Digital Asset Security: Custody/Sub Custody
About The Position
U.S. Bank is seeking a Digital Asset Security: Custodial/Sub Custodial Engineer with demonstrated competence and experience in blockchain Custodial and Sub-Custodial security to contribute toward the success of our Digital Assets Information security program. In this role, you will represent Information Security Services (ISS) and partner with business, innovation, and technology teams to spearhead the design and engineering of Information security controls and guardrails for Secure Multi-Party Computation (MPC), Multi-Party Signatures, ZKP and related algorithms, protocols, schemes etc., for secure Custody / Sub-Custody of Digital Assets, Cryptocurrencies, Stable Coins and Tokens. This role requires strong technical knowledge of Shamir’s Secret Sharing (SSS), ZKP, ECDSA/EdDSA TSS algorithms and protocols. In-depth knowledge of at least one of the mainstream Multi-Party Computation protocols. Work closely with innovation, technology, and business teams involved with Custodial and Sub-Custodial initiatives and parties designing and engineering U.S. Bank Digital Asset Custody eco-system to formulate Information Security controls and guardrails for: Computation Complexity – to ensure security of the authentication and authorization of custody transactions. Round Complexity – to secure the sequence order of the crypto transactions (constant vs. variable). Communication Complexity - to secure protocols during the transaction (synchronous vs. asynchronous approval schemes). Lead secure design and engineering practices for Hierarchical Deterministic (HD) Wallets, Key Storage (Cold, Warm and Hot), Key Distribution aspects for Hardened and Non-Hardened Child Keys and associated ECDSA/EdDSA Threshold Signature Schemes for: Quorum Approval Thresholds - minimum number of parties needed to decrypt the cipher text to generate the signature. Key Share Regeneration: number of parties required for private key share generation from key shards. Counter Party Threshold: number of corrupt parties to sustain secure operations (Honest vs. Dishonest/Corrupt). Partner with Information Security Services teams to develop Information security frameworks and guidelines for addressing various Custody and Sub-custody requirements and help guide and support on routine basis.
Requirements
- 2+ years of hands-on Secure Multi-Party Computation design or engineering experience for the security of Hierarchical Deterministic (HD) Wallets at a financial institution with a vendor solution (e.g., Fire Blocks, IBM DA Haven, Metaco, Gnosis Safe or Grainte).
- College degree(s) or equivalent industry experience
- Strong technical knowledge of Shamir’s Secret Sharing (SSS), ZKP, ECDSA/EdDSA TSS algorithms and protocols.
- In-depth knowledge of at least one of the mainstream Multi-Party Computation protocols (e.g., Gągol-Kula-Straszak-Świętek , Lindell-Nof-Ranellucci, Canetti-Makriyannis-Peled, Damgard-Jakobsen-Nielsen-Illeborg-Pagter-Østergaard’ or Doerner-Kondi-Lee-shelat).
- This role requires working from a U.S. Bank location three (3) or more days per week.
Nice To Haves
- M.S. or PhD degree in Computer Science, Mathematics or related field.
Responsibilities
- Represent Information Security Services (ISS) and partner with business, innovation, and technology teams to spearhead the design and engineering of Information security controls and guardrails for Secure Multi-Party Computation (MPC), Multi-Party Signatures, ZKP and related algorithms, protocols, schemes etc., for secure Custody / Sub-Custody of Digital Assets, Cryptocurrencies, Stable Coins and Tokens.
- Work closely with innovation, technology, and business teams involved with Custodial and Sub-Custodial initiatives and parties designing and engineering U.S. Bank Digital Asset Custody eco-system to formulate Information Security controls and guardrails for Computation Complexity, Round Complexity, and Communication Complexity.
- Lead secure design and engineering practices for Hierarchical Deterministic (HD) Wallets, Key Storage (Cold, Warm and Hot), Key Distribution aspects for Hardened and Non-Hardened Child Keys and associated ECDSA/EdDSA Threshold Signature Schemes for Quorum Approval Thresholds, Key Share Regeneration, and Counter Party Threshold.
- Partner with Information Security Services teams to develop Information security frameworks and guidelines for addressing various Custody and Sub-custody requirements and help guide and support on routine basis.
Benefits
- Healthcare (medical, dental, vision)
- Basic term and optional term life insurance
- Short-term and long-term disability
- Pregnancy disability and parental leave
- 401(k) and employer-funded retirement plan
- Paid vacation (from two to five weeks depending on salary grade and tenure)
- Up to 11 paid holiday opportunities
- Adoption assistance
- Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
- Incentive and recognition programs
- Equity stock purchase
- 401(k) contribution and pension
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
Associate degree
