Senior Associate, Security GRC
Remote (USA)
About the Company
Gemini is a global crypto and Web3 platform founded by Tyler Winklevoss and Cameron Winklevoss in 2014. Gemini offers a wide range of crypto products and services for individuals and institutions in over 70 countries.
Crypto is about giving you greater choice, independence, and opportunity. We are here to help you on your journey. We build crypto products that are simple, elegant, and secure. Whether you are an individual or an institution, we help you buy, sell, and store your bitcoin and cryptocurrency.
At Gemini, our mission is to unlock the next era of financial, creative, and personal freedom.
In the United States, we have a flexible hybrid work policy for employees who live within 30 miles of our office headquartered in New York City and our office in Seattle. Employees within the New York and Seattle metropolitan areas are expected to work from the designated office twice a week, unless there is a job-specific requirement to be in the office every workday. Employees outside of these areas are considered part of our remote-first workforce. We believe our hybrid approach for those near our NYC and Seattle offices increases productivity through more in-person collaboration where possible.
The Department: Security Governance, Risk & Compliance
The Role: Senior Associate, Security GRC
Gemini has an exciting opportunity for a Security GRC Senior Associate. The company seeks to identify a highly proactive and technical individual with proven talent in security process development, policy enforcement, and evidence collection automation. The successful candidate will work alongside the rest of the GRC team to ensure policies, procedures, and guidelines align with regulatory requirements and security frameworks. This individual will work with other internal teams to align security goals and objectives with business stakeholders.
Responsibilities:
- Lead Gemini’s effort of rigorous access and entitlement reviews to close identified security gaps.
- Conduct consistent partnership and vendor reviews to ensure compliance with security standards.
- Review authorized application reviews to ensure compliance with regulatory and reporting requirements.
- Support Gemini’s response to Regulators, Auditors, Client inquiries, and Due Diligence Questionnaires.
- Support Gemini’s efforts to maintain SOC 2 Type 2, ISO27001, PCI DSS, and other security certifications.
- Support Gemini security compliance to NYSDFS Reg. 500, CBI, UK FCA and other regulators.
- Support Gemini in automating the evidence collection process for audits.
- Support Gemini compliance …
This job isn't fresh anymore!
Search Fresh JobsJob Profile
Annual bonus Collaboration opportunities Competitive starting salary Comprehensive health plans Discretionary annual bonus Equity grant Flexible hybrid work policy Flexible time off Health plans Hybrid work In-person collaboration Long-term incentive Paid parental leave Remote-first workforce
Tasks- Documentation
- Ensure compliance
Analytical Audit Automation Collaboration Compliance Crypto Cybersecurity Documentation Evidence collection Identity Management Interpersonal Leadership Organization Organizational Policy Enforcement Problem-solving Process Development Reporting Risk Management Security Security frameworks Security governance Tooling Web3 Workday
Experience5-10 years
EducationB.A. BA/BS BA/BS degree B.S. Business Equivalent practical experience
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9