What you’ll be a part of:  

DCG is a multi-billion dollar global enterprise that builds, buys, and invests in leading blockchain and digital asset companies all over the world. Founded in 2015 by CEO Barry Silbert, the company’s mission is to accelerate the development of a better financial system through the development of digital assets and blockchain technology. Today, DCG sits at the epicenter of the fintech industry, backing more than 150 companies in 35 countries.  

In addition to its investment portfolio, DCG is the parent company of Genesis (a global digital asset prime brokerage), Grayscale Investments (the largest digital currency asset manager), CoinDesk (the leading media and events company in the digital asset space), Foundry (a digital asset mining and staking company), and Luno (a Bitcoin and Digital Asset Exchange). 

We passionately believe bitcoin and blockchain technology will drive global economic and social change. Our unique model enables us to deploy our resources to build the bitcoin and blockchain ecosystem over the long term. Join us and be part of the team that is transforming the future of finance.

What is the role?

We are currently hiring an IT Cybersecurity Strategist to work within Digital Currency Group's newest subsidiary. The new subsidiary remains in stealth mode, but will be working with the world’s leading crypto, blockchain, and DeFi entrepreneurs and investors. In this role, you will lead IT and cyber strategies at HQ  by designing, implementing, and executing world-class programs to build and protect our systems and infrastructure.

What you have to achieve:

  • Optimize the employee experience – improve new hire onboarding and offboarding
  • Manage ongoing SSO, Infrastructure and security projects
  • Coordinate and own MSP, MSS, and parent company integration, operations, and relationships
  • Own quality assurance for IT networking, infrastructure, communications, and support functions
  • Own IT and cyber change management process
  • Act as a primary internal escalation point, problem solver, and IT and cyber advisor
  • Act as a liaison between external IT and security vendors to build, deliver, and manage global cybersecurity and technology protection programs for the enterprise including program playbooks, governance documents, workflows, and processes
  • Develop unique, and implement effective IT and cybersecurity strategies for software systems, networks, data centers, and hardware
  • Build and maintain secure communication strategies and hygiene that take into consideration DLP, data retention, and tagging
  • Own advanced asset, identity, and authentication management and strategy
  • Manage full-lifecycle vendor relationships to include gap analysis, requirements, selection, vetting, negotiation, execution, accountability, and termination to meet the highest performance standards and metrics
  • Partner with HQ HR, Legal, and other key stakeholders within the DCG team to ensure a safe, secure, and creative place to work for the HQ team
  • As a key stakeholder, deliver consistent governance and regulatory compliance – to include GDPR, SEC, FINRA, ISO2700X, and SOC2 certifications

What we expect: 

Expertise in IT and Cybersecurity

  • 6+ years of documented operational and leadership experience in information technology and cybersecurity roles of increasing depth and complexity, including hands-on execution and management
  • Documented experience conducting and managing personal and organizational risk management especially in the areas of IT architecture, IT operations and management, cloud computing, networking, communications, data protection, IT asset management, cybersecurity, and data loss prevention
  • Documented experience conducting and managing personal and organizational risk assessment, mitigation, and investigations especially in the areas of insider threat, and hostile targeting
  • Ability to consistently execute against tight deadlines with incomplete or ambiguous information in rapidly changing environments as evidenced through documented international crisis management experience
  • Domain expertise in AWS, Salesforce, Microsoft Azure and O365, Apple DEP, ITIL, CGEIT
  • Experience and deep understanding of security and privacy-by-design principles to include: OWASP, ISO 2700X, SOC2, Cloud Security Alliance, FIPS and other industry standards and best practices
  • Domain expertise in disaster recovery and business continuity/resiliency
  • Demonstrated ability to manage vendor ecosystem – identify, qualify, negotiate, and manage quality assurance of IT, infrastructure, hardware, and cybersecurity vendors
  • Strong existing professional relationships and network in the IT field with the ability to strategically recruit, build, and manage geographically dispersed teams of full-time employees and contractors
  • Create interactive online and in-person content to educate employees and help them effectively manage business risk
  • Familiarity with DLP tools and secure infrastructure tools such as Zscaler, Proofpoint, Massmailer, SentinelOne, Crowdstrike
  • Familiarity with asset management tools such as Meraki or JAMF
  • Travel up to 10% (according to relevant national and international COVID-19 safety guidelines)
  • More than one professional certification in relevant domains (ISACA, Agile development, Salesforce Certified Development Lifecycle and Deployment Designer, CompTIA, Cloud Architect, IT Audit, PMP, CISSP, CPSE, GPEN, GSEC, CompTIA Security+, CISA, Ethical Hacker, CIPP, etc.) is highly preferred

Solving problems together

  • You are a proven collaborator and communicator; you know how to listen and work well with experts across disciplines
  • You know how to admit what you don’t know, and how to ask the right people for help
  • You thrive working in complex environments with many internal and external stakeholders
  • You take privacy and security seriously, and always consider them when developing solutions

Excited to build from scratch

  • Comfortable with ambiguity
  • A self-starter who proactively builds and solves problems

Salary range:

$120,000 to $150,000 annually.

The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we'll consider your location, experience, and other job-related factors.

What we offer:

  • Inspiring colleagues and an invigorating startup environment
  • Competitive base salary, bonus and incentive compensation
  • Company paid health insurance for employee, partner and dependents
  • Life insurance, short-term & long-term disability coverage
  • 401K plan
  • Pre-tax transit and parking program and flexible spending programs for medical and dependent care
  • Flexible time off and paid parental leave
  • Brand new water-front office opening later this year with world-class perks and amenities

We are an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. 

Apply for this Job

* Required
resume chosen  
(File types: pdf, doc, docx, txt, rtf)
cover_letter chosen  
(File types: pdf, doc, docx, txt, rtf)

Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in HQ Digital’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Form CC-305

OMB Control Number 1250-0005

Expires 05/31/2023

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.