Inmation Security Officer ISO GRC cybersecurity Lead

## Responsibilities Program Leadership & Governance Design and run a scalable security program aligned with Kiln’s growth, web3 operations, and evolving regulations. Develop and maintain the security framework (policies, standards, and processes). Define and track KPIs/OKRs; present security posture to leadership. Lead risk management activities, including enterprise, vendor, and emerging threat assessments. Maintain the risk register and oversee audit readiness (SOC 2, ISO 27001). Vendor & Third-Party Risk Build and manage the vendor security program, including due diligence, monitoring, and contractual controls. Oversee third-party incident coordination and mitigation. Security Awareness & Incident Management Promote a security-first culture through training and awareness programs. Manage incident response planning and execution; lead post-incident reviews to improve resilience. Regulatory Compliance Establish compliance monitoring programs to ensure ongoing adherence to applicable laws, regulations, and industry standards. Partner with legal and compliance teams to ensure continuous adherence to standards. ## Profile Required Bachelor’s or Master’s in Computer Science or Information Security. 8+ years in information security, with strong GRC experience in regulated or high-growth environments. Proven record of building and scaling security programs. Knowledge of ISO 27001, SOC 2, GDPR, and risk management frameworks. Experience with third-party risk, cloud/infrastructure security, and compliance metrics. • *If you’re passionate about blockchain and decentralized technologies, explore more opportunities in web3 and cryptocurrency careers.** Apply tot his job