The Cosmos Ecosystem is a complex, multi-billion dollar decentralized web of software, networks, and organizations on the frontier of secure distributed systems infrastructure and applications. Informal Systems is a core contributor to Cosmos, where we specialize in the security of interoperable blockchain systems by relying heavily on formal verification tools and techniques.

As the Cosmos Security Lead at Informal Systems, you will lead security processes across the Cosmos ecosystem as part of a multi-entity Security Team dedicated to protecting the security of the various Cosmos-based networks, nurturing security culture, and coordinating effective vulnerability responses.

What your responsibilities will be:

  • Nurture and Lead the Cosmos Coordinated Vulnerability Disclosure Program.
  • Nurture and Lead the Cosmos Bug Bounty Program.
  • Develop and execute incident response playbooks.
  • Coordinate security incidents with various stakeholders.
  • Ensure security related events are identified quickly, escalated effectively, and responded to successfully.
  • Mentor team members to nurture security culture and leadership from others.
  • Build & deploy security infrastructure and automate security operations.
  • Provide operational oversight of security technology, processes, and operations.
  • Provide support and troubleshooting for security related incidents.
  • Work with R&D teams to improve overall security practices in the software development life-cycle
  • Improve the utilization of security tools within software-development, including static analysis, simulation, and formal verification
  • Nurture the Security Team for long-term success and sustainability

What we look for in a successful Security Lead:

  • At least 5 years experience in IT security, compliance, or risk management
  • At least 3 years experience in software development and deployment life-cycles
  • Significant experience with open-source software development and communities
  • Significant experience with coordinated vulnerability disclosure programs
  • Deep understanding of security fundamentals, processes, and tooling
  • A track record of discovering and/or responding to security vulnerabilities
  • Ability to critically evaluate impact and determine appropriate response to potential vulnerabilities in complex systems
  • Ability to navigate complex multi-stakeholder domains and effectively coordinate across organizations
  • The ability to take ownership and see initiatives through.
  • Excellent interpersonal skills, experience working with distributed teams, and enjoys working with and mentoring others.

About Informal

Informal is a remote-first company with offices in Toronto, Lausanne, Vienna and Berlin. We are structured like a worker’s cooperative, where important corporate actions are subject to one-person-one-vote democratic control by the member-employees. We provide 5-weeks of paid vacation, lifestyle benefits, and annual retreats with the whole team. We envision a sustainable future of cooperatively owned and governed, open-source, distributed organizations running on reliable distributed systems and are excited to grow the team with amazing individuals who believe in making this future a reality.

To Apply:

Please apply via this link where you’ll be prompted to upload a cover letter, CV, and other information that will help the review process go smoothly.

We are an equal opportunity employer and value diversity in our organization. We are committed to equal employment opportunities and encourage applications from people of all race, religion, colour, national origin, gender identity, sexual orientation, age, marital status, veteran status, or disability status.

Don’t miss updates from us
Don’t miss updates from us

We publish regular newsletters on what we're working on at Informal Systems. Stay up to date, and stay in touch, by subscribing today!

Email Address