Senior Security Engineer

About the role

We seek a highly skilled and experienced Senior Security Engineer to join our dynamic team. As a Senior Security Engineer, you will play a critical role in ensuring the security and integrity of our systems, networks, and data. You will be responsible for designing, implementing, and maintaining security solutions to protect against internal and external threats. The ideal candidate should deeply understand security best practices, (blockchain) industry standards, and emerging technologies.

• Design and implement comprehensive security strategies and measures to safeguard systems, networks, and data from unauthorized access, vulnerabilities, and threats

• Develop and deliver security awareness programs and training sessions to educate on security risks, policies, and best practices. Promote a culture of security awareness and compliance

• Conduct regular vulnerability assessments and penetration tests to identify and address security vulnerabilities and weaknesses. Evaluate the effectiveness of existing security controls and recommend improvements

• Develop and implement incident response plans and procedures. Respond to security incidents, conduct investigations, and provide timely resolution. Collaborate with cross-functional teams to minimize the impact of security incidents and ensure business continuity

• Evaluate, select, and implement security tools, technologies, and solutions to enhance security. Manage and maintain security systems such as firewalls, intrusion detection/prevention systems, endpoint protection, and security information and event management (SIEM) systems

• Create and maintain security policies, procedures, guidelines, and documentation. Prepare and present security reports, metrics, and recommendations to management and stakeholders

WHO YOU ARE

• Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications such as CISSP, CISM, or CEH are desirable

• Proven experience working as a Security Engineer, preferably in a senior or leadership role

• Deep understanding of information security concepts, principles, and best practices

• Strong knowledge of IT enterprise providers such as AWS and Google

• Strong knowledge of security solutions for AWS (WAF, Shield, Trust Advisor, VPC flow logs), intrusion detection/prevention systems, and vulnerability scanning tools

• Familiarity with security compliance standards and regulations, such as ISO 27001 and GDPR

• Excellent problem-solving skills and ability to analyze complex security issues

• Strong communication and interpersonal skills, with the ability to effectively convey security concepts to both technical and non-technical stakeholders

• Proactive mindset and ability to work independently as well as collaboratively in a team environment

• Demonstrated ability to lead security projects and initiatives

WHAT WE CAN OFFER YOU

• Do you need resources to pursue your professional goals? → We got you covered with a personal education and conference budgets 

• Is there something that you would like to try out within our projects?  → You can use your Friday afternoons on research or on a side project in our ecosystem

• Our hierarchy is flat, so there is no chance to get lost in vertical looking organizational structure

• Not really an early bird? No worries!  → Flexible working schedules and remote work policies are, for a long time, part of our culture

• And do not worry about your equipment and subscriptions. We’ll equip you with the latest hardware and provide you with all the tools you need! 

But most important - grow with us! We're growing rapidly, the industry is expanding fast, and we have a lot to do. If you're someone who loves taking initiative and getting things done, there are a lot of opportunities for you at Gnosis. We’re enthusiastic about our shared mission and enjoy spending time together!

Please apply with your (English) resume. We look forward to your application!

At Gnosis, we strive to create an inclusive environment that empowers our employees. We believe that our products and services benefit from our diverse backgrounds and experiences and are proud to be an equal opportunity employer: all qualified applicants are considered for positions regardless of race, ethnic origin, age, religion or belief, marital status, gender identification, sexual orientation, or physical ability.

ABOUT US

Gnosis boasts an unparalleled track record of experimentation and building decentralized infrastructure for the Ethereum ecosystem. When Gnosis was founded in 2015, it focused on building prediction markets to enable worldwide access to accurate information. Today, as a DAO, Gnosis uses the products that it creates to transparently guide decisions on the development, support, and governance of its ecosystem. Safe, Cow Protocol, Conditional Tokens, Gnosis Auction, Zodiac, Agnostic Relay, and MEV Blocker are all products and protocols incubated by Gnosis.  

In November 2021, the xDai and GnosisDAO communities voted to combine their vibrant ecosystems to create the Gnosis Chain, an EVM compatible, community owned network that prioritizes credible neutrality. Secured by over 125k validators around the world, Gnosis Chain ensures a secure and resilient infrastructure. Users and developers on Gnosis Chain can also take advantage of familiar tooling and trust-minimized bridges to the Ethereum mainnet. Gnosis Chain employs the same execution and consensus layer clients as Ethereum, ensuring seamless integration with all future EIPs.

Most recently, we launched Gnosis Pay, the first decentralized payment network allowing web3 developers to integrate with a range of traditional payment schemes including Visa. Gnosis Pay allows users to spend their digital assets anywhere Visa is accepted with the same quick, seamless transactions they expect from a traditional debit card. 

Embrace the future of decentralized technology with Gnosis Chain, and join us as we continue to shape the next generation of web3 advancements. Together, we are building a decentralized ecosystem that empowers users and fosters global innovation.