Blockchain Security Architect
Job Summary:
We are seeking an experienced Security Architect to define and implement
Hardware Security Module (HSM)
and blockchain security controls and policies across our digital assets and
tokenization platforms. This pivotal role will lead security architecture,
policy definition, threat modeling, and control assurance for both
permissioned and permissionless blockchain models, ensuring robust operational
security governance.
Key Responsibilities:
-
Own the end-to-end HSM security architecture, including tenancy model,
network placement, access patterns, and hardening requirements.
-
Define and govern key management controls encompassing generation, storage,
usage, rotation, backup, and recovery procedures using HSMs.
-
Establish mutual authentication expectations between services and HSM-backed
components, along with defining audit evidence requirements for HSM
operations.
-
Update and define blockchain security policies and standards applicable to
both permissioned and permissionless models.
-
Lead threat modeling and risk assessments for blockchain setups, ensuring
the implementation of necessary controls against identified threat vectors.
-
Establish measurable security acceptance criteria for HSM-related
deliveries, focusing on operational testing and secure coding standards.
Requirements:
-
10+ years of experience in security architecture/cybersecurity engineering,
with significant expertise in cryptography and key management.
-
Hands-on experience with
HSM
technologies and enterprise key management patterns; familiarity with key
management tools like Vault is preferred.
-
Proven experience in designing and operating key ceremonies with robust
governance and auditable processes.
-
Deep knowledge of security standards and frameworks relevant to cryptography
and HSM usage, such as PCI, NIST, and FIPS.
-
Strong capability to lead end-to-end threat modeling, security risk
assessments, and architecture reviews.
-
Excellent communication skills and stakeholder management abilities across
engineering, platform, and compliance teams.
-
Experience in securing blockchain platforms and smart contract systems,
ideally with certifications covering EVM based chains like Ethereum.
Preferred Qualifications:
-
CISSP (Certified Information Systems Security Professional) or CISM
(Certified Information Security Manager) strongly preferred.
-
Certified Blockchain Security Professional (CBSP) or equivalent blockchain
security certification.
-
Prior experience in regulated financial services environments is
advantageous.
-
Knowledge of Zero-Knowledge Proof (ZKP) concepts is a plus.
-
Hands-on smart contract security credentials, such as audits or platform
certifications.
Location: Chennai, Pune, Bangalore, Hyderabad