Senior/Lead, IT Governance & Compliance

About Hex Trust

Hex Trust is a fully-licensed and insured digital asset custodian. Led by veteran banking technologists and award-winning financial services experts, Hex Trust has built Hex Safe, a proprietary bank-grade platform that delivers solutions for digital asset protocols, foundations, financial institutions, and the Web3 ecosystem. Hex Trust has offices in Singapore, Hong Kong, Dubai, Italy, and Vietnam.

About the Job

As Hex Trust is growing rapidly and looking to expand its business into multiple jurisdictions, we are seeking professionals in the IT GRC (Governance, Risk, and Compliance) space to support our Information Security Team. Your role will involve assisting the company in several areas, including IT Regulatory Affairs, Security Certifications, Policy and Process Design, IT Control and Assurance, and Audit Engagement Coordination. You should have a high-level understanding of various technology functions, processes, and concepts. We expect you to possess strong communication skills, excellent stakeholder management capabilities, and the ability to deliver results with high precision.

Responsibilities

• Develop IT policies, standards, and procedures in accordance with industry best practices, relevant technologies, regulatory requirements, and standards.
• Act as the point of contact for IT Regulatory Affairs and Client Due Diligence Questionnaires.
• Review and revamp existing IT policies to ensure alignment with industry best practices and standards. Lead SOC 2 and ISO accreditations, obtaining and maintaining various IT and security compliance certifications.
• Evaluate and manage capabilities that enable the organization to reliably achieve its objectives, address uncertainty, and act with integrity, making the organization more responsive and efficient overall.
• Manage audit findings remediation to mitigate risks.
• Coordinate external assessment requests related to industry standards and regulatory requirements.
• Act as the primary responsible party to drive and ensure policy compliance.
• Perform and manage regular information security and control assessments to ensure compliance with information security policies and standards.
• Identify and address information security risks and requirements to protect the organization from adversity, surprises, and weaknesses.

Requirements

• Bachelor’s degree in Computer Science, Information Systems, Cyber Security, Business Administration, or a relevant field.
• Strong communication skills to collaborate with various stakeholders in English.
• 2 to 5 years of work experience in at least one of the following areas such as IIT Audit & Risk Assurance, IT Risk & Control, IT Governance & Compliance
• Experience with at least one of the following frameworks and regulatory requirements is preferred:
• VARA/UAE Central Bank / Securities & Commodities Authority / MAS Technology Risk Management Guidelines and Cyber Hygiene Notice
• NIST Cybersecurity Framework
• ISO 27001 / 27002 / 27701
• SOC 2 / AICPA Trust Service Criteria
• GDPR
• Strong knowledge of Information Systems, IT Operations, ITSM, and IT Audit
• Strong problem-solving and project execution skills
• Basic understanding of technology concepts such as DevOps, DevSecOps, Cloud Computing, Blockchain, and Cryptography
• A strong sense of ownership and a self-driven mindset
• Certification holder or exam passer in one or more of the following: CIPP, CIPT, ISEB Certificate in Data Protection, CISA, ISO 27001, CCAK, CRISC, CISM, or CISSP

Candidates who do not tick all the boxes are still encouraged to apply, those with less experience will still be considered for the position but with an adjustment to the level of seniority.

Benefits

As one of the leading Web3 innovators, Hex Trust offers a front-row seat in the ever-changing blockchain & crypto industry. We genuinely believe that people are our greatest asset, and invest heavily so they’re best prepared to support our mission to unlock ownership in decentralised markets! You will be joining a company that is always committed to creating a supportive & inclusive environment that promotes personal and professional growth that furthers your success and drives innovation, collaboration, and passion in the blockchain space.

At Hex Trust, we are proud of our R.A.P.I.D. culture:

• Respect and Inclusion
• Agile
• Passionate
• Indivisible
• Driven by integrity

Join us at Hex Trust and not only can you look forward to working with blockchain professionals to build the decentralized future, but also:

• Competitive Salaries & Bonuses
• Generous Amounts of Paid Time Off (incl. leave for Birthdays, Work Anniversary, and Mental Health etc.)
• Flexible Work Arrangements
• Access to Corporate Discounts and exclusive Employer Perks
• Medical & Retirement Plans
• Professional Learning and Development Opportunities
• Elevate your work using cutting-edge technology
• Fun & friendly office spaces in Hong Kong, Singapore, Dubai and Vietnam
• Regular company & social events