About the Ethereum Foundation
The Ethereum Foundation (EF) is a global non-profit organization dedicated to supporting Ethereum and related technologies. Our mission is to do what is best for Ethereum’s long-term success. Our role is to allocate resources to critical projects, to be a valued voice within the Ethereum ecosystem, and to advocate for Ethereum to the outside world.
Your mission is to help the EF accomplish its mission by keeping our operations safe. You will maintain and improve our security measures on individual, team and organizational levels. You will be a resource for security expertise, an evangelist for its importance, and the primary resource for implementing organizational security measures.
Identify strategic risks to our organization
You will be responsible for thinking proactively about the EF’s risk profile, identifying threats to our operations or mission, working with internal stakeholders to balance risks against the costs of mitigating those risks, and ideating security solutions for our organization.
Collaborate to implement security measures
Risks to the EF are spread across many different internal teams that operate relatively independently. Implementing security solutions will mean working with colleagues from different parts of our organization, with differing priorities and day-to-day realities. You will be responsible for figuring out how to make security solutions for work them, and then also implementing those solutions in practice.
Advocate for security priorities in EF internal decision-making
Security is critical for many of our core operations. However, like any organization, the EF has conflicting priorities that need to be balanced in order to accomplish our mission. You will be responsible for advocating for security considerations when balancing priorities to ensure that our organization remains secure.
You are security-minded. You are cautious, thoughtful, deeply technical, and have an intuitive feeling for the inherent risks in any endeavor backed by up-to-date knowledge of emerging cybersecurity trends and threats.
You’re good with people. You’re good at building trust in relationships, you understand other perspectives, you like to collaborate, and you’re comfortable talking through priorities in impromptu verbal conversations.
You appreciate people all around the world. You can effectively communicate with colleagues of different cultures in different countries and time zones, who are in full remote positions worldwide.
You understand trade-offs between security and other priorities. Security is a bedrock consideration for the EF, but it is not the only consideration for accomplishing our aims. You have an appreciation for the many goals every organization pursues, and you’re eager to find inventive ways to make them work together.
You want to work at a mission-aligned organization, with people pursuing a shared vision for a better future.
You can zoom in and out. While meticulously fulfilling recurring and ad hoc tasks and needs, you are able to take a higher vantage point, finding patterns to improve and strategize.
You're comfortable providing flexible solutions. One size doesn't always fit all at EF and its independent teams. You respect and empower each team with nuances and what works best for them.
You're eager to take on larger responsibilities over time. You want a role that gives you many opportunities to grow your professional knowledge and skill set at a rapid pace.
You understand that Ethereum is more than the tech. You're passionate about open source collaboration, decentralization, and playing positive-sum games, and truly want to see Ethereum succeed - not just for your professional or financial benefit, but because you believe it's good for the world.
Required skills and experience:Experience in a senior/lead operations security position of increasing responsibilitiesExcellent verbal and written communication skills in EnglishExperience managing relationships with internal stakeholders who specialize in non-technical or non-security domainsExperience implementing changes to security and operational processes in remote organizations, developing and adopting security policies and proceduresHands-on experience with incident response and handling security breachesFamiliarity with Ethereum or the general blockchain ecosystem is a plusCISSP or CISM certification is a plus
Contract details:Full-time positionFully remoteFlexible work hoursCompetitive compensation
To apply to this position, please include a brief (less than one page) cover letter explaining your qualifications, along with a resume or CV. Cover letters will be evaluated for their authenticity and inventiveness.