Hello everyone!
Following the recently completed RFP process, ChainSecurity and Certora have been selected as the new Security Service Provider (SSP) for Compound DAO, with zeroShadow joining as the dedicated incident response provider. Together, this group will cover audits, advisory, formal verification, and monitoring, ensuring Compound remains one of the most secure protocols in DeFi.
I’m Ioannis Sachinoglou, a senior blockchain security engineer and founding partner at ChainSecurity. I’ve reviewed protocols such as Sky, Curve, and Enzyme, and I’m excited to serve as Compound’s vCISO to help coordinate this next phase of security operations.
Who we are
ChainSecurity is a leading smart contract audit firm spun out of ETH Zurich. With over 250 audits completed for major DeFi protocols, ChainSecurity specializes in uncovering critical vulnerabilities and strengthening the foundations of decentralized systems.
Certora is a web3 security firm providing holistic security for protocols and chains, well known for cutting-edge formal verification tools that allow protocols to prove the correctness of their smart contracts mathematically. Trusted by many of the top DeFi projects, Certora brings unique capabilities in automated verification and continuous assurance, complementing traditional auditing approaches.
zeroShadow specializes in blockchain security monitoring and incident response. The team brings specialized expertise in threat detection, on-chain forensics, and rapid response playbooks, ensuring that Compound can react quickly and effectively to any emerging security risks.
Transition and Knowledge Transfer
To ensure uninterrupted coverage, we’re going through a transition period with OpenZeppelin, which has served the community since 2021. The transition period is expected to last until September 8th. By then, the incoming team is expected to have fully assumed all responsibilities and be operationally ready to lead Compound’s security efforts.
What the Community Can Expect
-
Continuity of service: Security monitoring, audits, and incident response remain active throughout the transition.
-
Seamless handover: OpenZeppelin’s support during the transition ensures the new SSPs are fully prepared before taking over.
-
High-level expertise: With ChainSecurity and Certora’s combined strengths in smart contract auditing, formal verification, and advisory, Compound will continue to be protected by world-class security practices.
-
Monthly updates: We’ll provide regular monthly updates to the community, sharing progress and the results of our work to keep everyone informed and engaged.
Community involvement
We want this to be a transparent and collaborative process. If you have questions, concerns, or ideas about how the new security team can best serve the DAO, please share them.
Your input will help us shape an even stronger security posture for Compound.
Email: ioannis.sachinoglou@chainsecurity.com
Telegram: @IoannisSachinoglou_ChainSecurity
Like my pops used to say, “The best part about driving fast is being able to stop.”