GRC Lead
Posted on 12/7/2022
INACTIVE
Integrated platform for institutional digital asset trading
Company Overview
Genesis is a leading financial services firm in the digital assets sector, offering a comprehensive suite of services for portfolio management to qualified individuals and global institutional investors. With a history of industry-firsts, including the launch of the first OTC bitcoin trading desk in 2013, Genesis has established itself as a seasoned provider in the digital assets market. The firm's commitment to operational excellence, superior client service, and a seamless user experience sets it apart from competitors, making it an attractive workplace for those seeking to be at the forefront of digital asset financial services.
Financial Services
Crypto & Web3
Company Stage
N/A
Total Funding
$140M
Founded
2013
Headquarters
New York, New York
Growth & Insights
Headcount
6 month growth
↓ -13%1 year growth
↓ -5%2 year growth
↑ 17%Locations
New York, NY, USA
Experience Level
Entry
Junior
Mid
Senior
Expert
Requirements
- 5+ year of cybersecurity experience in relevant security domains
- Experience as the main point of contact for GRC related initiatives
- Comfort working with cross functional teams and priorities
- Experience working in a highly regulated environment, such as financial services
- Strong analytical and problem-solving skills
- Ability to work independently and as part of a broader team
Responsibilities
- Support responses to regulators, auditors, clients, and other due diligence questions
- Collaborate with cross functional teams to ensure that policies and procedures align with regulatory, audit, and security requirements and frameworks
- Partner with the Enterprise Risk Management (ERM) team to develop and maintain a process to identify, assess, and track risks
- Develop tooling to track risk and compliance status
- Build and oversee the security risk assessment process
- Remain current on best practices and technological advancements, acting as the subject matter expert for security assessments and regulatory compliance
- Implement, maintain, and improve policies, procedures, and internal controls to assure compliance with applicable regulatory and legal requirements, as well as industry best practices
- Collaborate closely with various teams such as Enterprise Risk Management, platform engineering, corporate infrastructure, compliance, and legal to improve the security risk management program
- Manage the remediation of risks through maintenance of the security risk register process
- Lead security assessments and interface with regulators on an as needed basis
- Oversee the vendor due diligence and third-party risk management processes
- Lead efforts to achieve and maintain relevant security certifications
- Collaborate with internal audit to report on compliance with information security policies and procedures
- Advise the Chief Information Security Officer on emerging trends in security governance, operational risk, and vendor risk
Desired Qualifications
- This range is not inclusive of any potential amounts