Chief Information Security Officer

Career Renew is recruiting for one of its clients, a digital asset brokerage, a Chief Information Security Officer - candidates need to be based in Europe.

We are a a European-based digital asset brokerage catering to clients primarily in the UK and Europe seeking a secure, low-risk, user-friendly platform for digital asset financial services. Established in 2013, we have a strong track record as one of the oldest digital asset brokerages in Europe, and since 2022, we have embarked on an aggressive growth strategy to establish ourselves as a market leader.

Our mission is to improve the risk-adjusted return of digital asset investing to deliver higher performance for smart money. We do this by driving down the real and perceived risks which enables our customers to invest with confidence.

We are a Seed-stage VC-backed startup with 165% 2023 growth, a strong leadership team and 23 full-time staff. Most of the team is fanatical about Bitcoin's world-changing impact, and we prefer to work with other Bitcoin true believers.

The Chief Information Security Officer will join the executive team to take accountability for the strategy and execution of InfoSec initiatives. This is a ‘hands-on’ role. As the only dedicated security specialist, most of your time will be spent executing your strategy, not managing a team initially. Over time you will lead a growing team to deliver on strategic goals.

We already have significant InfoSec policies and procedures org-wide, your task will be to enhance them further while preparing the firm for rapid, sustainable scaling.

This is an exciting opportunity to join a fast-growing digital asset brokerage, leveraging your security expertise to make a significant impact on our success. As CISO, you will report directly to the CEO while being peers with the CTO and other executives.

This role is being created primarily to create a single point of accountability for InfoSec, reduce CTO duty-splitting and comply with upcoming MiCA / DORA regulatory frameworks.

Working Location

This is a remote/working-from-home position. We expect to open an office in Vilnius in 2025, but attendance will not be mandatory.

Timelines

Start date: December 2024, Interviews: October/ November

Working Week

• Monday - Friday; Flexible but ideally 9am - 6pm CET
• Out-of-hours; some expected to react to threats and during releases

Responsibilities

• Contribute positively and impactfully to our strategy and culture
• Lead and reinforce a culture of goal-setting and self-assessment
• Champion and demonstrate an outcome-focused approach to project work
• Lead teams that embrace mistakes, learn from them, and continually improve
• Lead retrospectives that dispassionately identify root causes and drive towards specific resolutions
• Help the company define its corporate strategy via Objectives and Key Results
• Implement lean security practices that mitigate risk with minimal friction
• Identify and control InfoSec risks in a structured proportionate manner
• Take accountability for all InfoSec tasks from colleagues
• Ensure compliance with relevant regulatory requirements
• Manage security and budgeting of cloud-based infrastructure
• Manage security of colleagues workstations and mobile devices (MDM)
• Create and maintain robust written documentation in collaboration with the legal team, external advisors while ensuring compliance with policies
• Lead a culture of security awareness and personal responsibility
• Lead threat-detection and incident response
• Lead and report on Vulnerability and patch management programmes.
• Regularly test systems for vulnerabilities via internal and external penetration testing and remediate detected vulnerabilities
• Ensure security throughout the SDLC(Software Development Life Cycle); inc CI/CD
• Make everyone around you better

Requirements

• Fluency in English and Lithuanian (Possible communication with the Bank of Lithuania)
• Based in Europe
• A minimum of 5 years of experience in InfoSec, with at least 1 year in a leadership role.
• Proven track record of success in digital assets, fintech, financial services or similar industries
• A background of working at startups
• Bachelor's degree in a related field