Manager, Cloud Security
WealthsimpleFull Time
Expert & Leadership (9+ years)
Candidates must possess over 10 years of experience in the security industry, including at least 3 years of hands-on software development. A strong background in leading technical teams in cloud-first environments, deep knowledge of Amazon Web Services and cloud infrastructure security, and expertise in GRC processes for automating and supervising information security controls are essential. Proficiency in network security architecture concepts, hands-on experience with Open Policy Agent, InSpec, or CloudFormation Guard, demonstrated knowledge in written regulatory responses, and proficiency in managing complex global infrastructure as code are also required. Preferred qualifications include experience with defensive security systems, comfort across various platforms and technologies, relevant certifications (CISSP, CISA, AWS CCP, CIPP, or CIPT), and prior experience in security and privacy compliance engineering at a tech or fintech firm.
The Technology Risk Lead will be responsible for bootstrapping BitMEX's Security Assurance practice by architecting Security Policy and Risk Management frameworks with compliance as code as a foundational strategy. This role involves operationalizing the security common controls framework, collaborating with stakeholders on SOC2 Audits and other security initiatives, translating regulatory and compliance requirements into code and actionable technical controls, and ensuring accurate identification, communication, and mitigation of risks, processes, and internal control gaps. Key duties include operationalizing the delivery of security metrics, performing threat modeling spot checks, conducting deep-dive technical risk assessments, providing security training and outreach to internal tech teams, and facilitating external audits over BitMEX's products and internal controls in accordance with standards like SOC 2 and ISO 27001.
Peer-to-peer cryptocurrency trading platform
BitMEX is a peer-to-peer cryptocurrency trading platform that focuses on Bitcoin and other major cryptocurrencies like Ethereum and XRP. It allows traders to leverage their positions, offering up to 100x leverage on Bitcoin contracts and varying leverage on other cryptocurrencies. Users can trade perpetual contracts, which do not expire, enabling them to hold positions indefinitely as long as they meet margin requirements. BitMEX serves a wide range of clients, from individual retail traders to institutional investors, and generates revenue through trading fees on transactions. The platform is recognized for its strong security measures that protect users' funds and data, and it also offers a Testnet for users to practice trading strategies without financial risk. Additionally, BitMEX provides a robust API for traders to create custom trading tools and access real-time data.