Info Security Analyst

Overview

We are partnering with a leading financial services organization that is at the forefront of innovation, dedicated to providing secure and reliable financial solutions to millions. This organization is expanding its capabilities in emerging financial technologies, focusing on creating new opportunities for its clients while upholding the highest standards of security and compliance. As an Aquent talent, you will be joining a team committed to pioneering the future of finance in a secure and responsible manner.

Are you ready to make a significant impact at the intersection of cybersecurity and cutting-edge financial technology? We are seeking a dynamic and experienced professional to join a dedicated team focused on technology risk and cybersecurity compliance. In this pivotal role, you will act as the primary cybersecurity risk liaison and advisor for business units exploring and engaging with innovative digital asset products, services, and strategic partnerships. Your expertise will be crucial in shaping secure and compliant pathways for new initiatives, ensuring that innovation thrives within a robust security framework. This is an incredible opportunity to influence critical security decisions, drive strategic initiatives, and protect a growing digital ecosystem, directly contributing to the organization’s success and its secure expansion into new financial frontiers.

**What You’ll Do:**

* Serve as the embedded security partner for digital asset business teams, ensuring security requirements are seamlessly integrated with product and operational objectives.
* Translate enterprise cybersecurity policies and procedures into practical, actionable expectations tailored for digital asset initiatives.
* Actively participate in project planning, architecture reviews, and roadmap discussions to ensure secure design and regulatory alignment from the outset.
* Support and manage risk exception, risk acceptance, and mitigation processes for digital asset ventures.
* Lead comprehensive cybersecurity risk assessments for digital asset products, including custody models, wallet operations, blockchain integrations, and supporting vendors.
* Evaluate and mitigate risks associated with private key management, wallet operations, smart contract vulnerabilities, node infrastructure, and transaction processes.
* Document identified risks, recommend effective compensating controls, and meticulously track remediation efforts to closure.
* Own the security risk lifecycle for digital asset vendors, from initial due diligence and contract negotiation through ongoing monitoring.
* Review vendor cybersecurity evidence, including independent audit reports, penetration tests, security questionnaires, and cloud posture assessments.
* Ensure contractual controls are in place for data protection, breach notification, digital asset handling, and regulatory adherence with third-party partners.
* Track and drive the remediation of security findings identified with vendors.
* Educate business, engineering, and operations teams on the organization’s cybersecurity policies and secure practices.
* Develop specialized security training and guidance specific to digital asset technologies.
* Champion a strong culture of security awareness across all relevant teams.
* Prepare for and coordinate internal and external audit activities related to digital assets.
* Ensure security controls operate effectively and that all evidence is complete and readily available for compliance reviews.
* Support alignment with regulatory expectations from bodies such as the SEC, FINRA, OCC, and FFIEC.
* Collaborate with Cyber Operations and Incident Response teams to enhance preparedness for digital asset-specific incidents.
* Contribute to the development of incident response playbooks for scenarios such as key compromise, vendor breaches, on-chain exploits, and blockchain outages.
* Produce clear, business-focused reports on residual risk, vendor security posture, assessment outcomes, key risk indicators, and audit findings.
* Present risks and recommendations to leadership, facilitating informed decision-making.

**Required Qualifications:**

* Bachelor’s degree in Information Security, Computer Science, Engineering, or a related technical field.
* 7+ years of experience in cybersecurity or technology risk management.
* Demonstrated experience with digital assets, blockchain technology, or digital asset custody/security.
* Familiarity with industry-standard cybersecurity frameworks such as NIST CSF, NIST 800-53, SOC 2, and FFIEC guidelines.
* Exceptional communication and risk articulation skills, capable of conveying complex security concepts to diverse audiences.

**Preferred Qualifications:**

* Cybersecurity related certifications such as CISSP, CISM, CRISC, CCSP, or CISA.
* Crypto-focused credentials or specialized blockchain training.
* Knowledge of key management systems, smart contract risks, and cloud security best practices.
* Experience utilizing Governance, Risk, and Compliance (GRC) platforms.

**About Aquent Talent:**

Aquent Talent connects the best talent in marketing, creative, and design with the world’s biggest brands.
Our eligible talent get access to amazing benefits like subsidized health, vision, and dental plans, paid sick leave, and retirement plans with a match. More information on our awesome benefits!
Aquent is an equal-opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics. We’re about creating an inclusive environment-one where different backgrounds, experiences, and perspectives are valued, and everyone can contribute, grow their careers, and thrive.

#LI-LB1