Senior Information Security Consultant

World Foundation is looking for a Senior Information Security Consultant. This is a role for a hands-on single contributor to support the Foundation in its role to perform oversight of the World protocol. This is not a role for box-tickers; you will be expected to think from first principles to solve novel security challenges at a global scale. Your work will ensure the protection and integrity of a protocol designed for the majority of humanity.

Key responsibilities

• Work with protocol, engineering, and privacy teams to provide guidance on security best practices and solutions

• Lead cybersecurity and IT risk assessments, support the development, and provide recommendations on risk mitigations and control plans

• Perform threat modelling and advise on solutions in particular with respect to crypto-related products and other technologies using advanced cryptography solutions

• Develop and improve security standards and frameworks to meet the future needs of World

• Monitor and analyze emerging security trends and share insights with the relevant stakeholders

• Deliver security training and awareness sessions tailored to various technical audiences

Required experience

• You have 6+ years of hands-on experience in Product Security, Application Security, or Cloud Security.

• You are confident in providing technical guidance to team members across cryptography, network design, application security, data protection, identity and access management, and related areas.

• You are proficient in code reviews

• You have extensive experience securing modern AWS architectures and developing secure infrastructure-as-code (e.g., Terraform and CDK).

• You have significant experience in leading threat modeling sessions and providing actionable guidance to engineering teams.

• You have experience in developing security governance frameworks as well as producing required security outputs