CISSP jobs in crypto and blockchain companies

About UsBabylon Labs’ mission is to bring Bitcoin’s unparalleled security to the decentralised world via a new public Cosmos-SDK PoS blockchain (Babylon chain) and a suite of inter-chain protocols.At Babylon, we are at the forefront of web3 innovation by developing elegant and complex blockchain systems. As a Senior DevOps Engineer, you will spearhead the complete lifecycle of Babylon PoS networks and performant dApps.About the JobWe're seeking a highly motivated and security-conscious IT Administrator to build and maintain our robust IT infrastructure in a fast-paced, dynamic blockchain environment with a globally distributed workforce. You will be instrumental in establishing a "security-first" IT security posture by implementing best practices across all aspects of our IT operations. This role demands a proactive and adaptable individual with a strong understanding of modern security principles, including zero-trust architecture. You will be responsible for managing device distribution, MDM, Google Workspace, SSO, cloud environments, and GitHub access, ensuring seamless and secure operations for our geographically dispersed team.Responsibilities:Security Infrastructure Development:Design, implement, and maintain a secure IT infrastructure, adhering to Zero Trust principlesDevelop and enforce security policies and procedures for all IT systems and devices, taking into account diverse regional regulations and network conditions.Conduct regular security audits and vulnerability assessments, with a focus on remote access and endpoint security.Device Management & MDM (Worldwide Deployment):Manage device procurement, distribution, and lifecycle for a geographically diverse teamImplement and manage a Mobile Device Management (MDM) solution to ensure device security and compliance.Cloud & SaaS Administration:Administer Google Workspace, SSO solutions, SaaS application and cloud infrastructure (e.g., AWS, GCP, Azure), ensuring secure access and configurationAccess Control & Identity Management:Manage user accounts, permissions, and access control across all systems with the application of principles such as least privilege and separation of duty Implement and maintain Single Sign-On (SSO) and multi-factor authentication (MFA)Implement zero trust secure access from any location.Security Tooling & Integration:Evaluate, select, and onboard security solutions (e.g., endpoint protection, SIEM, vulnerability scanners) Integrate security tools with existing systems and workflows, ensuring effective threat detection and response.Automation & Scripting:Develop and maintain scripts and automation tools to streamline IT operations and enhance securityAutomate security tasks, such as patch management, vulnerability scanning or secure configuration enforcementVendor Management:Manage relationships with IT and security vendors and service providersEvaluate vendor security practices and ensure compliance with company policies Incident Response:Participate in security incident response and investigations, coordinating with remote team members and external partners.User Support & Training:Provide technical support to employees across multiple time zones and locations.Conduct IT security awareness training for employees, tailored to the specific risks and challenges of a distributed workforce.Requirements:Proven experience as an IT Administrator, ideally in a startup environment with a globally distributed workforce.Strong understanding of threat models in blockchain environmentProactive application of security principles, including Zero Trust architecture, and their application in a remote work context.Experience with MDM solutions, Google Workspace, SSO, and cloud SaaS, with a focus on global accessibility and security.Proficiency in scripting languages (e.g., Python, Bash).Experience with security tools and technologies suitable for remote management.Excellent problem-solving and troubleshooting skills, with the ability to adapt to diverse technical environments.Strong communication and interpersonal skills, with the ability to collaborate effectively with a geographically dispersed team.Ability to work independently and as part of a team, managing priorities and deadlinesExperience in international hardware shippingExperience securing GitHub access.Experience with blockchain technologiesBonus Points:Relevant security certifications (e.g., CompTIA Security+, CISSP, AWS Certified Security).Experience with blockchain operational security best practices.Experience with containerisation and Kubernetes security.Experience with organization security standards such as ISO 27001, SOC 2Our team is remote first and we are hiring across the world. Here at Babylon Labs, you’ll be joining a world-class team with tremendous growth potential as we bring secured Bitcoin staking to the world. Supported by top venture funds like Paradigm, Polychain Capital, Bullish, Hack VC, Polygon Ventures, Framework Ventures, Castle Island Ventures, OKX Ventures, among other investment firms and strategic partners. Come join us and build the future of trustless Bitcoin staking!

