Simplifying blockchain integration for developers everywhere
Socket is pioneering the first Chain Abstraction protocol, allowing developers to seamlessly integrate with any app, user, and asset across various rollups and chains. Trusted by over 100 wallets and applications, including Metamask, Coinbase, and Opensea, Socket has processed more than $10 billion ...
Socket offers competitive salaries, equity options, flexible remote work policies, and generous PTO to support work-life balance....
Socket fosters a culture of innovation and collaboration, prioritizing engineering excellence and a remote-friendly environment that encourages creati...
Socket • United States
About Us
Socket helps devs and security teams ship faster by cutting out security busywork. Thousands of orgs use Socket to safely find, audit, and manage open source code. Our customers — from Anthropic to xAI, and Figma to Vercel — love Socket (just check out their tweets to see for yourself!)
Founded by Feross Aboukhadijeh, a long-time open source maintainer with software downloaded over a billion times a month, Socket has raised $65M in funding from top angels, operators, and security leaders.
About the Role
Join Socket to build and scale our patching infrastructure that delivers secure, vetted packages to developers worldwide. You’ll be at the forefront of supply chain security, creating patches for critical vulnerabilities and building the systems that help the entire open source ecosystem stay secure.
This role combines deep technical work with meaningful community impact that benefits the entire ecosystem. As an early member of the Socket team, you’ll help shape how we scale this technology across the JavaScript ecosystem and beyond.
What You'll Do
Master Socket workflows, tools, and patching processes
Lead patching efforts for high-impact vulnerabilities across npm packages
Scale patch production to dozens or hundreds of patches per week
Help select and prioritize high-value patches
Provide technical input on patch prioritization based on ecosystem and customer impact
Build and improve automated patching infrastructure and tooling
Design and implement scalable patch generation and delivery systems
Develop automated vulnerability detection and patch creation workflows
Build APIs and integrations to deliver certified packages
Create tooling for patch quality assurance and testing
Work with security researchers to understand and patch critical vulnerabilities
Help shape the technical roadmap for expansion
Give developers quick, safe remediation options for widely-used packages
Help secure the software supply chain for millions of developers
What You'll Bring
Required:
3+ years of software engineering experience with production systems
Strong proficiency in Node.js, JavaScript, and TypeScript
Experience with package managers (npm, yarn, pnpm) and the JavaScript ecosystem
Understanding of software security concepts and vulnerability management
Experience building and scaling APIs and data processing pipelines
Familiarity with automated testing, CI/CD, and deployment systems
Preferred:
Experience with security tooling, vulnerability scanning, or patch management
Knowledge of software supply chain security challenges
Experience with other package ecosystems (Python, Go, Rust, etc.)
Open source contributions or package maintenance experience
Background in DevSecOps or security engineering
Experience with high-throughput data processing systems
Our Interview Process
Informational with a member from our Talent Team
Hiring Manager Interview
Take-home problem
Internal review of take-home
Live review of take-home
Debrief
Final Interview with Feross
References
Decision/Offer
We know how important clarity is when looking for a new role, so we've put together a read-me about the Interview Process at Socket.
Benefits: Our benefits are crafted to support you and your family, so you can take care of what matters most and thrive in and outside of work. We offer:
Market competitive salary bands
Meaningful equity program
Comprehensive health benefits for you and your family
Flexible time-off, holidays, and winter shutdown to rest & recharge
Paid parental leave
Remote-first, with quarterly team off-sites
At Socket, we
Pursue Excellence: We set ourselves apart by consistently delivering work of exceptional quality and distinction.
Move with urgency and focus: We prioritize swift, decisive action.
Think rigorously: We care about being right and it often takes reasoning from first principles to get there. We value alternative perspectives and have constructive discussions.
Trust and amplify: We overtrust, always assume good intent, and give specific feedback to help each other improve.
Feel a strong sense of ownership: We wear many hats and feel a strong sense of overall ownership of the company and we're non-territorial regarding our nominal domains.
Are customer obsessed: We relentlessly prioritize the needs of our customers, striving to exceed their expectations and delight them at every interaction.
Apply now or save it for later. Get alerts for similar jobs at Socket.
