Information Security Governance Manager

Company Description

Jobs for Humanity is dedicated to building an inclusive and just employment ecosystem. Therefore, we have dedicated this job posting to individuals coming from the following communities: Refugee, Neurodivergent, Single Parent, Blind or Low Vision, Ethnic Minority, and the Previously Incarcerated. If you identify with any of the following communities do not hesitate to register, even if you feel that this particular opportunity is not the right fit for you.

Company Name: Binance

**Job Description**:

- Binance is the global blockchain company behind the world’s largest digital asset exchange by trading volume and users, serving a greater mission to accelerate cryptocurrency adoption and increase the freedom of money.

Are you looking to be a part of the most influential company in the blockchain industry and contribute to the crypto-currency revolution that is changing the world?

**Responsibilities**:

- Support the delivery of global security governance and compliance strategies.
- Manage and maintain a security compliance framework across global entities that can align to Binance’s compliance and Internal audits requirements.
- Develop, manage and maintain effective information security policies, processes, standards and procedures.
- Lead and support ISO 27001, PCI-DSS, SOC 2 Type 1/2 and other security compliance projects.
- Develop maturity model and track of information security controls.
- Internal first point of contact for general security enquiries. Proactively approach and support internal stakeholders across global entities.
- Establish and maintain global security governance and compliance process.
- Respond security questionnaire from internal/external security audit and organize/document the common answers and approaches for future audits.
- Facilitate security risk management within the business units.
- Establish and maintain information risk metrics to highlight information assets that have the highest risk exposure. Conduct regular review of remediation actions and reporting to business and technology senior management.
- Requirements:

- Bachelor's degree or higher in information technology, cyber security or related field.
- 5+ years of experience in a security governance role.
- Strong leadership and excellent communication skills.
- Understanding of Information Risk, security control, data privacy related regulations (e.g. CCPA, SG PDPA, EU GDPR) within the financial services and banking industry.
- Strong knowledge and practical working experiences in delivering global projects of international data privacy and information security frameworks including NIST Cybersecurity & Privacy Framework, ISO 27001, ISO 27701, CIS, SOC 2 Type 1/2 Report, PCI-DSS and ISAE 3000.
- Demonstrable work experience delivering effective business and technical security solutions, processes, tools, and high performing teams.
- A good working knowledge of the latest information technology security trends and emerging threats is essential.
- Experience of implementing risk management principles and methodologies within a security or technology function.
- Good project management experience and skills.
- Strong analytical and problem-solving skills are must have.
- Having one of below security or privacy qualification is a plus - CISSP, CISM, CISA, CEH, SANS, CCSP, ISO 27001 Lead Auditor, IAPP CIPP / CIPM.
- An understanding of cloud infrastructure technologies and associated risks would be beneficial.

**Working at Binance**
- Do something meaningful; Be a part of the future of finance technology and the no.1 company in the industry
- Fast moving, challenging and unique business problems
- International work environment and flat organisation
- Great career development opportunities in a growing company
- Possibility for relocation and international transfers mid-career
- Competitive salary
- Flexible working hours, Casual work attire