About the company
Interested in working on cutting-edge blockchain technology and creating equitable access to the global financial system? Since 2014, the mission-driven team at the Stellar Development Foundation (SDF) has helped fuel the tremendous growth of the Stellar blockchain network, an open-source platform that operates at high-scale today. Developers and companies around the world build on it, and the SDF team is expanding to support the rapidly growing and changing Stellar ecosystem. The launch of Soroban, the new smart contracts platform designed to work well with Stellar, brings a wealth of opportunity for innovation. When you join SDF as a Community Manager, you will be a part of a team thatās leveraging that opportunity to increase developer participation in order to bootstrap the ecosystem of tools, protocols, dapps, and educational resources necessary for Soroban to succeed.
Job Summary
In this role you will:
šLead efforts to design and improve our security vulnerability management programs both proactively (audits, etc) and reactively (patching policy, CVE tracking, etc) šEstablish a security framework (processes, training, etc) with the organization to incorporate security best practices in our everyday work. šBuild strong "security minded" policies with our partner teams to establish best practices and enforcement at SDF. šIdentify and build improvements on security tooling, processes, and documentation. šManage security reviews of third party vendors and track surface area of risk for use of their products and integrations at SDF. šDevelop and implement security solutions for network systems, ensuring compliance with future cybersecurity requirements. šWork closely with the IT & engineering teams on security analyses using SIEM tools and vulnerability assessments.
What You Will Bring:
š8+ years of experience in enterprise corporate security or similar šKnowledge of access control and identity management systems šExperience with network protocols and secure network design šProven experience in corporate security policy and familiarity with cybersecurity frameworks šStrong analytical skills with experience in SIEM tools like Splunk, vulnerability analysis, and risk assessments šAbility to coordinate security activities and lead technical aspects of security audits šCapability to build and run security training programs for the entire organization šExperience in developing and implementing technical solutions and processes to enhance our security stance šA strong track record working in a collaborative environment šExperience consulting with external vendors šExperience with MITRE, NIST, OWASP frameworks