Gemini · 8 hours ago
Senior Associate, Security GRC
United States
Full-time
Remote
Senior Level
$95K/yr - $119K/yr
5+ years exp
Maximize your interview chancesCryptocurrencyFinance
Insider Connection @Gemini
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Plan, coordinate and manage information security compliance audits such as ISO 27001, SOC 2 and PCI DSS.
Plan, coordinate and manage the security aspect of regulatory exams such as for NYSDFS Reg. 500, CBI, UK FCA and other regulators.
Support Gemini in automating the evidence collection process for audits.
Mature our security compliance testing program to support continuous controls monitoring in order to maintain an effective environment.
Design information security compliance controls to address current and emerging requirements.
Advise cross-functional teams to ensure software, infrastructure and process changes are implemented in compliance with information security requirements.
Support customer due diligence projects.
Identify and assess security risks in the compliance domain.
Partner with stakeholders to develop remediation plans for identified control gaps and monitor plans towards completion.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
BA/BS degree in a technical field or equivalent practical experience.
5+ years of experience in the Information Security Governance, Risk and Compliance field or as a Technical Program/Project manager.
Extensive expertise in planning, managing, and completing Information Security compliance audits.
Experience with key information security frameworks, including ISO 27001/2, ISO 27018, ISO 22301, PCI DSS, SOC 2, and the NIST Cybersecurity Framework.
Knowledge of regulations like NYSDFS Reg. 500, CBI, UK FCA, and similar regulatory bodies.
Skilled in advising on both current and emerging information security regulatory and compliance standards.
Experience in security compliance testing and ongoing control monitoring.
Exceptional analytical and creative problem-solving abilities.
Strong interpersonal skills for effective collaboration with customers, senior level personnel, auditors, and team members.
Strong organization skills to prioritize work and balance complex projects.
Ability to work independently and as part of a broader team.
Preferred
Former/Current ISO lead auditor certification.
Formerly/Currently a PCI Qualified Security Assessor (QSA).
Experience automating evidence and artifact collection for regulatory bodies.
Experience leveraging GRC tooling to support information security governance, risk and compliance activities.
Benefits
A discretionary annual bonus
Long-term incentive in the form of a new hire equity grant
Comprehensive health plans
401K with company matching
Paid Parental Leave
Flexible time off
Company
Gemini
Gemini is a licensed digital asset exchange and custodian built for both individuals and institutions.
501-1,000 employees
H1B Sponsorship
Gemini has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (2)
2022 (31)
2021 (35)
2020 (11)
Funding
Current Stage
Late StageTotal Funding
$424.9MKey Investors
Draper DragonMorgan Creek Digital
2022-06-20Secondary Market· $1M
2022-02-17Series Unknown· undefined
2021-11-18Series A· $423.9M
Leadership Team
Tyler Winklevoss
Co-Founder & CEO
Patrick McLaren
Chief Operating Officer, Nifty Gateway
Recent News
2024-10-29
2024-10-29
2024-10-26
Company data provided by crunchbase
