Web3 Jobs & Crypto Jobs Where crypto teams hire. Where builders get found.
The #1 crypto-native job board for web3 jobs, crypto jobs & blockchain vacancies. Every role in the ecosystem — dev, design, marketing & more. Remote-first at top protocols, DAOs & companies.
By using web3vacancy you agree to our Terms of Service and Privacy Policy.
Latest Crypto Job Vacancies
No applications. Teams find and message you directly.
BitGo is seeking a Chief Information Security Officer to establish security strategies and lead compliance efforts in Frankfurt, Germany. Join a leading digital asset solutions provider and help secure digital assets for clients worldwide.
Chief Information Security Officer
About the Company
BitGo is the leading infrastructure provider of digital asset solutions, delivering custody, wallets, staking, trading, financing, and settlement services from regulated cold storage. Since founding in 2013, BitGo has focused on enabling clients to securely navigate the digital asset space. With a global presence and multiple Trust companies, BitGo serves thousands of institutions and millions of retail investors worldwide. As the operational backbone of the digital economy, BitGo handles a significant portion of Bitcoin network transactions and is the largest independent digital asset custodian and staking provider in the world.
About the Role
The Chief Information Security Officer will be responsible for establishing the security strategy and direction for BitGo EU. As the top information security leader, you will drive and implement security strategy at the industry leader in securing digital assets. You will demonstrate vision, domain expertise, and strong leadership skills to help shape the next generation of products and services while upholding the trust clients have placed in BitGo to ensure their assets are secure.
Working closely with engineering teams, you and your team will ensure BitGo continues to safely and securely ship highly scalable products. You will design and implement programs to protect customer and company information, and secure IT infrastructure. You will champion a balanced culture of security awareness by supporting risk analysis and strong security practices throughout the company. You will maintain BitGo's security policies, standards, and practices for the entire company and ensure compliance with all applicable laws, regulations, and policies.
Location: Frankfurt, Germany (on-site)
Responsibilities
- Serve as the designated Chief Information Security Officer (CISO) for BitGo Europe GmbH, fulfilling all regulatory obligations under BaFin, DORA, and MiCA requirements
- Develop, implement, and maintain the information security management system (ISMS) in accordance with ISO 27001 and applicable EU regulatory standards
- Lead the identification, assessment, and treatment of ICT and information security risks across the European entity, in alignment with DORA's ICT risk management framework
- Act as the primary point of contact with BaFin and other EU regulatory bodies on all information security matters, audits, and supervisory inquiries
- Own and oversee the incident response and ICT-related incident reporting processes, ensuring timely notification to regulators as required under DORA
- Define and enforce security policies, standards, and controls covering network security, access management, cryptographic asset protection, and operational resilience
- Conduct and coordinate regular security assessments, penetration tests, vulnerability management, and third-party ICT risk reviews
- Collaborate with Group-level security and compliance teams to align European security posture with global BitGo standards while meeting local regulatory requirements
- Provide security awareness training and foster a security-first culture across the Frankfurt office and European operations
- Report regularly to senior management and the Management Board on the state of information security, open risks, and remediation progress
Requirements
- 6 to 10 years of experience in information security, with at least 3 years in a senior or lead CISO role within a regulated financial services or fintech environment
- Deep knowledge of BaFin regulatory requirements, DORA (Digital Operational Resilience Act), and MiCA, with hands-on experience implementing controls to meet these frameworks
- Proven experience managing or operating under ISO 27001-certified ISMS; CISM, CISSP, or equivalent certification strongly preferred
- Strong understanding of ICT risk management, third-party risk, and operational resilience requirements as defined under DORA
- Experience interfacing directly with financial regulators (BaFin or equivalent EU national competent authority) on security matters
- Familiarity with digital asset infrastructure, custody technology, and the unique security considerations of blockchain-based systems is a strong advantage
- Excellent written and verbal communication skills in both English and German; ability to produce regulatory-quality documentation and board-level reporting
- Demonstrated ability to build and lead cross-functional security initiatives in a fast-paced, international organization
- Strong analytical and risk-based thinking; able to balance regulatory compliance with pragmatic, business-enabling security design
- Based in or willing to relocate to Frankfurt; this is an on-site role with limited home-office agreement possible
Benefits
- Competitive base salary, bonus and stock options
- Access to global, group-wide experts in the crypto industry
- Free custom lunches, dinners and snacks
- Computer equipment and workplace furniture to suit your needs
- Great colleagues and inspiring environment
Benefits may vary based on location
- Competitive base salary, bonus and stock options
- Access to global, group wide experts in the crypto industry
- Free custom lunches, dinners and snacks
- Computer equipment and workplace furniture to suit your needs
- Great colleagues and inspiring environment