About the company
In the new and exciting world of the decentralized internet, otherwise known as Web3, it is an individualās fundamental right to own and control their digital identity. To ensure that the individual is paramount in Web3, we are developing products and infrastructure to enable everyone to safely engage, take part, and transact in the emerging, decentralized world of the internet. Our platform centers on Web3 Identity and leverages that identity to provide individuals with secure digital asset storage and recovery, the ability to prove ownership of their creations, and gateways to digital interactions and experiences ā all to empower and benefit every Web3 user. We believe that the decentralized nature of Web3 creates an opportunity for everyone to challenge the digital status quoāto own and control their identity, data, finances, creations, and future. This is the chance to get it right ā to rally a movement of individuals so Web3 belongs to everyone, not to trillion-dollar companies. To fulfill this vision, we are seeking dynamic people who want to join us in leading the way to this new world.
Job Summary
WHAT YOU WILL DO
šAs the Director, Cybersecurity Program, you will provide expertise in governance, program management, project management, and hands on work supporting the cybersecurity engineering and operations team members. This is a hand-on role that involves technical work as well as documentation for process and standards. Responsibilities include, but are not limited to: šBeing a leader in the implementation of the companyĆ¢ĀĀs cybersecurity strategy, leading engineering and architecture activities, performing internal ongoing evaluations of cloud and data center infrastructure, applications, and computing resources. šPartnering closely with information technology, devops, and product teams to effectively implement the technology, platform, and product. šPeriodically performing technical activities such as vulnerability assessment, auditing access administration technologies, tuning intrusion prevention tools, assessing firewalls, configuring web application firewalls, integrating logging into security event management technologies. šBeing proactive on threats to integrate countermeasures into the design of defensive strategies. šEvaluating infrastructure changes for security implications and recommend enhancements through research and analysis. šPeriodically reviewing drafted cyber security policies, building process and engineering documentation, and working with the operations team members to construct run books and knowledge bases. šDemonstrate emotional intelligence and strong communication skills through effective collaboration šShow an aptitude for managing budgets, projects and project based work šAssisting our company with achieving and maintaining compliance with various information security frameworks (i.e. NIST, SOC2, ISO 27001, etc.) and with industry and government rules and regulations.
WHAT YOU WILL NEED TO SUCCEED
šTo succeed in this role, you should have a mixed background in leading and performing hands-on technical work as well as cybersecurity program management, governance, and architecture. Having a background in operating and working with operational security solutions and building processes for vulnerability assessment, remediation, event analysis, incident management, and threat identification will be incredibly beneficial for the role. Ideally, you will have some experience working with virtualization, Kubernetes, cloud platforms, and SaaS solutions security. You will also need to be familiar with implementing security frameworks such as NIST-CSF, CIS, and/or ISO.
