Member of Compliance, Information Technology jobs in United States
cer-icon
Apply on Employer Site
company-logo

Anchorage Digital · 5 months ago

Member of Compliance, Information Technology

positionUnited States
timeFull-time
remoteRemote
seniorityMid Level

Anchorage Digital is building the world’s most advanced digital asset platform for institutions to participate in crypto. As a Member of Compliance in Information Technology, you will work on IT risk assessments, controls implementation, and monitoring across various projects, ensuring compliance obligations are met while collaborating with cross-functional teams.

BlockchainCryptocurrencyFinancial ServicesFinTechSoftware
check
Growth OpportunitiesbadNo H1Bnote

Responsibilities

Work on various projects across the organization ranging from IT risk, gap, and readiness assessments to controls implementation and monitoring
Participate in completing detailed testing of IT processes and controls, including developing test objectives, determination of key risks, using the department methodologies under the direction of the IT Risk Lead
Assisting in scoping the reviews, identifying risks in the process, determining expected controls, creating project timelines, conducting process understanding meetings, creating test scripts, performing and documenting testing, developing recommendations, and drafting succinct reports
Assisting with the validation of remediation activities
Can produce detailed working papers to document the testing of the IT control in accordance with department and audit standards
Can work autonomously, define priorities under broad direction, and apply problem-solving skills to translate regulations and compliance obligations into technical controls, and vice versa
Drives work independently and significantly contributes to medium-to-large cross-functional projects with little oversight and coordinating activities of other project team members
Identify process and control gaps and enhancements, and be capable of evaluating remediation plans
Contributes to ad hoc internal and external assessments that support the company’s ongoing and future initiatives
Consistently demonstrates on-time delivery and high-quality work products. Where a deadline or commitment is at risk, escalate to the manager to help manage priorities, if appropriate, and alert affected stakeholders, so there are 'no surprises'
Awareness of the strategy of Anchorage is considered when not only working cross-functionally with security, product, design, engineering, legal, TPRM, people, and external auditors but also understanding how each area is impacted by compliance
Influences the IT Compliance roadmap and initiatives
Understand how the company’s priorities relate to their own area of work and clearly communicate the 'why' behind the work
Promote a positive working environment through proper listening, speaking, and empathy with team members
Embody and is a role model for our cultural pillars
Communicates proactively, takes ownership of assigned work/projects, and is comfortable asking questions when something is unclear or to further knowledge in a specific area
Contribute to cross-functional projects, collaborate with their team and adjacent teams working directly with subject-matter experts, and doing meaningful translation of compliance requirements into actionable processes
Enhance relationships and networks with senior internal and external stakeholders within their own area of expertise
Consistently express clear, thoughtful, analytical, and solutions-oriented communications, whether in high-impact slides/decks, written communications in Slack or email, or verbal communications

Qualification

GovernanceRiskCompliance (GRC)IT Risk/ControlsGRC management toolsCloud computingIT security auditsRisk assessmentsPolicy governanceCross-functional project managementAnalytical skillsCommunication skillsProblem-solving skillsTeam collaborationEmotional intelligence

