Swan Bitcoin is hiring a
Chief Information Security Officer in Worldwide

Summary

The job is for a Chief Information Security Officer (CISO) or Chief Security Officer (CSO) at a Bitcoin-only trust company launched by Swan. The CISO will lead the Security and IT divisions, provide strategic oversight of cybersecurity programs, develop and oversee security teams, architect and secure systems, lead incident response, conduct cybersecurity training and testing, manage external relations, set direction for vulnerability management, champion threat intelligence, provide executive briefings, and establish a robust monitoring framework.

Requirements

• Professional Experience: A minimum of 10 years in a leadership role related to information security and IT, with a demonstrated track record of managing and guiding teams to success
• Financial & Regulatory Experience: Prior experience in Banking, Trust Companies, Financial Technology, and other regulated financial environments
• Experience with digital asset management systems and cold storage systems
• Familiarity with state trust company regulations or FFIEC guidelines a plus
• Educational Background: Advanced certifications such as CISSP, CISM, or CISA are highly desirable but not required

Responsibilities

• Strategic Oversight of Cybersecurity Programs: Provide direction and leadership in the formulation and execution of strategic cybersecurity & IT initiatives across the company
• Leadership of Cybersecurity & IT Teams: Develop, oversee and lead the Security and IT teams. Build a collaborative team culture, ensuring constant communication and collaboration between IT and Security personnel
• Architect and Secure Systems: Provide technical direction on and ensure each system is secure, as well as the interactions between systems
• Incident Response Leadership: Develop, oversee, and periodically refine the company's cybersecurity incident response strategy. Drive regular training sessions for team members, ensuring a cohesive and effective response to threats and breaches
• Cybersecurity Training and Testing: Be responsible for the ideation and implementation of cybersecurity tabletop exercises, setting the direction for simulations that challenge and improve the company’s defense mechanisms
• External Relations Management: Lead the company’s engagement strategy with third-party vendors to uphold our cybersecurity standards. Set the tone for collaboration with law enforcement agencies during significant cybersecurity incidents. Develop and deploy vendor assessment policy
• Direction for Vulnerability Management: Set the strategic direction for continuous monitoring and management of vulnerabilities within the company’s digital infrastructure. Guide the team in devising and implementing remediation plans effectively
• Threat Intelligence Leadership: Champion the effort to stay abreast of the evolving cybersecurity threat landscape. Direct the team to proactively research and prepare for emerging threats
• Executive Briefings and Consultation: Serve as the company’s senior staff on cybersecurity matters. Periodically provide insights, recommend strategies, and emphasize best practices to protect our digital assets
• Leadership in Active Monitoring: Establish a robust monitoring framework for the company and its digital assets, ensuring the team actively detects and responds to any signs of malicious activity

Benefits

This is a USA-based W-2 employment role