Web3 Information Security and Compliance Specialist

About the Company Founded in 2018 by professors of Yale University and Columbia University, CertiK is a pioneer in blockchain security, utilizing best-in-class AI technology to secure and monitor blockchain protocols and smart contracts. CertiK’s mission is to secure the cyber world. Starting with blockchain, CertiK applies cutting-edge innovations from academia into an enterprise, enabling mission-critical applications to be built with security and correctness. To date, CertiK has worked with over 3,200 Enterprise clients, secured over $310 billion worth of digital assets, and has detected over 60,000 vulnerabilities in blockchain code. Our clients include leading projects such as Aave, Polygon, Binance Smart Chain, Terra, Yearn, and Chiliz. Investors = Insight Partners, Sequoia, Tiger Global, Coatue Management, Lightspeed, Advent International, SoftBank, Hillhouse Capital, Goldman Sachs, Coinbase Ventures, Binance, Shunwei Capital, IDG Capital, Wing, Legend Star, Danhua Capital, and other investors. About the Role We are seeking an information security and compliance specialist to assist with the design and implementation of information security and data protection policies that protect the company’s operation, products, and customer data. Experience in information security operations and compliance auditing is a plus. Responsibilities: Create, review and maintain the company’s policies and practices that govern information security and operational functions associated with the company’s products and services. Support the CISO to improve the risk management framework and facilitate product teams in ongoing regulatory, compliance, and privacy efforts. Facilitating ISO 27001 and SOC 2 certifications, design and implementing controls based on the ISO27001 and SOC standards. Collaborate with product and engineering teams to facilitate remediation of compliance gaps. Conduct a timely review of security and data privacy requirements from customers and implement policies and controls to address any risks identified. Responsible for timely and effective execution of both internal and external audit commitments; Performs guidance and support for internal and external customers; Perform other duties as assigned. Requirements Bachelor’s degree in management of information systems, computer science, information security, or related field. Knowledge of IT security controls frameworks (ISO, SOC). Familiar with compliance management software and tools Auditing experiences with security and privacy regulations, specifically SOC 2, and ISO27001. Can design and implement strategies with diverse teams. Excellent written and verbal communication skills About You You’re a self-starter. You believe in tackling the most important problems, even if they are the most difficult problems. You’re comfortable with the unknown and understand that startup life means that you’re going to be wearing multiple hats. And that’s what motivates you. You’re accountable and obsessed with improvement, both in yourself and in others. You’re up to the challenge of building a world-class company that aims to be the infrastructure for more secure software for all. Compensation The target annual salary for this role performed in the US is $120,000 - $150,000. The exact compensation at which this job is filled will be determined by the skills and experience of qualified candidates. #blockchain #startups #hiring CertiK is proud to offer medical, vision, and dental insurance, 401(k) plan with company match, life and accidental death and dismemberment insurance, HSA (with a high deductible plan), FSA, and other benefits to all full-time employees, along with flexible paid time off and holidays. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire. CertiK is proud to be an equal opportunity employer. We will not discriminate against any applicant or employee on the basis of age, race, color, creed, religion, sex, sexual orientation, gender, gender identity or expression, medical condition, national origin, ancestry, citizenship, marital status or civil partnership/union status, physical or mental disability, pregnancy, childbirth, genetic information, military, and veteran status, or any other basis prohibited by applicable federal, state or local law. CertiK will consider employment-qualified applicants with criminal histories in a manner consistent with local and federal requirements. https://www.eeoc.gov/sites/default/files/migrated_files/employers/poster_screen_reader_optimized.pdf All CertiK employees are expected to actively support diversity on their teams and in the Company.