Sven Igl (aka. Shogoki) - Candidate for Security Council Elections - March 2025

Security Council Security Council Elections
1

Hey,

my name is Sven Igl (aka. Shogoki), and I am applying to serve on Arbitrum Security Council.

Background

I am a security researcher with more than 15 years of experience in different areas of computer science, working in areas like server infrastructure, software development, machine learning, DevSecOps, and blockchain projects in enterprise-scale environments, as well as doing Web2 bug bounties on the side.
After working on a few community projects in the blockchain space, I transitioned to Web3 security, mainly audit contests, a little more than 2 years ago.
Here is a little bit of information on my background and activity in the space:

  • Found and reported numerous bugs on bug bounty platforms for well-known companies like GitHub.
  • Core Backend Developer at a community-funded blockchain project (DeFiChain Wizard)
  • 12 top-10 finishes in audit contests as a solo auditor and in a team (SilentDefendersOfDeFi)
  • Core Contributor at Sherlock as an internal Security Researcher
  • I’ve participated in several audit contests solo, as well as in a team, scoring some top results.
  • I’ve also engaged a lot in judging audit contests, ultimately climbing to the top 5 rank of the Sherlock Judging Leaderboard.

Since January 2024, I am a core contributor to Sherlock as an internal Security Researcher, where I am working on several tasks related to scoping, customer onboarding, and a broad array of other security-related tasks to help secure the ecosystem.

Motivation

As an active participant in the Ethereum and DeFi space as a user as well as Developer and Security Researcher, I was always passionate about innovation and how we can improve the operational and technical security of this space.
I am following the developments of Arbitrum for a while, and am therefore excited to put my skills to use and help the Arbitrum Foundation to stay secure.

Why me?

I believe my diverse experience in multiple areas of enterprise-IT and the Web3 Security space blended with my passion for operational Security and DeFi align well with the mission of the Arbitrum Security Council.

1 Like
2

Thank you for your application.
As far as I know, Sherlock is a platform for context audits, i.e. a company without full-time auditors.

In this regard, I have a question, are you a full-time employee or a contract Security Researcher? And will you have enough time if you work on a contract basis?

3

Hey thanks for your question. Happy to answer.

As far as I know, Sherlock is a platform for context audits, i.e. a company without full-time auditors.

This is right, indeed. At Sherlock we are offering a large spectrum in terms of of security, working with our community of independent security Researchers/Auditors.

In this regard, I have a question, are you a full-time employee or a contract Security Researcher? And will you have enough time if you work on a contract basis?

With a background as security researcher I did participate in Audits in the past. Right now I am working at Sherlock, as part of the core team, as an internal security researcher, not participating in the actual audits, but helping with all kinds of security related topics. Some examples are scoping, contest setup & preparation or customer onboarding.

I can assure that I can commit the required time for any duties in regards to the security council.

1 Like