Required

Have a complete conceptual knowledge and full understanding of principles, practices, and a working knowledge of Governance, Risk, and Compliance (GRC), the full lifecycle of audit methodology, IT Risk/Controls, SOC, information security, policy governance, and management
Have an understanding of IT, engineering processes and tools, and cloud computing
Apply experience and analytical skills to 'connect the dots' between the company's business and products to the IT environment in order to evaluate whether compliance obligations are being met
Resolve a wide range of issues in creative ways, working directly with control owners to ensure regulatory requirements are being met, including managing and tracking findings (from risk assessments, audits, etc.) from identification to remediation
Have experience with GRC management tools (e.g., ServiceNow)
Participate in completing detailed testing of IT processes and controls, including developing test objectives, determination of key risks, using the department methodologies under the direction of the IT Risk Lead
Assisting in scoping the reviews, identifying risks in the process, determining expected controls, creating project timelines, conducting process understanding meetings, creating test scripts, performing and documenting testing, developing recommendations, and drafting succinct reports
Assisting with the validation of remediation activities
Can produce detailed working papers to document the testing of the IT control in accordance with department and audit standards
Can work autonomously, define priorities under broad direction, and apply problem-solving skills to translate regulations and compliance obligations into technical controls, and vice versa
Drives work independently and significantly contributes to medium-to-large cross-functional projects with little oversight and coordinating activities of other project team members
Identify process and control gaps and enhancements, and be capable of evaluating remediation plans
Contributes to ad hoc internal and external assessments that support the company's ongoing and future initiatives
Consistently demonstrates on-time delivery and high-quality work products
Awareness of the strategy of Anchorage is considered when not only working cross-functionally with security, product, design, engineering, legal, TPRM, people, and external auditors but also understanding how each area is impacted by compliance
Influences the IT Compliance roadmap and initiatives
Understand how the company's priorities relate to their own area of work and clearly communicate the ‘why' behind the work
Promote a positive working environment through proper listening, speaking, and empathy with team members
Embody and is a role model for our cultural pillars
Communicates proactively, takes ownership of assigned work/projects, and is comfortable asking questions when something is unclear or to further knowledge in a specific area
Contribute to cross-functional projects, collaborate with their team and adjacent teams working directly with subject-matter experts, and doing meaningful translation of compliance requirements into actionable processes
Enhance relationships and networks with senior internal and external stakeholders within their own area of expertise
Consistently express clear, thoughtful, analytical, and solutions-oriented communications, whether in high-impact slides/decks, written communications in Slack or email, or verbal communications
Experience in IT risk and security audits
Experience in supporting/managing the complete audit life cycle
Proven success performing various risk assessments (e.g., enterprise risk, information security)
Demonstrated success in automating control monitoring techniques
Experience creating and managing policies and procedures
Experience in creating detailed work papers to sufficiently support the testing engagement
Knowledge of public cloud infrastructure (AWS/GCP/Azure)
Passion for digging into the weeds, problem-solving, and building programs from the ground up
Proven track record of effective cross-functional project management and organizational skills
CISA certification or equivalent is required

Preferred

Security certifications such as CISSP, CCSP
Experience in managing GRC processes in tools such as ServiceNow
Understanding of crypto staking and/or governance
Had interactions with regulatory authorities and auditors
A technical/engineering background or mindset
Fintech or financial services industry experience
You were emotionally moved by the soundtrack to Hamilton, which chronicles the founding of a new financial system

Company

Anchorage Digital

twittertwittertwitter
company-logo
Anchorage Digital is a regulated crypto platform that provides institutions with integrated financial services and infrastructure solutions.
dateFounded in 2017
location
San Francisco, California, USA
people-size501-1000 employees
web-link
https://www.anchorage.com

Funding

Current Stage
Late Stage
Total Funding
$487M
Key Investors
Kohlberg Kravis RobertsGICBlockchain Capital
2021-12-15Series D· $350M
2021-02-25Series C· $80M
2019-07-10Series B· $40M

Leadership Team

leader-logo
Nathan McCauley
Co-Founder and CEO
linkedin
leader-logo
Diogo Mónica
Co-Founder and Executive Chairman
linkedin

Recent News

Techmeme
Sources: Anchorage Digital, the first federally chartered US digital asset bank, is seeking to raise $200M to $400M, ahead of a possible IPO in 2027 (Olga Kharif/Bloomberg)
2026-01-17
The Block
Anchorage Digital could raise up to $400 million as IPO rumors swirl: Bloomberg
2026-01-17
Cointelegraph
Crypto bank Anchorage Digital eyes $400M raise with IPO in sight: Report
2026-01-17
Company data provided by crunchbase