• Collaborate to design and develop secure solutions that balance risk and business benefit to enable growth • Work with delivery teams to embed a culture that builds solutions that meet business requirements while proactively identifying and managing security risks • Support the business to mature through the creation, adoption, and reuse of standards or patterns • Champion a 'Secure by design' mindset and the reuse of standardized solutions • Oversee the delivery of the security solution and support it through the relevant governance • Continuously review the design and effectiveness of security controls and support a program of continuous improvement • Provide expertise for key project deliveries, problem resolution, and risk management • Educate, mentor, and support all areas of CloudSmiths to understand the changing security threat landscape and how to enable the business in a secure manner.

• Conduct holistic assessments covering information security, content security, data privacy, and operational risk for all external vendors. • Support vendor onboarding, periodic reviews, remediation management, and continuous monitoring across content and non-content categories.

• Own SwissBorg's security strategy, roadmap, and organisational security posture • Serve as the primary point of contact for Swiss (FINMA) and French (AMF) regulatory authorities on security matters • Lead DORA and MiCA compliance programs, conduct internal IT audits, and ensure compliance • Present security posture, risk assessments, audit reports, and compliance status to the board and executive team • Define and enforce organisation-wide security policies, including RBAC, secrets management, IAM, user permissions, and access governance based on least privilege • Lead security incident response, including coordination with legal, law enforcement, and regulators • Oversee security architecture for cryptocurrency custody systems, hot/cold wallet management, key management, and trading platform security • Manage third-party risk assessment for all critical vendors and blockchain service providers (staking, custody, oracles) • Own security budget, vendor relationships, and contract negotiations at executive level • Develop security awareness training programs and work closely with engineering teams to ensure proper security architecture and implementation

• Help maintain and improve the information security program • Write code to automate evidence collection • Advise research team on securely processing patient data • Evaluate potential vendors to ensure they meet infosec requirements • Consult with engineering on security of new CI/CD infrastructure • Put broad infosec experience to work daily and seek opportunities for growth