Operational Information Security Officer

About Aztec

At Aztec, our goal is to add privacy to Ethereum.

In the current public blockchain paradigm, users and entities unknowingly broadcast data in the public, compromising privacy and security to get trustlessness.

Not only are unencrypted blockchains inherently privacy-exposing, they require significant redundancy to compute and verify the legitimacy of transactions.

Implementing scalable encryption in a public blockchain paradigm requires cutting-edge math and engineering. Thankfully, our team of scientists and engineers invented Plonk, the industry-standard zkSNARK, and Noir, the universal language of zero knowledge.

Now, we're building a first of its kind Layer 2 with private smart contracts. This requires new cryptographic primitives, a zero-knowledge DSL for writing contracts, a privacy-friendly execution environment, a carefully designed set of circuits that prove the validity of the chain to L1, a decentralized block-building and proving mechanism, and a top-tier user and developer experience. And it's now time to bring it to market.

We've raised $125 million from industry-leading investors including a16z crypto, Paradigm, Variant, Consensys, and a_capital, and we're growing quickly.

Role Overview

As an Operational ISO of Aztec, you will define and execute a comprehensive operational security strategy. You will work closely with engineering and operations teams to ensure the integrity, confidentiality, and resilience of our infrastructure and processes.

This role is ideal for an experienced OpSec engineer or hands-on manager who has previously worked in a distributed environment, ideally in blockchain security
Please note this will be a London based location role:
Key Responsibilities
Security Strategy

• Develop and implement a robust cybersecurity strategy tailored to Aztec's processes
• Define security policies, standards, and best practices within the organization
• Advise executive leadership and engineering teams on security risks and industry best practices.
• Lead incident response planning, ensuring rapid detection, containment, and remediation of security threats.

Infrastructure & Operational Security

• Develop security monitoring, logging, and detection systems to prevent unauthorized access.
• Ensure the security of cloud-based infrastructure, DevSecOps pipelines, and decentralized nodes.
• Assist engineering teams to implement secure software development life cycle (SDLC) practices.
• Conduct threat modeling exercises to identify vulnerabilities.
• Manage security awareness training for employees, ensuring a culture of security-first thinking.

Qualifications
Required:

• 7+ years of experience in cybersecurity
• Experience securing cloud-based infrastructure (AWS, GCP, or Azure) and DevSecOps environments.
• Proven ability to design and implement security frameworks in fast-paced, high-growth organizations.
• Excellent communication, and cross-functional collaboration skills.

Nice to Have:

• Familiarity with DeFi protocols, MEV security, and decentralized governance models.
• Track record of leading bug bounty programs and engaging with security researchers.
• Relevant certifications: CISSP, CISM, Offensive Security certifications.

Aztec Labs is an equal opportunity employer and we value creativity, diversity, and intellectual curiosity. If you're passionate about leveraging your creative talents to make a real-world impact, and if you want to be part of a team that's shaping the future of digital privacy, then we would love to hear from you.