1. Design and development of security development engineers and tools, including but not limited to zero-trust gateways, security risk control engines, SIEM platforms, etc., to improve automation security defense capabilities;
2. Research new offensive and defense technologies (such as zero-trust architecture, container security), and promote algorithm optimization of security strategies and product implementation;
3. Have the ability to code audit (Java/Python/Web) and be able to provide standard repair solutions for the business;
4. Participate in product security architecture design review and lead the construction of Threat Modeling and SDL (Security Development Life Cycle) processes.

1. Bachelor's degree in computer science, engineering or related fields;
2. Familiar with network protocols, encryption, firewalls, and operating systems (Linux, Windows);
3. Deeply understand web security vulnerabilities (SQL injection, XSS, CSRF, etc.) and defense solutions, and be proficient in using Burp Suite, Nmap and other tools;
4. Familiar with at least one programming language such as Java, Go, Rust, C++, etc., and be able to read design documents and related code proficiently;
5. Be familiar with the ELK framework and have experience in developing Flink real-time detection engines first;
6. Experience in developing security tools and systems such as security risk control and zero-trust gateway are preferred.

1. Have relevant certifications in the field of network security, such as CompTIA Security+, Certified Ethical Hacker (CEH), and Offensive Security Certified Professional (OSCP), etc.;
2. Fluent English communication skills, able to effectively collaborate in a multilingual working environment;
3. Experience in smart contracts and public chain development is preferred.