Company Name: Aptos Labs

Job Details: Be,an,Early,Applicant,Hiring,Remotely,in,USA,Remote,or,Hybrid,Senior,level

Job Url: https://builtin.com/job/head-security-aptos-foundation/6599486

Job Description: Aptos is a people-first blockchain on a mission to help billions of people achieve universal and fair access to decentralized assets in a safe and scalable way.Founded by some of the original creators and maintainers that researched, designed, and built the Diem blockchain to serve this purpose, we have dedicated several years toward this mission. We believe the open-source Diem technology we have developed is an important foundation of a safe and scalable web3 world where everyone has more equitable opportunities to grow and access financial assets with lower fees and fewer intermediaries.  Aptos (Ohlone for "The People") encompasses our mission and ethos for why we build.Head of Security, Aptos FoundationAptos is a people-first blockchain on a mission to help billions of people achieve universal and fair access to decentralized assets in a safe and scalable way.Founded by some of the original creators and maintainers that researched, designed, and built the Diem blockchain to serve this purpose, we have dedicated several years toward this mission. We believe the open-source Diem technology we have developed is an important foundation of a safe and scalable web3 world where everyone has more equitable opportunities to grow and access financial assets with lower fees and fewer intermediaries.  Aptos (Ohlone for "The People") encompasses our mission and ethos for why we build.About the role:We are seeking an experienced and self-motivated Head of Security (Aptos Foundation) to lead our digital and physical security efforts.The scope of the opportunity for security within our organization encompasses:Services like Discord and 1PasswordCompany hardware including phones and computersOperational deployments of our core infrastructure like Aptos Community page, Aptos Foundation page, Faucets, Indexer APIs, and other services within cloud infrastructure in AWS and GCPOperational configuration of validators, fullnodes, and other publicly reusable services that leverage Terraform and Pulumi across various cloud vendorsSoftware including:Distributed services like consensus, state synchronization, mempoolNetworking services like P2P network infrastructure using Noise, our REST APIs, and our IndexerStorage servicesVMs and their interface into the application spaceLibrary and application smart contractsCommand-line interface toolsSDKs across many languages (currently Rust, Python, and Typescript)Wallets – browser extension, mobile, custodial solutionsOur release processes for SDKs, Nodes, Indexers, Operational services, docker containers, and our walletWhat you’ll be doing: Audit, define, develop, and maintain an Information and Security Framework across Aptos in line with relevant legislation, regulation, and industry standards as applicableDefine, build, and maintain the required culture, plans, policies, procedures, systems, controls, reporting mechanisms, and assurance frameworkLeading training classes for both operational and software development securityContinuously reviewing our ongoing development processes to be engaged early in the process of software developmentDefine security goals and objectives, and align the wider team to themWhat we’re looking for:7+ years of relevant work experienceUnderstanding of best practices within Information Security and risk management including standards such as ISO/IEC 27001, NIST-CSF, CIS-20CSC, and CObITSecurity technologies and wider business solutions including identity and access management, Security Incident and Event Management (SIEM) and Security Operation Centre (SOC), remote working, and cloud-first technologiesAbility to think and plan strategically and systematically while deliveringAbility to work within a regulatory framework and to articulate its potential as a tool for continuous improvement across the wider organizationExperience conducting penetration tests and/or managing third-party audit firmsOur Benefits100% insurance premium coverage for medical, dental, and vision for you and your dependents (US Employees)Equipment of your choiceFlexible vacation time, 11 holidays, and floating company days off Competitive SalaryProtocol Token Grants401k matching (US Employees)Fun and inclusive in-person and digital eventsAptos is committed to diversity in the workplace, and we’re proud to be an Equal Opportunity Employer. We do not hire on the basis of race, color, religion, creed, gender, national origin, citizenship, age, disability, veteran status, marital status, pregnancy, parental status, sex, gender expression or identity, sexual orientation, or any other basis protected by local, state or federal law. All employment is decided based on qualifications, merit, and business need.We are committed to providing a safe and secure hiring process for all applicants. Unfortunately, there are individuals who may attempt to impersonate Aptos or our employees for fraudulent purposes.To protect yourself, please be aware of the following:We will never ask you for payment of any kind during the application or onboarding process, including fees for background checks, training, or equipment.We will always communicate with you using our official company email domain.We will never request your personal financial information, such as your social security number or bank account details, during the initial application stages or via email or a video/voice call when onboarding.