Smart Contract Security Intern

Smart Contract Security Intern — Remote

DeVOLT is building VoltAudit, a smart contract auditing platform designed to run multiple AI agents in parallel to deliver comprehensive vulnerability reports in minutes. We are working toward replacing a process that costs $15,000 to $60,000 and takes weeks with something any developer can access for under $30. We are a small, fully remote team in active development and we want interns who want to build something from the ground up, not maintain something that already exists.

About the role

You will work directly on the security intelligence layer of VoltAudit as we build it. Your job is to help make our AI audit agents sharp and reliable from day one. You will research real world vulnerabilities and exploits, write test contracts to benchmark our agents, help design the prompts that power our audit engine, and work closely with the development team to embed security thinking into every part of the product. This is a hands on role. You will be contributing to something actively being built, not auditing a finished system.

What you will do

Conduct security assessments on Solidity smart contracts and identify vulnerabilities across common attack classes including reentrancy, access control flaws, integer overflow, flash loan exploits, and oracle manipulation. Write intentionally vulnerable Solidity contracts to benchmark and improve our AI agent accuracy as the pipeline is developed. Recommend effective remediation strategies for identified vulnerabilities and help document them clearly for our report output. Collaborate with the development team to embed security best practices throughout the smart contract and platform development lifecycle. Research recent DeFi exploits and post mortems and translate findings into actionable improvements for our AI agents. Review AI generated audit findings for false positives and missed vulnerabilities and provide iterative feedback. Help maintain and improve static analysis integrations with tools like Slither and Aderyn. Stay current on the latest smart contract vulnerability research, audit contest findings, and blockchain security advancements. Communicate findings clearly to both technical teammates and non technical stakeholders.

Qualifications

• Solid understanding of Solidity and EVM internals
• Demonstrated knowledge of smart contract vulnerability classes and attack vectors including reentrancy, access control flaws, flash loan exploits, and oracle manipulation
• Has participated in at least one audit contest on Code4rena, Sherlock, or Immunefi, or has completed the Cyfrin Updraft security and auditing course
• Comfortable reading and learning from professional audit reports published by firms like Pashov Audit Group, Trail of Bits, or Spearbit
• Strong written and verbal communication skills for clear collaboration across a remote team
• Self directed and async first work style where you manage your own time, flag blockers early, and deliver without needing micromanagement

Nice to have

• Hands on experience with Slither, Aderyn, Echidna, or Foundry
• Familiarity with AI assisted development tools such as Claude Code

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

• Has submitted a valid bug report in a public audit contest
• Prior remote work or open source contribution experience
• Background in computer science, information security, or a related field with a formal degree not required if you can demonstrate the skills

How we work

Fully async with no mandatory daily standups. One weekly sync call with the team, a shared task board, and a dedicated team chat. We measure results not hours. You are expected to own your work, communicate proactively, and ship consistently. We work with people across multiple time zones and accommodate flexible schedules.

How to apply

Send a short message introducing yourself along with a link to any audit contest submissions, bug reports, GitHub projects, or security research you have done whether formal or informal, and tell us why VoltAudit interests you. We care about what you have built and found, not your CV format.