Responsibilities

📍Program Leadership & Governance 📍Design and run a scalable security program aligned with Kiln’s growth, web3 operations, and evolving regulations. 📍Develop and maintain the security framework (policies, standards, and processes). 📍Define and track KPIs/OKRs; present security posture to leadership. 📍Lead risk management activities, including enterprise, vendor, and emerging threat assessments. 📍Maintain the risk register and oversee audit readiness (SOC 2, ISO 27001). 📍Vendor & Third-Party Risk 📍Build and manage the vendor security program, including due diligence, monitoring, and contractual controls. 📍Oversee third-party incident coordination and mitigation. 📍Security Awareness & Incident Management 📍Promote a security-first culture through training and awareness programs. 📍Manage incident response planning and execution; lead post-incident reviews to improve resilience. 📍Regulatory Compliance 📍Establish compliance monitoring programs to ensure ongoing adherence to applicable laws, regulations, and industry standards. 📍Partner with legal and compliance teams to ensure continuous adherence to standards.

Profile

Required 📍Bachelor’s or Master’s in Computer Science or Information Security. 📍8+ years in information security, with strong GRC experience in regulated or high-growth environments. 📍Proven record of building and scaling security programs. 📍Knowledge of ISO 27001, SOC 2, GDPR, and risk management frameworks. 📍Experience with third-party risk, cloud/infrastructure security, and compliance metrics.

If you’re passionate about blockchain and decentralized technologies, explore more opportunities in web3 and cryptocurrency careers.