Uphold is hiring a

Web3 Security & Privacy Risk Analyst - Governance, Risk, and Compliance (GRC)

The opportunity:

Uphold has an immediate opening for a Security and Privacy Risk Analyst with experience in Risk Assessment, Gap Analysis and Remediation. This is an incredibly exciting opportunity where you’ll get to collaborate with multiple lines of business and internal IT partners in the evaluation and development of remediation plans related to various security and data protection risks. As well as develop and recommend potential technical solutions to internal partners and subject matter experts. You’ll additionally, assist with information security assessments and/or compliance reviews, prepare and initiate assessments/audits facilitated by electronic surveys and questionnaire assessments, interviews and security control reviews.

This role requires a mix of broad business and technical know-how along with a polished ability to communicate with members of the internal team, external entities,and their cross functional partners.

What you’ll be doing primarily:

• Analyze risk and support security and privacy risk assessment activities
• Contributes to the development of the information security and data protection control requirements to ensure Uphold’s information assets are protected, and follow Uphold policies, standards and compliance obligations.
• Help develop and recommend potential technical solutions to internal partners and subject matter experts.
• Communicate and document potential solutions, impact analysis, benefits/risks, implementation requirements, and recommended approach.
• Remain aware of the corporate technology, infrastructure, standards, processes, and strategic direction.
• Assist in the development and implementation of risk management across information security and data privacy programs to ensure information security risks are identified and monitored.
• Partner with incident response and cyber threat intelligence in post-incident reviews, and in providing advice, analysis, and insight to the teams and individuals involved in cyber defense and response;

Required qualifications:

• Bachelor's degree in Information Technology or a relevant Cybersecurity field, and 4-6 years of overall experience.
• 1+ years of experience working as a Risk, Information Assurance, or Information Systems Security Analyst.
• Knowledge of ISO27001, SOC2, PCI-DSS security controls is required.
• Must understand the risk management process, risk mitigation, and risk tracking.
• Must have strong communication skills, both oral and written, with excellent interpersonal, team and organization skills.
• A self-starter with proven abilities to collaborate and gather information from multiple teams.
• Passion for Information Security Governance, Risk, and Compliance
• Strong analytic skills and attention to detail
• Experience applying security controls to an IT environment and gathering evidence of those controls preferred.
• Fluent written and oral English skills.

Bonus if you have:

• Candidates who have industry recognized security certifications strongly preferred (e.g. CRISC, CISSP, CISA, CISM, CEH, etc.)
• Experience in the financial services sector; Cryptocurrency Industries
• Knowledge of blockchain technology
• Knowledge of financial services industry and applicable regulations and industry standards (GLBA, FFIEC, FSSCC, etc.).
• Experience auditing and working with cloud infrastructure.

What we have to offer you:

• An amazing work environment in a company that continues to grow, driven by extraordinary and passionate people that keep up innovating and challenging more each day.
• An international team, in a cutting-edge field, working on the most fascinating projects.
• Growth and career opportunities, and the chance to be proactive and creative.
• A flexible and enthusiastic work environment that offers you snacks, a lot of coffee, and other great benefits.
• Open and transparent culture - we get together on a weekly basis to share updates, strategic plans and engage with each other informally over food and drinks.
• Interesting events that keep you connected with the team and celebrate our success.

Be part of a great company that is revolutionizing the financial services. Apply now!

Apply Now: