Chief Information Security Officer (CISO) - Cryptocurrency

Vuntris is a cryptocurrency company seeking an experienced Chief Information Security Officer to lead information security, cybersecurity governance, technology risk, and security compliance for its stablecoin and digital asset business. This position will build and scale the company's security program, support audit and regulatory readiness, and partner closely with Compliance, Legal, Product, Engineering, and Executive Leadership teams., * Develop and lead the company's information security strategy, cybersecurity governance framework, and technology risk management program.

• Establish security policies, procedures, controls, and risk management processes aligned with regulatory requirements, business objectives, and industry best practices.
• Design and oversee security controls for stablecoin operations, blockchain systems, wallet infrastructure, custody-related processes, cloud environments, APIs, and digital asset platforms.
• Partner with Compliance, Legal, Product, Engineering, Finance, and Operations teams to support crypto compliance, AML/BSA obligations, audit readiness, vendor due diligence, and operational resilience.
• Lead security governance, risk, and compliance initiatives, including SOC 2, ISO 27001, NIST CSF, internal controls, audits, regulatory reviews, and institutional due diligence.
• Manage cybersecurity risk programs, including risk assessments, threat modeling, vulnerability management, incident response, business continuity, disaster recovery, access control, and data protection.
• Oversee third-party security risk assessments for technology vendors, cloud providers, custody partners, blockchain infrastructure providers, payment partners, and other critical service providers.
• Work with Product and Engineering teams to embed security into product design, software development, infrastructure deployment, and blockchain integration processes.
• Monitor emerging cybersecurity threats, blockchain security risks, wallet compromise risks, fraud typologies, cloud vulnerabilities, and regulatory developments affecting crypto and stablecoin businesses.
• Prepare executive-level security reporting, including risk dashboards, remediation progress, security maturity metrics, and incident updates.
• Lead security awareness training focused on crypto-native risks, including phishing, wallet security, private key protection, social engineering, access control, and data protection.
• Build, mentor, and scale the information security function as the company grows.

Do you have experience in Senior leadership?, Do you have a Master's degree?, * Bachelor's degree in Computer Science, Cybersecurity, Information Security, Information Technology, Engineering, Risk Management, or a related field. Master's degree preferred.

• 10+ years of progressive experience in information security, cybersecurity governance, technology risk, or IT compliance, including experience in a senior security leadership role.
• Proven experience building, scaling, or modernizing security programs, including policies, controls, governance frameworks, and risk management processes.
• Strong understanding of cybersecurity and compliance frameworks, including SOC 2, ISO 27001, NIST CSF, NIST 800-53, CIS Controls, PCI-DSS, COBIT, or similar standards.
• Experience supporting audits, regulatory reviews, security certifications, vendor due diligence, institutional client reviews, and executive-level risk reporting.
• Strong knowledge of cloud security, identity and access management, vulnerability management, incident response, business continuity/disaster recovery, data governance, security monitoring, and third-party risk management.
• Experience in crypto, blockchain, Web3, DeFi, stablecoin, digital assets, fintech, payments, banking, or other regulated technology environments is strongly preferred.
• Familiarity with wallet infrastructure, custody operations, private key management, transaction monitoring, blockchain analytics, and crypto-related operational risks is strongly preferred.
• Ability to communicate technical and security risks clearly to executive leadership, compliance, legal, engineering, auditors, regulators, banking partners, and other business stakeholders.
• Comfortable working in a fast-paced early-stage or high-growth environment with evolving business, regulatory, and technology requirements.
• Relevant certifications preferred, such as CISSP, CISM, CISA, CRISC, CCSP, ISO 27001 Lead Implementer, GIAC, or equivalent certifications., * Security leadership experience in a cryptocurrency, blockchain, Web3, DeFi, digital asset, fintech, payment, or financial services company.
• Experience with stablecoin operations, crypto custody, blockchain-based trading, payment settlement, wallet infrastructure, or digital asset risk governance.
• Experience leading SOC 2 Type II, ISO 27001, NIST, PCI-DSS, penetration testing, cybersecurity insurance reviews, and regulatory or banking partner security reviews.
• Experience building a zero-to-one security program in an early-stage company.
• Experience with GRC platforms, compliance automation, risk registers, control mapping, evidence collection, and security metrics.
• Experience working with auditors, regulators, institutional clients, banking partners, custody vendors, and technology partners.
• Familiarity with Zero Trust architecture, cloud security posture management, SIEM, EDR, DLP, IAM, vulnerability management tools, and security monitoring platforms.

$180,000 - $250,000 a year - Full-time, Pulled from the full job description

• 401(k)
• Health insurance
• Paid time off
• Vision insurance
• Dental insurance
• Paid sick time
• Paid holidays