Cybersecurity GRC Manager

Bitcoin Depot is seeking a Cybersecurity GRC Manager to collaborate with the Bitcoin Depot Infosec team,  IT team, and compliance team to manage  GRC (governance, risk, and compliance) and to automate and continuously monitor information security controls, exceptions, risks, and testing. As a GRC Manager, you will coordinate and manage internal and external security audits and certifications.

Bitcoin Depot is the largest multi-cryptocurrency ATM Networks in the world offering users the ability to buy and sell Bitcoin, Litecoin, and Ethereum instantly at 15000+ locations made up of BTMs and BDCheckout locations. Our mission is to bring cryptocurrency to the masses.

We are proud to be an Atlanta Journal-Constitution Top Work Place for 2021 and 2022, the inc 5000, and placing on the ACG Georgia Fast 40 list for two consecutive years. Additionally, we recently announced a definitive agreement for becoming a publicly listed company.

In this role, the successful candidate will possess the following skills and experience, including but not limited to the following.

Areas of Responsibility include: 

• Support the management of Information Security governance and ensure adherence to Cybersecurity policies and standards.
• Work closely with the IT Operations and Compliance team to ensure key Cybersecurity risks and issues are identified, addressed, and resolved in a timely manner.
• Manage  and review Cybersecurity policies based on NIST 800-53  framework 
• Manage training and security awareness programs. 
• Manage and participate in periodic security testing activities (e.g. penetration testing, DR exercises), including training of DR participants on roles and duties. 
• Manage internal and external audits and certification and security questionnaire responses. 
• Assist in generating internal and external relevant security metrics and reports for CISO and Cybersecurity Committee 
• Assist in general Information Security related issues as required, including potential interaction with the Security Operations team, Technology teams, and business stakeholders.
•  

Preferred Qualifications:

• 3+ years of Cybersecurity experience.
• Recent experience of working in a similar capacity, preferably in a financial services organization.
• Experience working within a structured security framework, such as NIST 800-53 or ISO 27001.
• Excellent interpersonal skills, comfortable working at all levels within an organization and in a wide variety of situations.
• An ability to translate security requirements and standards into easily understood business concepts and vice versa.
• Relevant experience with certification/audit (e.g, GDRP, SOC Type I, Type II) is desirable.
• Experience working with third-party vendors and reviewing and conducting annual VAQs
• Relevant industry certification (e.g. CISSP, CISM, ISO 27001) 

• Work independently and have excellent communication skills
• Experience working with cloud solutions AWS, Azure, and Google cloud

Preferred Certifications:

CISSP Or Equivalent

AWS Certification  Practitioner Or Higher

Benefits

• Competitive Salary
• 401K Matching 
• Generous PTO
• Health benefits offered with a company contribution towards premiums
• Wellness benefits 
• Revenue Sharing Plan 
• Casual dress environment when in office
• Monthly company celebrations
• Advancement opportunities based on results
• Weekly catered lunches 
• Premium coffee and tea provided by Buckhead Beans