Job Description

Robinhood was founded on a simple idea: that our financial markets should be accessible to all. With customers at the heart of our decisions, Robinhood is lowering barriers and providing greater access to financial information. Together, we are building products and services that help create a financial system everyone can participate in.

As we continue to build...

We’re seeking curious, growth minded thinkers to help shape our vision, structures and systems; playing a key-role as we launch into our ambitious future. If you’re invigorated by our mission, values, and drive to change the world — we’d love to have you apply.

About the team + role

This role is eligible for remote work in limited geographies within the U.S. Check with your recruiter for more information.

The Crypto CISO will be responsible for supervising all cybersecurity matters across Robinhood Crypto in accordance with cybersecurity laws and best practices as well as state regulatory (e.g., NYDFS) rules.

This individual will provide oversight to ensure all aspects of Robinhood’s “Cybersecurity Program” are current and in adherence to regulatory requirements. Specifically, this role will take ownership of the RHC Cybersecurity risk assessment, complete recommendations to remediate identified risks, review the Cybersecurity policy on a yearly basis and update as necessary, retain all evidence of the review performed (incl. actions taken, systems analyzed, reports produced), and provide reporting to the RHC board on the Cybersecurity program. This individual will be responsible for selection of comprehensive cybersecurity controls most appropriate to the firm’s technology and threat environment and implement corresponding defense strategies. Finally, the head of Cybersecurity will be responsible for supervising risk from third-party vendors and system dependencies.

This role will include serving as an advisor on the RHC board of managers for cybersecurity matters. No licenses are required.

What you’ll do

Engage and partner with Operation and Engineering teams to ensure crypto solutions are built with appropriate security considerations
Provide Cybersecurity strategic guidance to the GM and aid in strategic decision making with a Cyber lens
Serve as the point person for contact with Robinhood’s regulators, including NYDFS, etc. during audits and throughout the year for any crypto cybersecurity matters
Review and approve cybersecurity related procedures, policies and written supervisory procedures supporting Robinhood Crypto
Continuously identify and detail asset vulnerabilities and internal and external threats, and audit critical security and continuity practices
Drive selection, implementation and monitoring cybersecurity controls appropriate to Robinhood’s systems, especially the custody operations  (e.g., Robinhood app, all communications, physical office, encryption, remote customer access)
Champion a culture of compliance at Robinhood. Implement adherence to cybersecurity measures across the company

What you bring

2+ years of experience with operating crypto custody platforms and/or assessing Smart Contracts
10+ years of experience in cybersecurity
Extensive experience working with Security, DevOps, and Incident Response teams
BA/BS in the relevant fields (Computer Science, Programming, etc.)
Experience working in a highly regulated industry and working with regulators 
Direct to consumer experience preferred
Familiarity with AWS or other cloud systems
Familiarity with Docker, Kubernetes, or other container based systems.
Proficiency in Python, Golang, or similar dynamic programming language
Experience with data warehousing and data analysis