We are seeking a highly motivated and experienced Chief Information Security Officer to join our growing team.
The Chief Information Security Officer will join the executive team to take accountability for the strategy and execution of Info Sec initiatives. This is a 'hands-on' role. As the only dedicated security specialist, most of your time will be spent executing your strategy, not managing a team initially. Over time you will lead a growing team to deliver on strategic goals.
We've significant Info Sec policies and procedures org-wide, your task will be to enhance them further while preparing the firm for rapid, sustainable scaling. This is an exciting opportunity to join a fast-growing digital asset brokerage, leveraging your security expertise to make a significant impact on our success.
As CISO, you will report directly to the CEO while being peers with the CTO and other executives. We are a Seed-stage VC-backed startup with 165% 2023 growth, a strong leadership team and 23 full-time staff. Most of the team is fanatical about Bitcoin's world-changing impact, and we prefer to work with other Bitcoin true believers.
Working Location: This is a remote/working-from-home position. We expect to open an office in Vilnius in 2025, but attendance will not be mandatory.
Timelines: Start date: December 2024, Interviews: October/ November. Working Week: Monday - Friday, Flexible but ideally 9am - 6pm CET. Out-of-hours some expected to react to threats and during releases.
Compensation: Depending on location, skills and experience, your package includes:
Executive base pay10% performance bonusSignificant stake in our success via a share options packageResponsibilities: Contribute positively and impactfully to our strategy and cultureLead and reinforce a culture of goal-setting and self-assessmentChampion and demonstrate an outcome-focused approach to project workLead teams that embrace mistakes, learn from them, and continually improveLead retrospectives that dispassionately identify root causes and drive towards specific resolutionsHelp the company define its corporate strategy via Objectives and Key ResultsImplement lean security practices that mitigate risk with minimal frictionIdentify and control Info Sec risks in a structured proportionate mannerTake accountability for all Info Sec tasks from colleaguesEnsure compliance with relevant regulatory requirementsManage security and budgeting of cloud-based infrastructureManage security of colleagues' workstations and mobile devices (MDM)Create and maintain robust written documentation in collaboration with the legal team and external advisors while ensuring compliance with policiesLead a culture of security awareness and personal responsibilityLead threat-detection and incident responseLead and report on Vulnerability and patch management programmesRegularly test systems for vulnerabilities via internal and external penetration testing and remediate detected vulnerabilitiesEnsure security throughout the SDLC (Software Development Life Cycle) including CI/CDMake everyone around you betterRequirements: Fluency in English and Lithuanian (Possible communication with the Bank of Lithuania)A background of working at startupsBachelor's degree in a related fieldA minimum of 5 years of experience in Info Sec, with at least 1 year in a leadership roleProven track record of success in digital assets, fintech, financial services or similar industriesStrong understanding or keen interest in the digital asset marketExcellent leadership and team management skills, with the ability to motivate and inspire othersOutstanding communication and interpersonal skills, with the ability to build strong relationshipsAnalytical mindset, with a data-driven approach to decision-making and problem-solvingA passion for delivering quality, effective solutions personally or via delegationNice to Have's: Russian speaking (Engineering team is majority Ukrainian)Passion for Bitcoin and digital assetsDev Sec Ops ExperienceExperience interacting with regulatorsExperience implementing established security frameworks (Eg NIST/ ISO/IEC)Software engineering backgroundRelevant Industry Qualification, eg: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC)Hiring Process: Our hiring process ensures all staff are surrounded by competent, driven colleagues. Submit application/ CV to recruiter, complete mandatory (10-minute) form, screening call with CEO (15 minutes), CTO/ Security Contractor technical interview (45 minutes), CEO Full interview (45 minutes), Technologist Board member interview (20 minutes), Police record and background check.
#J-18808-Ljbffr