We are seeking a highly motivated and experienced Chief Information Security Officer to join our growing team.
The Chief Information Security Officer will join the executive team to take accountability for the strategy and execution of InfoSec initiatives.
This is a hands-on role. As the only dedicated security specialist, most of your time will be spent executing your strategy, not managing a team initially. Over time you will lead a growing team to deliver on strategic goals.
We've significant InfoSec policies and procedures org-wide; your task will be to enhance them further while preparing the firm for rapid, sustainable scaling. This is an exciting opportunity to join a fast-growing digital asset brokerage, leveraging your security expertise to make a significant impact on our success.
As CISO, you will report directly to the CEO while being peers with the CTO and other executives. We are a Seed-stage VC-backed startup with 165% 2023 growth, a strong leadership team, and 23 full-time staff. Most of the team is fanatical about Bitcoin's world-changing impact, and we prefer to work with other Bitcoin true believers.
Working LocationThis is a remote / working-from-home position. We expect to open an office in Vilnius in 2025, but attendance will not be mandatory.
TimelinesStart date: December 2024, Interviews: October / November
Working WeekMonday - Friday Flexible but ideally 9am - 6pm CETOut-of-hours some expected to react to threats and during releasesCompensationDepending on location, skills, and experience, your package includes:
Executive base pay10% performance bonusSignificant stake in our success via a share options packageResponsibilitiesContribute positively and impactfully to our strategy and cultureLead and reinforce a culture of goal-setting and self-assessmentChampion and demonstrate an outcome-focused approach to project workLead teams that embrace mistakes, learn from them, and continually improveLead retrospectives that dispassionately identify root causes and drive towards specific resolutionsHelp the company define its corporate strategy via Objectives and Key ResultsImplement lean security practices that mitigate risk with minimal frictionIdentify and control InfoSec risks in a structured proportionate mannerTake accountability for all InfoSec tasks from colleaguesEnsure compliance with relevant regulatory requirementsManage security and budgeting of cloud-based infrastructureManage security of colleagues' workstations and mobile devices (MDM)Create and maintain robust written documentation in collaboration with the legal team and external advisors while ensuring compliance with policiesLead a culture of security awareness and personal responsibilityLead threat-detection and incident responseLead and report on Vulnerability and patch management programmesRegularly test systems for vulnerabilities via internal and external penetration testing and remediate detected vulnerabilitiesEnsure security throughout the SDLC (Software Development Life Cycle) including CI/CDMake everyone around you betterRequirementsFluency in English and Lithuanian (Possible communication with the Bank of Lithuania)A background of working at startupsBachelor's degree in a related fieldA minimum of 5 years of experience in InfoSec, with at least 1 year in a leadership roleProven track record of success in digital assets, fintech, financial services or similar industriesStrong understanding or keen interest in the digital asset marketExcellent leadership and team management skills, with the ability to motivate and inspire othersOutstanding communication and interpersonal skills, with the ability to build strong relationshipsAnalytical mindset, with a data-driven approach to decision-making and problem-solvingA passion for delivering quality, effective solutions personally or via delegationNice to Have'sRussian speaking (Engineering team is majority Ukrainian)Passion for Bitcoin and digital assetsDevSecOps ExperienceExperience interacting with regulatorsExperience implementing established security frameworks (e.g., NIST / ISO / IEC)Software engineering backgroundRelevant Industry Qualification, e.g., Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC)Hiring ProcessOur hiring process ensures all staff are surrounded by competent, driven colleagues.
Submit application / CV to recruiterComplete mandatory (10-minute) formScreening call with CEO (15 minutes)CTO / Security Contractor technical interview (45 minutes)CEO Full interview (45 minutes)Technologist Board member interview (20 minutes)Police record and background check
#J-18808-Ljbffr