About the company
In the new and exciting world of the decentralized internet, otherwise known as Web3, it is an individualās fundamental right to own and control their digital identity. To ensure that the individual is paramount in Web3, we are developing products and infrastructure to enable everyone to safely engage, take part, and transact in the emerging, decentralized world of the internet. Our platform centers on Web3 Identity and leverages that identity to provide individuals with secure digital asset storage and recovery, the ability to prove ownership of their creations, and gateways to digital interactions and experiences ā all to empower and benefit every Web3 user. We believe that the decentralized nature of Web3 creates an opportunity for everyone to challenge the digital status quoāto own and control their identity, data, finances, creations, and future. This is the chance to get it right ā to rally a movement of individuals so Web3 belongs to everyone, not to trillion-dollar companies. To fulfill this vision, we are seeking dynamic people who want to join us in leading the way to this new world.
Job Summary
WHAT YOU WILL DO
šAs a key member of Governance, Risk and Compliance (GRC), you will be critical to the buildout of the team and function with cross-organizational impact. Job One will be to stand up the GRC platform for information-technology and third-party risk management and to mature, respectively, ITRM and TPRM as essential GRC focus areas. Based on the foundational skills in ITRM and TPRM that you bring to Blockchains, you will drive partner compliance, too, among other day-to-day activities and strategic initiatives. šBuild GRC platform šBuild and maintain the GRC platform with priority programmatic capture of Cyber/IT assets and risks, timely analysis to enable risk control, and robust reporting. šDrive platform automation of TPRM process, including self-service questionnaires and evidence uploads, evaluation of results and facilitated workflow for analysis and reporting. šExpand day-to-day GRC activities šDrive data acquisition, analysis and reporting on prospective third-party partners and vendors to ensure risks are identified with recommended controls and monitoring in place. šFacilitate Cyber Awareness Training curriculum, evaluation of assessments, periodic reporting and expansion of program goals and impact. šDrive Partner Compliance and other GRC initiatives šCatalyze process and procedural alignment of internal teams to ensure our own and to monitor strategic partnersā compliance with engagement terms, escalating risks with recommended mitigations, and directing efforts to ensure synergy, compliance. šTake up and advance other cross-functional projects of GRC import once the platform and day-to-day rudiments are mastered, and grow with the role while growing the function.
WHAT YOU WILL NEED TO SUCCEED
šFocused delivery of specified outcomes, often within tight timeframes, is essential ā desirably with minimal supervision and a commitment to communicate. You demonstrate big picture grasp with keen attention to detail; self-directed technical savvy, preferably with cybersecurity certification(s); and effortless interaction and native partnering with different personality types across professional functions both inside and outside the organization.
