Summary

Company Information

Founded in 2016, Crypto-com serves more than 80 million customers and is the world's fastest growing global cryptocurrency platform. Our vision is simple: Crypto-currency in Every Wallet™. Built on a foundation of security, privacy, and compli-ance, Crypto-com is committed to accelerating the adoption of cryptocurrency through innovation and empowering the next generation of builders, creators, and entrepreneurs to develop a fairer and more equitable digital ecosystem.

Crypto-com is an equal opportunities employer and we are committed to creating an envi-ronment where opportunities are presented to everyone in a fair and transparent way. Crypto-com values diversity and inclusion, seeking candidates with a variety of back-grounds, perspectives, and skills that complement and strengthen our team.

Personal data provided by applicants will be used for recruitment purposes only.

Please note that only shortlisted candidates will be contacted.

Role Information

The Cybersecurity and Data Privacy team reports directly under the office of the CISO headed by Chief Information Security Officer (CISO) Jason Lau who has over 23+ years of experience in the cybersecurity space, awarded Global Top 100 CISO, and also serves on the World Economic Forum, International Association of Privacy Professionals and more. The team comprises of multiple functions from Blockchain Security, Operational Security, Security Governance and Compliance and more. We drive a culture of having a growth mindset and being humble to help everyone achieve their potential. Security and Data Privacy Compliance first strategy which has been at the core of our company. The security team helped to drive us to be the first Crypto company worldwide to achieve ISO27001, ISO27701, ISO22301 and PCI:DSS 3.2.1 (Level 1) certifications. Extremely detailed third party attested by international audit firm SGS and achieved "Adaptive (Tier 4)" – the highest level possible for the US National Institute of Standards and Technology (NIST) Cybersecurity Framework and the latest NIST Privacy Framework as well as SOC2 and many other regional certifications like the Data Protection Trust Mark.

Position Summary:

As our Security Assurance Manager, you will be responsible for our global security assurance program. Being a vital part of the team, you are entrusted with the critical task of managing, planning, and delivering a diverse portfolio of security assurance projects on a rigorous timeline. An understanding of security risks and controls is essential. You will need to work seamlessly with internal and external stakeholders to assess critical systems, identify potential security risks, implement and deploy security controls, and provide reports to relevant stakeholders, including the senior management team.

Responsibilities

Orchestrate, implement, and manage the organization's security assurance framework, aligning with industry best practices

Collaborate effectively with internal and external stakeholders to perform assessments of critical systems and enhance security

Identify risks along with appropriate mitigation requirements, develop and analyze secure solutions (covering technical, physical, procedural, and personnel controls), and assess compliance with internal and external standards and regulations

Maintain comprehensive documentation encompassing all aspects of security assurance activities - including risk discovery, control implementation, and effect measurement

Compile and present detailed reports concerning security assurance activities to pertinent stakeholders, including the senior leadership team

Stay alert to emerging trends and advancements within the security assurance spectrum

Requirements

Bachelor's degree in Computer Science, Information Security, or a related field. A Master's degree is a plus

3+ years of experience in the IT security, technology risk, or IT audit field.

Prior project management experience will be regarded as a significant advantage

Holder of CISSP / CISA / CISM / CRISC certification or equivalent is preferred

A proficient command of English with excellent communication skills is mandatory.

Proficiency in Chinese will be a considerable advantage

Profound understanding of information security principles and practices, including security risk assessment standards, risk assessment methodologies, and newly developed industry tools

Demonstrable ability to communicate effectively with a diverse group of stakeholders, including senior management, regulatory bodies, and auditors

Acute attention to detail, matched with solid analytical and interpersonal skills

Ability to work independently and thrive under pressure

Experience in leading and managing a global team and projects

Life at Crypto-com

Empowered to think big. Try new opportunities while working with a talented, ambitious and supportive team. Transformational and proactive working environment. Empower employees to find thoughtful and innovative solutions. Growth from within. We help to develop new skill-sets that would impact the shaping of your personal and professional growth. Work Cul-ture. Our colleagues are some of the best in the industry; we are all here to help and support one another. One cohesive team. Engage stakeholders to achieve our ultimate goal - Crypto-currency in every wallet. Work Flexibility Adoption. Flexi-work hour and hybrid or remote set-up. Aspire career alternatives through us - our internal mobility program offers employees a new scope.

Are you ready to kickstart your future with us?

Benefits

• Competitive salary

• Attractive annual leave entitlement including: birthday, work anniversary

• Work Flexibility Adoption. Flexi-work hour and hybrid or remote set-up

• Aspire career alternatives through us. Our internal mobility program can offer employees a diverse scope.

• Work Perks: crypto-com visa card provided upon joining

Our Crypto-com benefits packages vary depending on region requirements, you can learn more from our talent acquisition team.