review.
- Review first-party integrations with partner networks, including those underpinning staking and similar on-chain participation, and form a defensible security position on the operational and contract risk Copper inherits.
- **Settlement, collateral, and off-exchange architecture**
- Provide architectural ownership of the security model for Copper's settlement, collateral mirroring, and off-exchange product surfaces.
- Reason about the trust boundaries between Copper, venues, and clients, and ensure architectural controls match the obligations each side carries.
- **Identity and access architecture**
- Own identity and access architecture as a dedicated pillar of the role.
- Set patterns for workforce, workload, and third-party identity across Entra ID, federated SSO, OAuth2 / OIDC, SAML, and modern authenticators.
- Govern entitlement design, privileged access, and access models for contractors, vendors, and external operators.
- **Cloud and platform security**
- Maintain working architectural fluency in both AWS and Azure, including network topology, segmentation, secrets handling, and platform telemetry.
- Produce reference patterns and, where needed, direct integration designs in the cloud and platform space.
- **Third-party and protocol risk**
- Lead technical security review of vendors, integrated venues, and protocols, including challenge of assurances that do not stand up to scrutiny.
- Support client and counterparty due diligence on the technical content most likely to be misrepresented or under-specified.
- **Policy, regulatory, and assurance support**
- Maintain a working understanding of the regulatory regimes applicable to Copper's licensed entities sufficient to translate architectural decisions into language Compliance and GRC can defend. Primary ownership of regulatory positioning sits elsewhere.
- Contribute to security policy, standards, and control framework development as the senior technical reviewer.
- Participate in resilience exercises and incident reviews where architectural input materially shapes the outcome.
Requirements
### Skills and Experience:
- **Essential**
- Multi-chain architectural literacy. Able to reason across EVM, UTXO, and non-EVM account-based chains at the level of transaction construction, signing, consensus, and validator models. Comfortable assessing third-party smart contract designs, implementations, and audit reports for exploit and risk surface without performing code review.
- Custody and signing architecture. Strong conceptual grasp of threshold signing, signature schemes, and key lifecycle. Able to design and challenge the operational architecture around signing, separation of duties, approval policy, key ceremony equivalents in MPC, and recovery, to a high standard.
- Settlement and collateral architecture. Demonstrable experience reasoning about settlement, collateral, and off-exchange constructs, including trust boundaries between custodians, venues, and clients.
- Identity and access architecture. Senior-level experience designing and governing identity across Entra ID, federated SSO, OAuth2 / OIDC, SAML, and modern authenticators. Comfortable with entitlement governance and third-party access design.
- Cloud security. Working architectural understanding of AWS and Azure, including the ability to produce reference patterns and limited direct integration designs.
- Architectural authority and judgement. Track record of holding sign-off on significant designs, taking defensible positions under uncertainty, and owning residual risk.
- Change review and assurance. Comfortable reviewing the work of engineering peers, infrastructure changes, and vendor designs, and able to hold the line where it matters.
- Communication. Able to operate credibly with engineers, senior business stakeholders, auditors, and regulators in the same week, without losing precision at any of them.
- **Desirable**
- Familiarity with chain-of-trust constructs including verifiable builds, reproducible build pipelines, and hardware-backed code signing.
- Awareness of the regulatory landscape relevant to digital asset custody and trading (for example FCA, FINMA, FSRA / ADGM, MiCA).
- Compliance familiarity across ISO 27001, SOC 2, and NIST CSF / 800-53, with the ability to map controls cleanly between them.
- Enterprise architecture grounding (TOGAF, SABSA) where it complements rather than replaces technical depth.
Conditions & Benefits
### Benefits:
- Paid Time Off - A minimum of 35 days of paid time off per year, inclusive of annual leave and public holidays. Employees also receive one additional day of annual leave for each year of service.
- Comprehensive Medical Insurance - Inclusive of dental, optical, audiology, and mental health coverage, with medical history disregarded.
- Life Insurance.
- Enhanced Pension Contributions - Includes an enhanced employer matching contribution.
- 24/7 Employee Assistance Programme (EAP).
Job Details
Salary$128,000–$212,000
LocationHybrid
AI Score★★★★★★★★★☆ 9/10
PostedJun 3, 2026 (1d ago)
Tags & Skills
cryptosecuritytechweb3Security Engineerhybrid
Tech Stack
EVM blockchainsISO 27001AWSCloud securityIdentity and access managementUTXO blockchainsSecurity architectureAzureRegulatory complianceSecure custodyCryptoSOC 2NIST CSFKey lifecycle managementSmart contractsMulti-Party Computation
Drop your CV — AI builds your profile
Drag & drop or click · PDF only · 60 seconds
3-5d avg. to first message
·
320+ hires made
No applications — teams find and message you directly
★★★★★Alex K. @ Aave
3 DeFi teams messaged me in 5 days
★★★★★Sarah M. @ Arbitrum
AI profile matched me perfectly
★★★★★James L. @ OpenZeppelin
2 interviews in my first week
★★★★★Maria V. @ Chainlink
Hired in 9 days, no cold apps
★★★★★Tom W. @ Polygon
Best web3 board, period
★★★★★Alex K. @ Aave
3 DeFi teams messaged me in 5 days
★★★★★Sarah M. @ Arbitrum
AI profile matched me perfectly
★★★★★James L. @ OpenZeppelin
2 interviews in my first week
★★★★★Maria V. @ Chainlink
Hired in 9 days, no cold apps
★★★★★Tom W. @ Polygon
Best web3 board, period
★★★★★David R. @ Solana
CV to offer in 11 days
★★★★★Nina T. @ MakerDAO
DAO found me, not the other way
★★★★★Chris P. @ Uniswap
Passive search actually works here
★★★★★Lena K. @ dYdX
Got 5 messages in first week
★★★★★Omar S. @ Optimism
Only board I recommend now
★★★★★David R. @ Solana
CV to offer in 11 days
★★★★★Nina T. @ MakerDAO
DAO found me, not the other way
★★★★★Chris P. @ Uniswap
Passive search actually works here
★★★★★Lena K. @ dYdX
Got 5 messages in first week
★★★★★Omar S. @ Optimism
Only board I recommend now
"Best talent pool in web3. We filled 3 senior Solidity roles in under 2 weeks — candidates were pre-vetted and ready."
Jessica H.
Head of Talent · Aave
"We stopped posting on LinkedIn. Web3Vacancy talent pool is where the real crypto-native builders are."
Daniel M.
VP Engineering · Arbitrum
AI-Powered Profile
Drop your CV. AI extracts skills, experience, and writes your bio
Get Discovered
Companies reach out to YOU directly — no applications needed
You're in Control
Identity stays hidden until a company unlocks your profile
100% Free Forever
No fees, no subscriptions. Companies pay, not you
5,000+Profiles
93%Contacted
3-5dAvg response