Anchorage Digital
Trusted institutional partner in crypto and first federally chartered crypto bank
digital assets • cryptocurrency • security • custody • fintech
201 - 500
Information Security Member - Global
August 22
🏡 Remote – New York
Anchorage Digital
Trusted institutional partner in crypto and first federally chartered crypto bank
digital assets • cryptocurrency • security • custody • fintech
201 - 500
Description
• Assist the Deputy CISO and the Global Information & Security Team in building and maintaining the overall Information Security and IT Risk Management Program • Maintain enterprise information security and IT risk management program commensurate with national and international standards (e.g. NIST, FFIEC, ISO, SOC 2) • Execute key team projects from start to finish, including but not limited to risk assessments, cybersecurity assessments, threat models, requirement mapping, and gap analyses • Develop, implement, and monitor meaningful reporting, metrics, analysis, and controls commensurate with business needs and regulatory expectations • Assist the Deputy CISO and the Global Information & Security Team to operationalize established security strategy and track initiatives from conception to completion, in concert with external technology providers • Maintain entity controls and identify, report, and control incidents relevant to the services offered by the business lines and supported jurisdictions • Drive resolution of IT security internal and external audit issues, including developing and implementing management action plans • Manage periodic security tests, including internal and external penetration testing and phishing exercises
Requirements
• Background working on programs and the ability to manage multiple processes and projects at once while building constructive working relationships with stakeholders across the different teams • A strong understanding of key cloud architecture principles, cryptography, APIs, as well as appropriate enterprise security practices • Knowledge and experience of Information Security Risk and Security Governance • Experience participating in security incident response and coordinating activities • Familiarity with FFIEC standards and similar regulations • Experience working with external regulators, e.g. OCC and NYDFS
Apply Now
