Job Description for Head of Security at Ethena Labs - Globally Remote
What You'll Do
- Develop and execute a holistic security strategy encompassing cybersecurity, blockchain security, physical security, and operational security, aligning with industry standards (e.g., NIST, ISO 27001) and DeFi-specific risks.
- Oversee blockchain and smart contract security, including audits, formal verification, secure key management, and protections against exploits like reentrancy or flash loan attacks.
- Build and enforce a robust cybersecurity framework, including threat detection systems (e.g., SIEM, IDS/IPS), secure DevOps practices, penetration testing, and vulnerability assessments.
- Manage physical security operations, including access controls, surveillance, executive protection programs, travel risk assessments, and site audits for offices, data centers, events, and key personnel residences.
- Drive compliance and regulatory alignment, achieving milestones such as SOC 2 and ISO 270001; prepare for audits and liaise with regulators.
- Establish incident response and crisis management plans, conducting simulations, drills, and rapid recovery for cyber, physical, or hybrid threats to minimize downtime and losses.
- Foster a security-first culture through training, workshops, and integration of security-by-design principles across all teams.
- Lead and scale the security team, hiring and mentoring Senior/Staff Security Engineers (and potentially physical security specialists), while overseeing the Security Engineering team.
- Implement real-time monitoring, threat intelligence, and performance metrics for digital and physical assets.
- Manage security budgets, vendor relationships, and resources to optimize effectiveness.
- Future-proof security for growth, anticipating emerging threats in DeFi and adapting systems for new products, integrations, and expanded operations.
What We’re Looking For
- 10+ years of progressive experience in security leadership roles, with demonstrated expertise in cybersecurity, physical security, and risk management, preferably in fintech, crypto, or high-tech environments.
- Proven track record in developing and implementing comprehensive security strategies, including blockchain/DeFi security (e.g., smart contract auditing, cryptographic protocols) and physical protections (e.g., executive security, facility assessments).
- Strong leadership skills with experience building and mentoring high-performing teams, including oversight of engineers and coordination with cross-functional stakeholders.
- Expertise in incident response, crisis management, threat intelligence, and compliance frameworks (e.g., SOC 2, ISO 27001, GDPR, AML/KYC); experience achieving certifications is highly desirable.
- Proficiency in secure software development, infrastructure security (e.g., cloud, Kubernetes, AWS), and tools for monitoring, automation, and vulnerability mitigation.
- Excellent communication and collaboration abilities to convey complex security concepts to technical teams, executives, regulators, and non-technical stakeholders.
- Strategic thinker with adaptability in dynamic environments, strong problem-solving, and a proactive approach to risk management.
- Experience in budget and vendor management for security operations.
- Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field; advanced certifications such as CISSP, CISM, CRISC, or similar are a plus.
- Familiarity with DeFi-specific risks and technologies is highly desirable.
This job opportunity is part of Scouthappy's curated collection of remote jobs open to African talent. Apply now to join a global team.

