Information Security Associate

Since being founded in 2018, Copper has been building the standard for institutional digital asset infrastructure with a focus on custody, collateral management, and prime services.

Led by Amar Kuchinad, Copper's Global CEO, the firm provides a comprehensive suite of custody, trading and settlement solutions that reduce counterparty risk and bring greater capital and operational efficiency to digital asset markets. At the heart of Copper's offering is Multi-Party Computation (MPC) technology – the gold standard in secure custody. Copper’s multi-award winning custody system is unique in that it can be connected to centralised exchanges, DeFi applications and even staking pools without the assets leaving the custody.

Built on top of this state-of-the-art custody, ClearLoop is the first solution in the market that overcomes a growing industry challenge; counterparty risk with exchanges. This solution underpins a full prime services offering, connecting global exchanges, and enabling customers to trade and settle directly from the safety of their MPC-secured wallets. By reducing settlement time for transfers to a few milliseconds (without blockchain network dependency) and offering enhanced security measures, ClearLoop is rapidly reshaping the way asset managers trade and manage capital.

In addition to industry-leading security certifications, Copper has one of the strongest insurance coverages in the industry from an A+ rated insurer, positioning the firm as the partner of choice for institutions seeking to safeguard their assets.

Department environment

Copper’s Information Security department keep the business’ systems and network resources secure and protect the company, employees, and client data. As an Associate Information Security Professional at Copper, you will have the opportunity to work across our security teams, gaining comprehensive exposure to various aspects of information security. This role provides an exceptional foundation for building a career in cybersecurity, offering hands-on experience across infrastructure security, application security, and security architecture at a leading cryptocurrency technology firm.

Key Responsibilities of the role

A foundational position within Copper's Information Security team, the Associate Information Security Professional will be provided exposure across security disciplines to develop core competencies in maintaining and enhancing the organisation's security posture. Through collaboration with Infrastructure Security, Application Security, Security Operations, and Security Architecture teams, the role enables the delivery of comprehensive security services across Copper's estate.

The position has been structured to provide comprehensive exposure to all aspects of information security within a rapidly growing cryptocurrency technology firm. Initial responsibilities will span multiple security domains, allowing for broad skill development and understanding of enterprise security operations. As experience is gained, opportunities will be provided to develop deeper expertise in specific areas of interest, such as application security, infrastructure security, or security operations.

Career development within the role will be actively supported through structured training programmes and mentorship from experienced security practitioners. The position holder will be encouraged to pursue relevant professional certifications, with support provided for achieving recognised security qualifications. Regular feedback and guidance will be provided to ensure continuous professional development and skill enhancement.

Security service delivery will be supported across four key operational areas:

Security Operations

• Monitor security events and perform alert triage through our established SIEM platforms, ensuring potential security incidents are identified and escalated appropriately;
• Support incident response processes as directed, including documentation of events and assistance with investigation activities;
• Conduct threat intelligence gathering and analysis to help identify potential security risks to the organisation;
• Assist in the maintenance and optimisation of security monitoring tools to ensure effective threat detection;
• Support security incident investigations by gathering evidence and helping to document findings.

Application Security 

• Participate in code security reviews and vulnerability assessments, helping to identify potential security weaknesses;
• Support the implementation and testing of security controls throughout the development lifecycle;
• Conduct security testing and validation of applications and systems as directed:
• Maintain and update security documentation to ensure it reflects current systems and processes;
• Help develop and enhance secure coding guidelines based on industry best practices.

Security Architecture

• Support the review of security designs and controls, ensuring alignment with organisational security requirements;
• Document security patterns and requirements to maintain clear records of security architecture decisions;
• Assist with risk assessments and compliance activities across various business systems;
• Contribute to the development and maintenance of security policies and standards;
• Support architectural review processes by gathering information and preparing documentation.

Your experience, skills and knowledge

Essential

• Bachelor’s degree in computer science, Information Security, or related field.
• Basic understanding of networking and security principles.
• Foundational knowledge of cloud platforms (AWS/Azure).
• Basic scripting abilities (Python, PowerShell, or similar).
• Strong analytical and problem-solving capabilities.
• Excellent communication skills.
• Ability to work effectively in team environments.
• Keen interest in cryptocurrency and blockchain technology.

Desirable

• Relevant Certifications: AWS Cloud Practitioner, Solutions Architect Associate, CompTIA Security+, Networking+, or other relevant qualifications. 
• Wider InfoSec Insight: Exposure to broader information security domain areas e.g., penetration testing, security architecture or incident response.
• Industry Alignment: Awareness of key trends and happenings in broader Cryptocurrency and digital asset industries.
• Compliance & Standards: Familiarity with Enterprise Risk Management (ERM) programmes and compliance with standards like ISO27001, SOC2, and NIST CSF.

The benefits offered

• Holidays: 27 days per annum paid holiday, in addition to bank holidays
• Years of Service Days: Employees are awarded one additional day of paid time off per year of service (up to three years)
• Vitality Health:
  • Medical Insurance: Copper provides all employees with individual cover. Medical history is disregarded, and a 24/7 virtual GP is available (£100 excess per person per year)
  • Dental Insurance: Comprehensive dental cover for preventative, restorative and emergency treatment
  • Audiology Cover: Employees can claim back up 80% of costs, up to £300, for any hearing tests or hearing aids
  • Optical Cover: £500 optical cover (through Vision Express) or 80% reimbursement up to £300 for any other optician
  • Menopause Support: Unlimited support for those experiencing symptoms of the menopause, such as video consultations with a dedicated menopause practitioner
  • Vitality services also include an additional £100 for minor diagnostic tests and private prescriptions, including home diagnostics
  • Headspace - Copper's policy provides all employees with a free Headspace subscription. Headspace provides great resources to manage stress, improve sleep, meditate and enhance mindfulness
  • Discounts and free benefits - the Vitality programme has been designed for preventative care to encourage members to improve their overall health and will reward those for doing so. Employees can access additional benefits such as 50% off running shoes, discounted health screenings, 50% off at Nuffield Health or Virgin Active gyms and much more
• Home Working Energy Support Scheme: to combat energy prices increasing globally, Copper will provide you, in addition to your salary, with a monthly top-up of £60 or £75 (subject to your energy supplier)
• Pension up to 10% matched contribution to our company pension scheme via Smart Pensions
• Cycle to Work
• Life Insurance cover: Four times your base salary
• EAP: access unlimited mental health consultations and contact a 24/7 confidential helpline for emotional support
• ClassPass
• Unmind
• Sponsored Learning and Development opportunities
• Regular company events and social activities

In return for everything you can bring to Copper, we can offer you an exciting, challenging role in a fast-growing and dynamic business, with career opportunities and welcoming working environment.

If you think you have everything we're looking for and more, then we'd love you to apply for the opportunity.

Copper is an equal opportunity employer. We embrace diversity and equal opportunities in a serious way. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be. So, bring us your experience, perspectives, and skills. It is in our differences that we will continue to grow and ensure Copper is transforming how institutional investors engage with digital assets. Copper is a Disability Confident Employer, please let us know if you have a disability. If you require us to provide any assistance during the recruitment process, then we would ask you to highlight this to us and we will be happy to accommodate.