Cybersecurity Engineer (Technology Governance and Compliance )
Matrixport
ABOUT US
Matrixport is Asia’s fastest growing one-stop digital asset financial services platform with over $10 billion in assets under custody & management. We are over 300 strong and serve both institutional and retail customers across Asia and Europe.
Our mission is to make crypto easy for everyone through our comprehensive suite of innovative and easy-to-use crypto investment products and services. Our offerings include Cactus Custody™, spot OTC, fixed income, structured products, lending as well as asset management. Our team is rapidly growing.
“Get More From Your Crypto”.
WHY JOIN US
At Matrixport, we tackle complex problems as a team. We encourage openness and promote transparency, respect, and inclusivity. Every team member is valued and has a voice that can be heard. We are always in the search for intellectually curious and entrepreneurial individuals who are keen on making an impact in the crypto ecosystem, and in building a better product for the next one billion users.
ABOUT THE ROLE
Duties & Responsibilities:
- Design and maintain systems that ensure continuous adherence to industry best practices, applicable technologies, regulatory requirements, and standards such as ISO 27001, ISO 27701, SOC 1/2, NIST, and CIS Benchmarks.
- Manage third-party security assessments and due diligence requests from regulatory bodies and auditors.
- Perform and oversee information security and control assessments to verify compliance with internal security policies and external standards.
- Evaluate existing security measures and processes to pinpoint opportunities for enhancement.
Requirements:
- Bachelor's degree in Computer Science, Information Systems, or a related technical discipline
- Strong communication skills to collaborate with various stakeholders in English
- 2+ years of work experience in Risk Assurance, Risk & Control or Governance & Compliance
- Prior involvement with at least one of the following frameworks and regulatory requirements is preferred:
MAS Technology Risk Management Guidelines and Cyber Hygiene Notice
NIST Cybersecurity Framework
ISO 27001 / 27701
SOC 2
GDPR
- Strong problem-solving and project execution skills
- Professional qualification holder will be an advantage: CIPP/E (US/A/CN), CIPT, CIPM, CISA, CISSP, CRISC or ISO 27001 LA