MultiSig Signer

(version 2024)

Overview

A Multi-Sig Signer is responsible for the safe and secure signing on behalf of Shapeshift DAO. As Treasury Signer, it is your role to protect and deploy ShapeShift DAO treasury funds exactly as directed by the DAO finance committee (DFC) and/or ShapeShift DAO governance. You act as the last line of defense preventing unauthorized transactions from affecting treasury funds and validating DFC actions are achievable.

Where the DAO finance committee votes on treasury actions as stewards, the signers execute those actions to the letter. This role requires an individual who is knowledgeable and experienced in blockchain technology, cryptography, wallets/smart accounts, and security best practices. It also requires a willingness to learn about new protocols, be diligent with testing, and verify actions.

Responsibilities

• Validate and execute transactions primarily within a Gnosis {safe} app, COSMOS multi signer, and Thorchain ecosystems (This should be explicit to all tools used, with a clause about future tools/chains)

• Collaborate with team members to manage multi-signature wallet(s), ensuring secure transactions and efficient execution in a timely manner. A small weekly expectation of Oncall hours, 2-5 per week, is expected.

• While signing transactions meet minimum SLA’s regularly exceed them.

  Multi Sig SLA’s

• Review, validate, and sign transactions as per the established policies and guidelines from the DFC. (process excalidraw? resource processes perhaps outlined? no reveal of sensitive processes)

• Proactively follow directions and communicate when an optimal path deviates from those directions. Proactively suggest solutions within same day, and problem solve with a collaborative mindset.

• Stay accountable for multisig actions on behalf of the DAO voters and DFC.

• Maintain strict security practices to protect sensitive information including personal identity. (is there a best security practices (does not need to be crypto centric) resource we can reference?)

• Communicate effectively with team members regarding transaction status and potential security risks.

  • Using element/matrix communicate with treasury signer committee (oversight group from the DAO and the DFC members in chat)

• Stay updated with latest advancements in blockchain technology and cryptography to be aware of threat vectors.

Qualifications

• Previous experience in a similar role managing a DAO treasury, facilitating large governance operations, or a strong understanding of blockchain technology (e.g. working at a Defi protocol).

• Must hold a good amount of FOX tokens (~ 500K FOX ) so the risk/reward model is aligned with the ShapeShift DAO. If not, the stream should be more than incentive.

• Must have experience with Ethereum smart contracts and transaction validation.

• Computer science skills for decoding function calls and parameters of Ethereum smart contracts, and Thorchain memo construction is a plus.

• Strong problem-solving skills and attention to detail.

• Excellent communication skills.

• A high level of integrity and discretion in handling confidential information.

Compensation

The compensation for this role will be provided through Superfluid streams that begin on successful onboarding. Specifically, the payment will total but not exceed 1 million FOX tokens distributed over a one-year period per signer. It’s important to note that these streams will be set up in a DFC managed {safe} multisig so they can be revocable by DFC vote. This setup ensure members have adequate skin in the game and accountability are paramount.

For signers, one superfluid stream is on a yearly stream (base) with 12 additional monthly payments for hitting SLA’s.

What to expect

Vetting and selection

We have a nomination process that is straightforward but a little out of the ordinary. Recruiting and Vetting comes from the internal teams who also accept proof of on chain contributions (with wallet signatures). There will be introductions and then a ceremony vote by the treasury signer committee.

Ceremony and onboarding

If selected you will join a transition ceremony in the chat program element (it’s a client of Matrix). Your first message to the channel for signers will be an etherscan verified signature with the wallet you intend to use for signing (ideally with a balance of FOX on it to confirm).

From there, we’ll start a call with everyone currently on the multisigs onboarding you into the relevant multisigs, wallets, and chains. Afterwards you will offboard the current members and take over as the responsible signers. If new addresses are necessary they will be spun up on the ceremony and all current assets will be tested and then transferred to these fresh addresses.

Day to day

1. The DFC has taken great pains to update it’s transaction request templates(link), execution playbook (link to WIP) , and action spreadsheets (DFC memo) for signers to make them incredibly detailed. Some on call time is essential to execute transactions both in a timely manner and for sanity checks live. We expect each TX to take a ballpark of 20 mins- one hour. But the goal is to move at a speed of operational efficiency on repeat transactions (like payroll) and have the DFC do the legwork for anything new.

   1. In the several years the DAO has operated a {safe} snap strategy it’s finished almost 1000 transactions.

2. You must understand what the transaction will do before signing to ensure the transaction fulfills the DFC or governance vote exactly.

   1. Your understanding must be your own, derived from your own sources/research. You cannot rely solely on evidence received from another signer.

   2. If there is ANY doubt, you must investigate until that doubt is gone.

      • Are you sure this contract is the right one to execute?

      • Are you sure this is the correct function to execute?

      • Are you sure these are the correct parameters?

3. You MUST protect your DAO treasury key following industry best practices.

4. You should take reasonable action to remain anonymous.