Security Maven

San Francisco
Hyperledger
Full-time

While this role is posted as San Francisco it could be located anywhere in the US, Canada, or UK, with slight preference to San Francisco, New York, or London.

Linux Foundation Overview
The Linux Foundation is creating the greatest shared technology investment in history by enabling open source collaboration across companies, developers, and users. We are the organization of choice to build ecosystems that accelerate open technology development and commercial adoption.

Role Overview
The Hyperledger project is looking for a driven Security Maven. This person will be responsible for raising the bar for secure coding practices within the Hyperledger software developer community, and raise the overall security reputation and public trust in Hyperledger software products. As a coder, the Security Maven will be immersed in the day to day development activities well enough to understand the landscape and emergent issues, and get ahead of the curve when new threats or weaknesses emerge.  They will also describe their work to non-technical audiences from time to time, so as to build that public trust.  Additionally, the Maven shall track and bring into Hyperledger advanced concepts related to the security of blockchain technologies. Travel should be expected about 20% of the time, to Hyperledger gatherings as well as other industry conferences and meetings.

Responsibilities

    • Implement secure coding practices and principles across Hyperledger projects
    • Leverage security-related resources made available to us, such as fuzzing or code scanning tools, or offers of technical assistance
    • Research and implement a security incident response mechanism across Hyperledger as a whole as well as the individual projects, as well as a CII Security Badge
    • Optionally, research and implement a bug bounty program, red teams, or other approaches to external validation
    • Monitor all technical conversations and interactions across Hyperledger projects, guiding them in positive and more secure directions as necessary

Qualifications

    • Deep familiarity with software security practices and principles
    • Deep familiarity with Open Source software development practices
    • History of technical contributions to existing Open Source projects
    • Strong verbal and written communication skills
    • Previous engagement in the finance industry desired

The Linux Foundation is a largely all-remote workforce that hires top-notch talent.  We are as passionate of providing a flexible and supportive work culture as we are in Open Source Software.  Collaboration is in our DNA, and we pride ourselves on being able to work closely together while not being tied to an office.  We offer exceptional benefits - e.g., Fantastic health care, Unlimited PTO, 100% 401k match up to $18k, profit-sharing and exceptional healthcare plans.

The Linux Foundation is an Equal Opportunity Employer.