Anchorage Digital · 6 hours ago
Member of Information & Security
United States
Full-time
Remote
Senior Level
5+ years expAnchorage Digital is building the world’s most advanced digital asset platform for institutions to participate in crypto. As a Member of the Global Information & Security Team, you will help build and scale a security program that ensures the security of data and client digital assets while meeting regulatory requirements.
BlockchainCryptocurrencyFinancial ServicesFinTechSoftware
Responsibilities
Help build and scale a forward-looking security program that ensures the security of data and client’s digital assets and industry standards
Work on various information security projects and areas such as cybersecurity risk assessments, designing and implementing key internal controls, and compiling reporting and metrics
Identify and evaluate risk to the company’s Information Security Program and create and improve controls to manage operational risks in line with regulatory requirements and industry standards
Ensure controls continue to perform as expected, without any issues or deviations
Contribute to the development of company goals and objectives, and help drive the long-term strategy of the Information Security Team
Significantly contribute to medium-to-large projects and overall Anchorage Digital culture
Translate IT compliance and risk strategy into functional and actionable plans and guide execution
Lead and execute key team projects from start to finish, including risk assessments and cybersecurity assessments
Develop meaningful reporting, metrics, analysis, and controls commensurate with business needs and regulatory expectations
Drive the maturity of the enterprise information security and IT risk management program commensurate with national and international standards
Maintain entity controls and identify, report, and control incidents relevant to the services offered by the business lines and supported jurisdictions
Drive resolution of IT security internal and external audit issues, including developing and implementing management action plans
Work autonomously, define priorities under broad direction, and apply problem-solving skills to translate regulations and compliance obligations into technical controls
Qualification
Required
Expert knowledge and wide-ranging experience with the regulatory and industry frameworks/standards/methodologies/technology: NIST 800-53, NIST Cybersecurity Framework, ISO 27001, SOC 1/2, cloud environments, logical security, change management, and computer operations
Ability to quickly grasp new technologies and systems, articulate related risks, develop and implement appropriate risk mitigating measures, and 'connect the dots' between the company's service offerings and products to the IT/Information Security environment
Resolves a wide range of issues in creative ways to ensure regulatory requirements are being met, including managing and tracking findings (from risk assessments, audits, etc.) from identification to remediation
Comprehension of core information security principles in order to reason and continuously improve the core Anchorage Digital security model
Deep understanding of the IT threat landscape for the industry and cloud environments along with the ability to anticipate any impact on the business with the goal to drive a proactive response
Excellent project management skills to support stability and successful execution in a very fast moving and cross-functional environment
Strategically guide the Global Information & Security Team in building and maintaining the overall Information Security and IT Risk Management Program
Translate IT compliance and risk strategy into functional and actionable plans and guides execution. Accountable for results and implementing solutions with a longer term view that impact multiple functions across Anchorage Digital
Lead and execute key team projects from start to finish, including but not limited to risk assessments, cybersecurity assessments, requirements mapping, and gap analyses
Develop meaningful reporting, metrics, analysis, and controls commensurate with business needs and regulatory expectations
Drive the maturity of the enterprise information security and IT risk management program commensurate with national and international standards (e.g. NIST, FFIEC, ISO, SOC 2)
Maintain entity controls and identify, report, and control incidents relevant to the services offered by the business lines and supported jurisdictions
Drive resolution of IT security internal and external audit issues, including developing and implementing management action plans
Work autonomously, defines priorities under broad direction, and applies problem solving skills to translate regulations and compliance obligations into technical controls, and vice-versa
Understanding of enterprise-level information security programs and the ability to maintain a control set and policy framework which satisfies regulatory requirements in an efficient and elegant manner
Understands how the company's priorities relate to their own area of work, and clearly communicates the ‘why' behind the work
Engages with other peers to develop methods, techniques and evaluation criteria for projects, programs, and people that have enterprise-wide impact
Works on complex issues where analysis of situations or data requires an in-depth knowledge of the company
Stays aware of changes through cross-functional collaboration to anticipate and prevent obstacles from hindering team performance
Communicates proactively, takes ownership in assigned work/projects, and is comfortable asking questions when something is unclear or to further knowledge in a specific area
Contributes to cross-functional projects, collaborates with their team and adjacent teams working directly with subject matter experts and doing meaningful translation of compliance requirements into actionable processes
Builds effective relationships with stakeholders including clients, team managers, cross-functional partners, and external partners. Is engaging, easy to approach and builds appropriate rapport, with diplomacy and tact, and recognized as a technical leader whose knowledge, ideas and critical thinking impact the strategic direction of Anchorage Digital
Consistently expresses clear, thoughtful, analytical and solutions-oriented communications, whether in high-impact slides/decks, written communications in slack or email, or verbal communications
Ensure compliance with the changing laws and applicable regulations
Mentors and guides others on the team within the cybersecurity and cloud security domains
Preferred
A background working on programs and the ability to manage multiple processes and projects at once while building constructive working relationships with stakeholders across the different teams
A strong understanding of key cloud architecture principles, cryptography, APIs, as well as appropriate enterprise security practices
Knowledge and experience of Information Security Risk and Security Governance
Experience with NIST 800-53, NIST Cybersecurity Framework, ISO 27001, SOC 1/2
You have experience working in start-ups tech and/or fin-tech companies
You have experience working as information systems auditor or consultant
You were emotionally moved by the soundtrack to Hamilton, which chronicles the founding of a new financial system
Company
Anchorage Digital
Anchorage Digital is a regulated crypto platform that provides institutions with integrated financial services and infrastructure solutions.
501-1000 employees
H1B Sponsorship
Anchorage Digital has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (16)
2024 (7)
2023 (1)
2022 (9)
2020 (2)
Funding
Current Stage
Late StageTotal Funding
$487MKey Investors
Kohlberg Kravis RobertsGICBlockchain Capital
2021-12-15Series D· $350M
2021-02-25Series C· $80M
2019-07-10Series B· $40M
Leadership Team
Nathan McCauley
Co-Founder and CEO
Diogo Mónica
Co-Founder and Executive Chairman
Recent News
Company data provided by crunchbase