Job Application for Information Security Assurance Specialist at Copper.co

Copper is a digital asset technology company dedicated to helping institutional investors safely acquire, trade, and store crypto assets.

Built and led by Dmitry Tokarev, a software and financial engineering specialist, the firm provides a comprehensive suite of custody, trading and settlement solutions that reduce counterparty risk and bring greater capital and operational efficiency to digital asset markets. At the heart of Copper's offering is Multi-Party Computation (MPC) technology – the gold standard in secure custody. Copper’s multi-award winning custody system is unique in that it can be connected to centralised exchanges, DeFi applications and even staking pools without the assets leaving the custody.

Built on top of this state-of-the-art custody, ClearLoop™ is the first solution in the market that overcomes a growing industry challenge; counterparty risk with exchanges. This solution underpins a full prime services offering, connecting global exchanges and enabling customers to trade and settle directly from the safety of their MPC-secured wallets. By reducing settlement time for transfers to a few milliseconds (without blockchain network dependency) and offering enhanced security measures, ClearLoop™ is rapidly reshaping the way asset managers trade and manage capital.

In addition to industry-leading security certifications, Copper has one of the strongest insurance coverages in the industry from an A+ rated insurer, positioning the firm as the partner of choice for institutions seeking to safeguard their assets.

Department environment

Copper’s Information Security department keep the business’ systems and network resources secure and protect the company, employees, and client data. A key member of Copper’s Information Security team, the Information Security Assurance Specialist focuses on the crucial aspects of security assurance, compliance, and risk management. This role is central to safeguarding Copper’s infrastructure by evaluating, designing, and enhancing the security measures that protect our assets. Reporting directly to the Head of Security Architecture, the Information Security Assurance Specialist ensures that security is seamlessly integrated into the fabric of our technological initiatives.

Key Responsibilities of the role

Conduct thorough technical assessments, audits, and reviews to ensure the security of information systems and compliance with relevant internal control frameworks and applicable standards (ISO 27001, SOC2, NIST, GDPR).
Manage and implement compliance frameworks and internal controls to mitigate risks and enhance the security posture.
Collaborate with the Technical Governance, Risk, and Compliance (GRC) team to develop, implement, and maintain security policies and procedures.
Work closely with internal and external stakeholders to assess and improve security measures, ensuring alignment with industry best practices and regulatory requirements.
Lead and support the attainment and maintenance of information security certifications.
Act as a subject matter expert in information security, providing guidance and advice on risk management, security best practices, and technical assurance issues. Monitor and report on the progress of remediation activities, ensuring timely completion and compliance with internal and external audit findings.
Assist in the validation and approval of system designs, ensuring they meet stringent security standards.
Develop, update, and enforce relevant security policies and procedures in line with industry best practices and regulatory requirements specific to the cryptocurrency sector. Ensure these policies are effectively communicated and adhered to across all departments.

Your experience, skills and knowledge

Essential

Information Security Expertise: Must have experience in information security, with a focus on technical assurance, risk management, or compliance roles. The role demands practical skills in addressing and managing security challenges across various operational contexts.
Security Principles and Risk Management: Must possess a solid understanding of information security principles and risk management practices. The ability to apply these concepts effectively in real-world scenarios to safeguard Copper assets is essential.
Knowledge of Information Security Standards and Frameworks: Must possess a good grasp of critical information security standards and frameworks, such as ISO 27001, SOC2, NIST, and GDPR, is required. Candidates should be capable of adapting and applying these standards to ensure compliance and enhance the Copper’s security posture.
Communication Skills: Must have strong communication skills and the ability to explain complex security issues to a wide range of audiences, helping to align technical teams and senior management on security priorities and strategies.
Analytical and Detail-Oriented: The role requires an analytical mindset and a detailed approach for conducting thorough assessments, audits, and compliance checks, ensuring comprehensive coverage of security measures.

Desirable

Professional Certifications: Professional certifications such as CISM, CISSP, CRISC, GSEC, or their equivalents are highly desirable.
Collaborative Teamwork and Leadership: Ability to work effectively within team environments and to lead security initiatives.
Strategic Contribution: Ability to drive strategic improvements in the Copper’s security practices, with the ability to protect against immediate threats but also to shape long-term security strategies and contribute to the creation of a resilient security culture.

