About Spearbit & Cantina:
Founded in 2021 by former Ethereum Foundation Solidity engineers, Spearbit tackles Web3 security challenges. Our founding team built the leading blockchain language and secured the largest smart contract, protecting over $160B in value.
We're building Cantina —the "GitHub for Security"—connecting security researchers with projects needing expertise. Our Cantina security platform has powered major competitions and serves the leading projects in Web 3. It currently supports collaborative security reviews, public and private security competitions, bug bounty programs, incident response, and AI code analyzer.
Similar to how cloud-security startups emerged previously, Cantina aims to be the definitive code-security platform for the future.
The Opportunity: You’ll be the first responder for EVM product alerts - investigating issues, reproducing behavior, partnering with internal teams during “war rooms,” and keeping our systems resilient.
What You'll Do:
Work in a 24/7 environment and meet SLAs for the clients.
Decode transactions, logs, and traces; reproduce behavior with Foundry/Hardhat and minimal PoCs.
Partner with protocol, backend, and risk teams to help in the war room.
Maintain playbooks, dashboards, and alerts.
Track upstream changes (EIPs, deps, oracle/bridge notices) and surface product risks.
Produce concise incident briefs and post-mortems with actionable recommendations.
What You Bring:
EVM proficiency: Solidity and python
Strong debugging & tooling: Foundry/Anvil, Hardhat, Tenderly, Phalcon.
Clear writing, structured thinking, and calm execution under time pressure.
Prior Web2 on-call SRE, SOC, or IR experience (production incidents, paging culture, post-mortems).
Dune/SQL or The Graph for quick analyses.
Willing to join a nights/weekends on-call rotation.
Nice to Have
Chainlink & other oracles, cross-chain/bridge flows, L2 stacks (OP/Arbitrum/etc), or other chains (Solana).
Prior incident response and/or incident commander experience.
Security researcher or bug bounty background.
Understanding of the incident response lifecycle..
Benefits
Competitive salary and performance-based compensation opportunities
Opportunity to work in an early-stage startup with a talented and passionate team.
Exposure to high-profile clients in the blockchain and cryptocurrency industry
Join Spearbit and help us build the future of code security!
Top Skills
Similar Jobs
What you need to know about the Colorado Tech Scene
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