ABOUT US HyperionDev is one of the largest providers of accelerated tech education in EMEA and one of the oldest providers of 'coding bootcamps' in the world. We work with top universities such as Imperial College London, The London School of Economics, The University of Edinburgh, and Stellenbosch University to deliver structured technical courses and bootcamps that accelerate people into fulfilling tech careers. We have been recognised as one of the top education technology scaleups in the world and gained the financial backing of Meta (previously Facebook) which recognised us as  the most socially impactful startup operating in Africa, where we initially started our work. We are dedicated to closing the global tech skills gap and we achieve this by integrating tech education with human mentorship and expert code review powered by a workforce in Southern Africa, which lowers the cost of an accessible education in technology. This model has been successful, allowing us to reach millions of learners a year from over 60 countries. We have also partnered with government bodies such as the UK's Department for Education who provide scholarships for students to study on our bootcamps and gain employment at companies such as AstraZeneca and the United Kingdom's National Health Service (NHS). We're backed by nearly 2000 investors, having raised the largest crowdfunding round of funding for an edtech company in history. As a primarily bootstrapped, profitable, and scale up tech business join us as we play our part in making the world a more stable, safer, and fair place.   ABOUT THE ROLE  As the Senior AWS Support Engineer, you will lead the design, implementation, and management of scalable and secure AWS  solutions. The role involves deploying cloud-based systems, optimising performance, and ensuring reliability while adhering to best practices and security standards. You will manage infrastructure as code, automate processes, and maintain high availability of services. Collaborating with cross-functional teams, you'll design and implement solutions meeting business requirements. RESPONSIBILITIES: Design, deploy, and maintain the AWS infrastructure to support the organisation's applications and services.  Implement and manage security measures to protect the AWS environment.  Monitor system performance and troubleshoot issues to ensure optimal performance and availability.  Create and maintain documentation related to AWS infrastructure architecture, processes, and procedures.  Participate in capacity planning and scalability efforts to meet business demands.  Collaborate with development teams to optimise application performance on the AWS platform. Stay up-to-date with industry trends and best practices in AWS infrastructure and cloud technologies. Support the wider organisation in installing, configuring and maintaining our business tools like Nutshell, MessageBird, Zendesk  Develop and maintain backend systems and APIs to support our applications. Write and review code, ensuring high standards in coding and programming practices. Integrate infrastructure solutions with backend services for seamless operations. KNOWLEDGE AND SKILLS:  In-depth knowledge of AWS services and infrastructure architecture.  Proficiency in scripting languages and infrastructure-as-code tools.  Strong understanding of network concepts and protocols.  Good understanding of  CI/CD pipelines and related tools.  Knowledge of GitHub or other similar code repositories is an advantage Experience with security measures and best practices in AWS.  Ability to work independently and collaboratively in a team environment.  Excellent problem-solving, debugging and troubleshooting skills.  Strong attention to detail and organisational abilities. Proficient in coding and backend development, with experience in languages like Python, Java, or Node.js. Experience in Identity and Access Management concepts and technologies to secure production and corporate access, such as: AAA frameworks, SSO, and security best practices related to identity. Experience configuring and troubleshooting federated identity solutions, including knowledge of concepts such as SAML, OIDC, RBAC, ABAC. Understanding of cryptography concepts (encryption types, modes of encryption, algorithms), underlying architecture that enables secure communication between users and servers (Digital certificates, Public Key Infrastructure). REQUIREMENTS Minimum Minimum of 2 years of experience in AWS Secops or a similar role. Strong knowledge of AWS services, including EC2, S3, RDS, VPC, EBS, CloudWatch, CloudTrail & AWS Backup and IAM.  Proficient in scripting languages such as Python, PowerShell, or Bash.  Experience with infrastructure-as-code tools like CloudFormation or Terraform.  Understanding of networking concepts and protocols.  Familiarity with security monitoring and reporting technologies, including secure-cloud configuration tools (i.e. CloudTrail, AWS Config, etc.) and monitoring/reporting tools (GuardDuty, Security Hub, etc.). Ability to troubleshoot and resolve infrastructure-related issues.  Excellent communication and collaboration skills.  Strong problem-solving and analytical abilities. Preferred  A Bachelor's degree in Computer Science, Information Technology, or a related field is preferred but not essential.  AWS certifications, such as AWS Certified Solutions Architect or AWS Certified DevOps Engineer.  Strong in Ubuntu or other Linux technologies Experience with containerization technologies like Docker and Kubernetes.  Knowledge of other cloud platforms, such as Azure or Google Cloud Knowledge of security and compliance standards (such as Common Vulnerabilities and Exposures (CVE) or Center for Internet Security (CIS) Benchmarks), Hardware Security Modules (HSM), safeguarding sensitive data and implementing security best practices. One or more security-related certifications, such as AWS Certified Security - Specialty, CISSP, CEH, CISA, CISM, Security+, OSCP, etc..   WORKING CONDITIONS Due to the seniority of this role, work outside of standard hours and times may be required. BENEFITS Hybrid work: We are a hybrid work organisation offering flexibility on your schedule. Remote working options are available for candidates not in proximity of a HyperionDev Campus Learn new tech skills: We offer our employees the opportunity to enrol part-time in our Coding Bootcamps. Join the heart of tech in Africa, Europe and the US: You'll work with the best of the best and rub shoulders with the world leaders in edtech, developer education, and developer assessments. Join one of the most ambitious and highest performing tech companies in the space, with a management team that draws their former experience from top tech companies. Life-changing work: Solve real problems that make education and tech careers accessible to those who need it most: you're allowed to brag about it.   OUR VALUES We're a people-forward company with a purpose that underlines everything we do. We're obsessed with the potential in people and challenge them to do their best work. We embrace a culture of growth and learning to deliver on our vision and ours is a relentless quest for improvement.

