Focused on developing products and services for the digital assets sector, Bullish has rewired the traditional exchange to benefit asset holders, enable traders and increase market integrity. Supported by the group’s treasury, Bullish’s new breed of exchange combines deep liquidity, automated market making and industry-leading security and compliance to increase the accessibility of digital assets for investors. Bullish exchange is operated by Bullish (GI) Limited and is regulated in Gibraltar.
Bullish through its German subsidiaries (Bullish DE) have applied for a crypto custody and principal brokerage/proprietary trading licenses. In line with these commitments we are expanding into Germany.
Mission: To make trading with digital assets more rewarding and secure.
Vision: To be the most innovative, respected, and trusted leader in crypto.
Reports to:
Chief Information Security Officer
The role
This role is principally responsible for the information security strategy and programme of the financial institution, including but not limited to information security policies and procedures to safeguard information assets, information security controls, and the management of information security.
Key responsibilities
-
Supporting the management board when defining and changing the information security policy and advising on all issues of information security; this includes helping to resolve conflicting goals (e.g. economic aspects versus information security);
-
Local implementation and monitoring of group level security policies and controls and, where necessary, adapting to local regulatory requirements.
-
Managing and coordinating the institution’s information security processes as well as monitoring the involvement of IT service providers and assisting in any related tasks;
-
Supporting the preparation and updating of technology contingency plans
-
Acting as a contact for any questions relating to information security coming from within the institution or from third parties;
-
Examining information security incidents and reporting these to the local management board and group security;
-
Providing group level “follow the sun” security support within the CET timezone.
Experience & Qualifications
-
Excellent interpersonal skills with strong verbal and written English and German communication skills
-
Prior experience working in a regulated industry, preferably financial services
-
Experience in security operations, including security monitoring and threat management.
-
A broad and deep understanding of cyber-security threats, vulnerabilities, controls and remediation strategies
-
Good technical understanding of information technology and concepts, including hardware, networking, architecture, protocols, files systems and operating systems.
-
An ability to communicate complex and technical security issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner
-
Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and the associated impact on the organization
-
Although CISSP or CISA certifications are not necessary for this role, a level of security understanding at that level is an absolute minimum
-
A good understanding of ITIL and basic understanding of COBIT.
-
Ability to work flexible hours in order to communicate periodically with APAC and US counterparts.
-
The successful applicant must be eligible to work in the member states of the European Union.
Bullish is proud to be an equal opportunity employer. We are fast evolving and striving towards being a globally-diverse community. With integrity at our core, our success is driven by a talented team of individuals and the different perspectives they are encouraged to bring to work every day.