Senior Information Security Consultant
World Foundation is looking for a Senior Information Security Consultant. This is a role for a hands-on single contributor to support the Foundation in its role to perform oversight of the World protocol. This is not a role for box-tickers; you will be expected to think from first principles to solve novel security challenges at a global scale. Your work will ensure the protection and integrity of a protocol designed for the majority of humanity.
Key responsibilities
ā¢ Work with protocol, engineering, and privacy teams to provide guidance on security best practices and solutions
ā¢ Lead cybersecurity and IT risk assessments, support the development, and provide recommendations on risk mitigations and control plans
ā¢ Perform threat modelling and advise on solutions in particular with respect to crypto-related products and other technologies using advanced cryptography solutions
ā¢ Develop and improve security standards and frameworks to meet the future needs of World
ā¢ Monitor and analyze emerging security trends and share insights with the relevant stakeholders
ā¢ Deliver security training and awareness sessions tailored to various technical audiences
Required experience
ā¢ You have 6+ years of hands-on experience in Product Security, Application Security, or Cloud Security.
ā¢ You are confident in providing technical guidance to team members across cryptography, network design, application security, data protection, identity and access management, and related areas.
ā¢ You are proficient in code reviews
ā¢ You have extensive experience securing modern AWS architectures and developing secure infrastructure-as-code (e.g., Terraform and CDK).
ā¢ You have significant experience in leading threat modeling sessions and providing actionable guidance to engineering teams.
ā¢ You have experience in developing security governance frameworks as well as producing required security outputs
Apply tot his job
Apply To this Job
Key responsibilities
ā¢ Work with protocol, engineering, and privacy teams to provide guidance on security best practices and solutions
ā¢ Lead cybersecurity and IT risk assessments, support the development, and provide recommendations on risk mitigations and control plans
ā¢ Perform threat modelling and advise on solutions in particular with respect to crypto-related products and other technologies using advanced cryptography solutions
ā¢ Develop and improve security standards and frameworks to meet the future needs of World
ā¢ Monitor and analyze emerging security trends and share insights with the relevant stakeholders
ā¢ Deliver security training and awareness sessions tailored to various technical audiences
Required experience
ā¢ You have 6+ years of hands-on experience in Product Security, Application Security, or Cloud Security.
ā¢ You are confident in providing technical guidance to team members across cryptography, network design, application security, data protection, identity and access management, and related areas.
ā¢ You are proficient in code reviews
ā¢ You have extensive experience securing modern AWS architectures and developing secure infrastructure-as-code (e.g., Terraform and CDK).
ā¢ You have significant experience in leading threat modeling sessions and providing actionable guidance to engineering teams.
ā¢ You have experience in developing security governance frameworks as well as producing required security outputs
Apply tot his job
Apply To this Job