The benefits offered

Holidays: 27 days per annum paid holiday, in addition to bank holidays
Years of Service Days: Employees are awarded one additional day of paid time off per year of service (up to three years)
Vitality Health:
- Medical Insurance: Copper provides all employees with individual cover. Medical history is disregarded, and a 24/7 virtual GP is available (£100 excess per person per year)
- Dental Insurance: Comprehensive dental cover for preventative, restorative and emergency treatment
- Audiology Cover: Employees can claim back up 80% of costs, up to £300, for any hearing tests or hearing aids
- Optical Cover: £500 optical cover (through Vision Express) or 80% reimbursement up to £300 for any other optician
- Menopause Support: Unlimited support for those experiencing symptoms of the menopause, such as video consultations with a dedicated menopause practitioner
- Vitality services also include an additional £100 for minor diagnostic tests and private prescriptions, including home diagnostics
- Headspace - Copper's policy provides all employees with a free Headspace subscription. Headspace provides great resources to manage stress, improve sleep, meditate and enhance mindfulness
- Discounts and free benefits - the Vitality programme has been designed for preventative care to encourage members to improve their overall health and will reward those for doing so. Employees can access additional benefits such as 50% off running shoes, discounted health screenings, 50% off at Nuffield Health or Virgin Active gyms and much more
Home Working Energy Support Scheme: to combat energy prices increasing globally, Copper will provide you, in addition to your salary, with a monthly top-up of £60 or £75 (subject to your energy supplier)
Pension up to 10% matched contribution to our company pension scheme via Smart Pensions
Cycle to Work
Life Insurance cover: Four times your base salary
EAP: access unlimited mental health consultations and contact a 24/7 confidential helpline for emotional support
Unmind
Sponsored Learning and Development opportunities
Regular company events and social activities

In return for everything you can bring to Copper, we can offer you an exciting, challenging role in a fast-growing and dynamic business, with career opportunities and welcoming working environment.

If you think you have everything we're looking for and more, then we'd love you to apply for the opportunity.

Copper is an equal opportunity employer. We embrace diversity and equal opportunities in a serious way. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be. So, bring us your experience, perspectives, and skills. It is in our differences that we will continue to grow and ensure Copper is transforming how institutional investors engage with digital assets. Copper is a Disability Confident Employer, please let us know if you have a disability. If you require us to provide any assistance during the recruitment process, then we would ask you to highlight this to us and we will be happy to accommodate.

Apply for this Job

* Required

First Name *

Last Name *

Email *

Phone

Resume/CV

Dropbox Google Drive

(File types: pdf, doc, docx, txt, rtf)

Cover Letter

Dropbox Google Drive

(File types: pdf, doc, docx, txt, rtf)

Do you have the right to work in the UK? *

Please answer yes or no to the below question. If you require sponsorship from Copper.co the answer should be outlined as No.

Are you comfortable with a hybrid working model? At Copper we work 3 days in office and 2 days from home. Our offices are based in Soho London. *

If you wish to work more days in the office, we will always welcome you!

GDPR Notice

When you apply to a job on this site, the personal data contained in your application will be collected by Copper Technologies Group "controller", which is located at Blockchain House, 17 Broadwick Street London, W1F 0DE.

Your personal data will be processed for the purposes of managing controller's recruitment related activities which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results and as is otherwise needed in the recruitment and hiring processes.

Such processing is legally permissionable under Art. 6 (1)(f) of Regulation (EU) 2016/697 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the controller which are the solicitation, evaluation, and selection of applicants for employment.

Your personal information will be shared with Greenhouse Software Inc., a cloud service provider located in the United States of America and engaged by controller to help manage its recruitment and hiring process on controller's behalf. Accordingly, if you are located outside of the United States, your personal data will be transferred to the United States once you submit it through this site. Because the European Union Commission has determined that United States data privacy laws do not ensure an adequate level of protection for personal data collected from the EU data subjects, the transfer will be subject to appropriate additional safeguards under the Privacy Shield.

Your personal data will be retained by Copper Technologies Group as long as Copper.co determines is necessary to evaluate your application for employment. Under the Data Privacy Policy, you have the right to request access to your personal data, to request that your personal data be rectified or deleted and the request that processing of your personal data be restricted. You may also have the right to data portability. In addition you may lodge a complaint with an EU supervisory authority.

Our system has flagged this application as potentially being associated with bot traffic. Please turn off any VPNs, clear your browser cache and cookies, or try submitting your application in a different browser. If this issue persists, please reach out to our support team via our help center.

Please complete the reCAPTCHA above.