TAC is a TON network extension that allows the EVM community to easily access 950M monthly active users of Telegram. TAC is not a Layer2: our stack is natively connected to TON so that transaction lifecycle start and end on TON, but leverage TON asynchronicity to execute EVM code deployed on TAC.
Our mission is to expand the TON developers ecosystem with EVM/Solidity developers and deliver hundreds of new dApps to the TON users, with a large focus on consumer use cases distributed via Telegram MiniApps.
Our team is backed by the best existing stakeholders from the TON ecosystem.
About the Role
We are looking for a SecOps/DevSecOps Specialist with a strong focus on centralized security solutions (SIEM/SOC), security procedures, and the security of sequencer-based transaction processing. This role involves designing and maintaining security infrastructure, enforcing best practices, and addressing Web3-specific security challenges, including private key management, transaction security, and protection against blockchain-specific threats.
Responsibilities
-Ensure the security of TAC’s centralized sequencer and transaction lifecycle.
-Design, implement, and maintain SIEM/SOC solutions and security monitoring processes.
-Conduct security assessments and enforce best practices for Cloud Security, Application Security, and DevSecOps.
-Identify and mitigate security vulnerabilities across TAC’s infrastructure.
-Develop security policies and procedures to ensure compliance with industry standards.
-Implement security automation, monitoring, and incident response strategies.
-Collaborate with DevOps and engineering teams to integrate security into CI/CD pipelines.
-Address Web3-specific risks, including private key security, transaction lifecycle integrity, and blockchain-based attack vectors.
-Oversee reconciliation processes and ensure compliance with security procedures.
-Stay up to date with Web3 security threats, attack vectors, and mitigation techniques.
Requirements
-Strong expertise in Cloud Security and Application Security.
-Experience implementing SIEM/SOC solutions and centralized security monitoring.
-Deep knowledge of DevSecOps practices, including secure CI/CD pipelines.
-Hands-on experience in security assessments, penetration testing, and incident response.
-Industry-recognized security certifications (CISSP or equivalent).
-Solid understanding of Web3 security risks, including private key management, transaction validation, and blockchain-based security models.
-Practical experience with security automation tools and best practices.
What We Offer
-A key role in shaping security practices in a cutting-edge Web3 ecosystem.
-Competitive salary.
-Flexible work environment.
-The opportunity to work with a highly skilled team backed by leading stakeholders in the TON ecosystem.
-A chance to contribute to the growth of a rapidly expanding blockchain network and its security landscape.
