Director, Cybersecurity

In the transformative world of Web3, it is an individual's fundamental right to own and control their digital identity. To ensure that the individual is paramount in Web3, we are developing tools that enable everyone to engage and transact online in a safe and trusted way. Individuals are in control of what information they choose to share and with whom they choose to share it. We are developing a pioneering platform that combines the power of social experiences with Web3 Identity. This platform will provide individuals with access to interactive 3D experiences, verified communities, trusted transactions, the ability to prove ownership of their creations, and visibility and control over the data collected about them -- all designed to empower and benefit every Web3 user.

We believe that the decentralized nature of Web3 creates an opportunity for everyone to challenge the digital status quo—to own and control their identity, data, finances, creations, and future. This is the chance to get it right – to rally a movement of individuals focused on ensuring that Web3 belongs to everyone, not just to trillion-dollar companies. To fulfill this vision, we are seeking dynamic people who want to join us in leading the way to this new world.

As the Director, Cybersecurity, you will apply expertise in overall Cyber program structuring and resourcing, and operationalization to solve for actioned governance, Cyber defenses and workflow at scale. Responsibilities include, but are not limited to:

• Playing a leading role in the implementation of the Cyber strategy, leading engineering and architecture activities, performing internal ongoing evaluations of cloud and data center infrastructure, applications, and computing resources.
• Championing and actioning Cyber policies, developing processes and procedures, protocols and playbooks to support forthcoming business requirements such as Cyber insurance and SOC-2 certification.
• Partnering with critical internal stakeholders such as IT, Product Infrastructure Operations, GRC and Development, among others, to ensure alignment of Cyber strategy.
• Focusing on buildout and management of essential core Cyber programs – including but not limited to threat intelligence, threat monitoring, security operations and incident response as relate to defense from outside hacks; vulnerability management and remediation; Cloud Security and third-party risk.
• Managing proactive, defensive impact in threat identification and countermeasures, Cyber architecture and operations, and aligned with security frameworks (i.e. NIST CSF 2.0, SP 800-53 r5, AI RMF, PFW), compliant with cross-jurisdictional regulations (Privacy, for example) and responsibly justified and budgeted.

To succeed in this role, you should have a mixed background in hands-on technical, business-analytical and strategic planning in Cybersecurity programs. Particular expertise in standards-based governance, operations and buildout of core Cybersecurity capabilities such as vulnerability management, threat intelligence and incident management, and virtualization, Kubernetes, cloud and SaaS security. You also collaborate effectively with cross-functional teams and all levels of management to positively affect business objectives. You are an empathetic leader who sets the team up for success and an innovative leader with a bias for action.

This role requires a bachelor's degree in engineering, Computer Science, MIS, CIS, or related. You have a minimum of 12 years of experience in escalating cybersecurity practitioner positions. A background in technical cybersecurity work, compliance, assessments, experience in cloud and data centers, and a deep understanding of cybersecurity technologies is required. Prior consulting experience is a major plus. You are experienced in hiring, developing, and recognizing talent.

Blockchains, Inc. ("Blockchains") is proud to be a diverse workforce, and we are committed to inclusion and diversity to ensure equal opportunity for all applicants. Blockchains provides equal employment opportunities to all employees and applicants regardless of race, color, religion, sex, sexual orientation, gender identity and/or expression, national origin, age, marital status, physical or mental disability, veteran status, or any other characteristic protected by federal, state, or local laws.

When you apply to a job on this site, the personal data contained in your application will be collected by Blockchains, Inc. ("Controller"), which is located at 610 Waltham Way, Sparks, NV 89437 and can be contacted by emailing privacy@blockchains.com. Controller's data protection officer is Edward O'Connor, who can be contacted at privacy@blockchains.com. Your personal data will be processed for the purposes of managing Controller's recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of Regulation (EU) 2016/679 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment.

Your personal data will be shared with Greenhouse Software, Inc., a cloud services provider located in the United States of America and engaged by Controller to help manage its recruitment and hiring process on Controller's behalf. Accordingly, if you are located outside of the United States, your personal data will be transferred to the United States once you submit it through this site. Because the European Union Commission has determined that United States data privacy laws do not ensure an adequate level of protection for personal data collected from EU data subjects, the transfer will be subject to appropriate additional safeguards under [either the standard contractual clauses or the Privacy Shield]. You can obtain a copy of the standard contractual clauses by contacting us at privacy@blockchains.com.

Your personal data will be retained by Controller as long as Controller determines it is necessary to evaluate your application for employment. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. You also have to right to data portability. In addition, you may lodge a complaint with an EU supervisory authority.