About the company
BitGo is the leader in digital asset financial services, providing institutional investors with liquidity, custody, and security solutions. Founded in 2013, BitGo pioneered the multi-signature wallet and is the first digital asset company to focus exclusively on serving institutional clients. Active in both centralized and decentralized finance, BitGo offers market leading trading, lending, and borrowing services through its prime brokerage services and acts as the custodian for WBTC, the leading global stablecoin for Bitcoin. In 2020, BitGo launched BitGo Portfolio and Tax, providing clients with a full-stack solution for digital assets. In 2018, it launched BitGo Trust Company, the first qualified custodian purpose-built for storing digital assets. BitGo processes approximately 20% of all global Bitcoin transactions, and supports over 600 coins and tokens. BitGo provides the security and operational backbone for more than 1500 institutional clients in 50 countries, including many regulated entities and the world’s top cryptocurrency exchanges and platforms. BitGo is backed by Goldman Sachs, Craft Ventures, Digital Currency Group, DRW, Galaxy Digital Ventures, Redpoint Ventures, and Valor Equity Partners.
Job Summary
Responsibilities:
📍Map existing security controls against security standards and regulations 📍Design controls appropriate to securing digital assets 📍Maintain existing information security controls and ensure their proper functioning 📍Ensure compliance with relevant information regulations from financial regulators, such as NY DFS, VARA, MAS, BaFin, etc. 📍Build on our existing commitment to security best practices like C4 and BSSC 📍Follow privacy laws and ensure compliance therewith including GDPR, CCPA, etc. 📍Leverage NIST CSF 2.0 to mature the security program 📍Provide guidance on security best practices
Skills & Experience:
📍We are looking for teammates who share and practice our values: open communication, transparency, taking ownership, and a high level of craftsmanship. We are looking for coworkers who share our vision and mission: deliver trust in digital assets.
Required:
📍6-7 years in information security 📍Familiar and experienced with NIST CSF 2.0 or similar framework 📍Proven previous success mapping and tracking disparate and duplicative requirements into a single unified control system 📍Track record in working across teams to achieve information security outcomes 📍Hands-on experience with information security compliance tooling 📍Exposure to working with at least one financial regulator 📍This role requires a technical background and the ability to quickly learn complex new concepts 📍Excellent communication skills, with the ability to explain technical concepts to non-technical stakeholders. 📍Industry certifications like CISSP, CISM are a plus
