Senior Operations Security Expert

Ethereum Foundation

Fully Remote


About the Ethereum Foundation

The Ethereum Foundation (EF) is a global non-profit organization dedicated to supporting Ethereum and related technologies
Our mission is to do what is best for Ethereum’s long-term success
Our role is to allocate resources to critical projects, to be a valued voice within the Ethereum ecosystem, and to advocate for Ethereum to the outside world
Your mission:

Your mission is to help the EF accomplish its mission by keeping our operations safe
You will maintain and improve our security measures on individual, team and organizational levels
You will be a resource for security expertise, an evangelist for its importance, and the primary resource for implementing organizational security measures
Core responsibilities:

Identify strategic risks to our organization

You will be responsible for thinking proactively about the EF’s risk profile, identifying threats to our operations or mission, working with internal stakeholders to balance risks against the costs of mitigating those risks, and ideating security solutions for our organization
Collaborate to implement security measures

Risks to the EF are spread across many different internal teams that operate relatively independently
Implementing security solutions will mean working with colleagues from different parts of our organization, with differing priorities and day-to-day realities

You will be responsible for figuring out how to make security solutions for work them, and then also implementing those solutions in practice
Advocate for security priorities in EF internal decision-making

Security is critical for many of our core operations
However, like any organization, the EF has conflicting priorities that need to be balanced in order to accomplish our mission
You will be responsible for advocating for security considerations when balancing priorities to ensure that our organization remains secure
About you:

You are security-minded


You are cautious, thoughtful, deeply technical, and have an intuitive feeling for the inherent risks in any endeavor backed by up-to-date knowledge of emerging cybersecurity trends and threats
You’re good with people


You’re good at building trust in relationships, you understand other perspectives, you like to collaborate, and you’re comfortable talking through priorities in impromptu verbal conversations
You appreciate people all around the world


You can effectively communicate with colleagues of different cultures in different countries and time zones, who are in full remote positions worldwide
You understand trade-offs between security and other priorities


Security is a bedrock consideration for the EF, but it is not the only consideration for accomplishing our aims
You have an appreciation for the many goals every organization pursues, and you’re eager to find inventive ways to make them work together
You want to work at a mission-aligned organization

, with people pursuing a shared vision for a better future
You can zoom in and out


 While meticulously fulfilling recurring and ad hoc tasks and needs, you are able to take a higher vantage point, finding patterns to improve and strategize
You're comfortable providing flexible solutions


 One size doesn't always fit all at EF and its independent teams
You respect and empower each team with nuances and what works best for them
You're eager to take on larger responsibilities over time


 You want a role that gives you many opportunities to grow your professional knowledge and skill set at a rapid pace
You understand that Ethereum is more than the tech


You're passionate about open source collaboration, decentralization, and playing positive-sum games, and truly want to see Ethereum succeed – not just for your professional or financial benefit, but because you believe it's good for the world

Required skills and experience:

    • Experience in a senior/lead operations security position of increasing responsibilities
    • Excellent verbal and written communication skills in English
    • Experience managing relationships with internal stakeholders who specialize in non-technical or non-security domains
    • Experience implementing changes to security and operational processes in remote organizations, developing and adopting security policies and procedures
    • Hands-on experience with incident response and handling security breaches
    • Familiarity with Ethereum or the general blockchain ecosystem is a plus
    • CISSP or CISM certification is a plus

Contract details:

    • Full-time position
    • Fully remote
    • Flexible work hours
    • Competitive compensation

To apply to this position, please include a brief (less than one page) cover letter explaining your qualifications, along with a resume or CV
Cover letters will be evaluated for their authenticity and inventiveness


Listed in: , , , , , , , ,