OpenZeppelin Jobs

Job Description:

We are seeking an experienced and visionary Director, Emerging Technologies (Cybersecurity) to join our organization's efforts in securing the next generation of technologies, such as blockchain, AI and multi-user platforms. The ideal candidate will have a deep understanding of the security landscape and be well-versed in the latest technologies, threats, and countermeasures. This is a high-visibility role that requires strong technical expertise, strategic thinking, and collaboration with cross-functional teams. 

Emerging technologies and digital assets are being adopted with an ever-increasing pace. Fidelity is investing in a number of projects in emerging technologies and digital assets space. The mission of the Emerging Technology Cybersecurity Assessment Team is to protect Fidelity's assets and our customers’ livelihoods from the threat of exploitation by malicious adversaries. We do this by proactively helping developers to identify vulnerabilities in our systems and serving as subject matter experts to enable the business units to mitigate them in a positive, collaborative, innovative manner. This is done by providing training and tooling to teams to enable them to seamlessly integrate security into all stages of the development pipeline. 

Our Vision 

We aspire to be a best-in-class Emerging Technology Cybersecurity Assessment team, with fully engaged, passionate members.  Producing high-quality work in a consistent, effective, efficient, customer-oriented manner.  Providing competitive advantage to the firm and serving as a differentiator in the marketplace.  Serving as a role model for others across the Enterprise and wider industry.  And driving advancement and research in the cybersecurity space.

The Expertise You Have and The Skills You Bring

You will join a highly skilled team of subject matter experts to enable the development community to build secure emerging technologies. You will develop and implement comprehensive cybersecurity strategies to protect our organization's emerging technology platforms, including blockchain, AI, software bots, multi-user platforms. Provide expert guidance on security best practices for smart contract security assessments.  Collaborate with development teams to ensure the secure development and deployment of blockchain-based applications.  Stay up to date with the latest advancements in emerging technologies, including: Generative AI, software bots, and multi-user platforms and Games, social media applications, and other online platforms  Develop and maintain relationships with external partners, vendors, and industry experts to stay informed about the latest security threats and trends.  You will research, develop, and document, technical guidance and best practices for emerging technologies.  You will monitor published vulnerabilities in those technologies and provide leadership on the impact of those vulnerabilities and guidance on how to remediate.  You will partner with other teams within Enterprise Cybersecurity to improve the overall security of Fidelity's detective capabilities, applications, and infrastructure.  Bachelor’s degree in computer science, Cybersecurity, or related field; advanced degree preferred.  8+ years of experience in emerging technologies mentioned above preferably in cybersecurity. Demonstrated experience in smart contract assessments: In-depth knowledge of common libraries, templates, and protocols (e.g., OpenZeppelin, Web3.js); Proficiency in testing methodologies, including unit testing, property-based testing, dynamic testing, and fuzzing (e.g., Truffle, Ethers.js); Familiarity with monitoring tools, alerts, and logging mechanisms; Experience with development platforms like Hardhat, Foundry, or Forge; Understanding of crypto audit operations and security requirements  Expert level knowledge with cryptocurrency and blockchain technologies including: Key sharding algorithms and MPC; Key lifecycle management and digital wallet security; Secure storage, transfer, and exchange of digital assets; Custody platforms such as Fireblocks   Expert level knowledge in the following: Programming languages such as Solidity, Rust, and Python; Experience with Ethereum, Solana, Avalanche, and other blockchain platforms; Knowledge of DeFi operations, staking, node operations, tokenization, and ERC-20 standards  Strong development/architecture experience  Experience with security testing, vulnerability assessment, and penetration testing  Experience with cloud security platforms (e.g., AWS, Azure)  Exploit and tool development experience.  OSCP, OSCE, GPEN, GXPN, CISSP, or other industry recognized security certification  Knowledge of incident response and disaster recovery planning  Strong strategic thinking and problem-solving skills, with the ability to develop and implement comprehensive cybersecurity strategies.  Highly motivated with the willingness to take ownership / responsibility for your work and the ability to work alone or as part of a team. 

Certifications:

Category: Information Technology

Fidelity’s hybrid working model blends the best of both onsite and offsite work experiences. Working onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most hybrid roles require associates to work onsite every other week (all business days, M-F) in a Fidelity office.