The InfoSec team at Chainalysis is focused on maintaining the security and integrity of our solutions. We collaborate with various teams to integrate secure practices into our development processes, build and manage security tools and dashboards, and oversee the security operations and deployment across our products and infrastructure.The Product Security Engineer at Chainalysis is dedicated to maintaining and enhancing the security of our products.. This role involves collaborating with developers to embed security into every stage of the product lifecycle, building custom security tools, automating assessments, and ensuring a robust security posture within our CI/CD pipelines. The Product Security Engineer also leads proactive efforts in vulnerability management, penetration testing, and security reviews to safeguard our products and continuously enhance our security practicesIn this role, you’ll: Conduct penetration testing and security assessments to identify vulnerabilities and ensure robust security measures.Develop and maintain custom security tools and scripts to automate and enhance security processes.Collaborate with development teams to integrate secure coding practices and solutions into both front-end and back-end systems.Review and improve security within CI/CD pipelines, integrating tools like SonarCloud and Wiz for continuous security assurance.Perform security audits and code reviews, offering guidance through pull requests and collaborative sessions.Analyze and address security issues by providing expert advice and actionable solutions to maintain the integrity of applications.We’re looking for candidates who have: Hands-on experience in penetration testing and security assessments, with a strong ability to identify and mitigate vulnerabilities.Excellent communication skills, both verbal and written, for effective collaboration with cross-functional teams.Proficiency with security tools like Burp Suite, Sonarcloud, Jfrog, and Wiz, and the capability to create custom scripts using Python to enhance automation.Proficient coding skills with a focus on security, particularly in Java and/or JavaScript. Alternative languages include Python and Go.Extensive knowledge of cloud security practices, specifically on platforms such as AWS and GCP.Experience integrating security tools into CI/CD pipelines, and a demonstrated ability to automate security testing within development workflows.Nice to have experience:Familiarity with blockchain or cryptocurrency security challenges and solutions.Experience with Infrastructure as Code (IaC), particularly reviewing and securing Terraform code.Certifications such as CISSP, OSCP, or similar credentials, demonstrating a formalized knowledge of security principles and practices.Technologies we use and teach:Coding Languages: Java, Python, and JavascriptIaC: TerraformCloud: AWS, GCP, CloudflareCI/CD Pipeline: GitHub, GitHub Actions, JenkinsAPIs: REST APIsAbout ChainalysisBlockchain technology is powering a growing wave of innovation. Businesses and governments around the world are using blockchains to make banking more efficient, connect with their customers, and investigate criminal cases. As adoption of blockchain technology grows, more and more organizations seek access to all this ecosystem has to offer. That’s where Chainalysis comes in. We provide complete knowledge of what’s happening on blockchains through our data, services, and solutions. With Chainalysis, organizations can navigate blockchains safely and with confidence.You belong here. At Chainalysis, we believe that diversity of experience and thought makes us stronger. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us. Some of the ways we’re ensuring we keep learning are an internal Diversity Committee, Days of Reflection throughout the year including International Women’s Day, Harvey Milk Day, World Humanitarian Day, and UN International Migrants Day, and a commitment to continue revisiting and reevaluating our diversity culture. We encourage applicants across any race, ethnicity, gender/gender expression, age, spirituality, ability, experience and more. If you need any accommodations to make our interview process more accessible to you due to a disability, don't hesitate to let us know. You can learn more here. We can’t wait to meet you.