Associate, Information Security Risk Manager
5 days ago
🏢 In-office - Manhattan
Description
• Assist in developing standards and best practices to enable effective and efficient GRC processes • Complete third-party supplier risk assessments to optimize the process ensuring supply chain risk is managed effectively throughout the supplier's lifecycle • Execute cybersecurity risk assessments, compile risk registers, and track risk remediation plans • Assist in responding to customer requests for information on our security measures • Assist with the evaluation of the effectiveness of the information security program by monitoring, gathering, and analyzing information security and compliance metrics for management • Maintain compliance frameworks, policies, procedures and controls to meet the requirements of SOC1, SOC2 and other relevant standards
Requirements
• Bachelor’s degree with at least 5+ years of experience in information security, GRC, IT Audit, compliance assisting an organization in working towards SOC1, SOC2 compliance • Relevant certifications (e.g., CISA, CISSP, CISM) preferred
Benefits
• Competitive base salary and discretionary bonus • Flexible Time Off (i.e. unlimited paid vacation days) • Company paid Holidays (11) • Company paid sick leave • Company-paid health and protective benefits for employees, partners, and other dependents • 3% 401(k) company contribution • Generous paid Parental Leave • Free virtual coaching and counseling sessions through Ginger • Opportunities to learn about the Crypto industry • Free daily snacks in-office • Smart, entrepreneurial, and fun colleagues • Employee Resource Groups
Apply Now
