Security Assurance Specialist
Chainlink Labs
full-time
Posted on:
Location Type: Remote
Location: United States
Visit company websiteExplore more
About the role
- As a Security Assurance Specialist, you will be responsible for assisting in the implementation of key security requirements across the business.
- You will build and maintain Security Control Frameworks and conduct periodic testing of security controls.
- You will conduct third-party risk reviews in collaboration with the procurement, legal, and finance teams.
- You will also assist in identifying, documenting, and managing remediation of risks identified to the business.
- This role is also a career-defining opportunity, as you will be a part of a fast-growing tech company that is successfully implementing a key piece of the world’s blockchain infrastructure designed to power the digital agreements of the future.
- You will be responsible for strengthening the company’s compliance posture, ensuring audit readiness, and driving automation across all security controls.
- You will play a key role in bridging compliance requirements with scalable technical solutions while enabling teams across the business.
Requirements
- Minimum 5+ years of experience in Security Assurance, Security GRC, or a related compliance/security function.
- Proven expertise in security risk assessments, security controls testing and automation.
- Strong knowledge of industry standards and regulatory frameworks (ISO 27001, SOC 2, NIST).
- Experience in implementing, monitoring, and automating security controls aligned with recognized frameworks.
- Skilled in assessing, tracking, and reporting on control deficiencies, and driving timely remediation.
- Solid understanding of technology environments including applications, infrastructure and SaaS.
- Ability to translate compliance requirements into technical control implementations and automated processes.
- Proficiency in documenting processes, procedures, and system requirements to improve efficiency and assurance outcomes.
- Comfortable collaborating directly with engineers to embed compliance and assurance into daily workflows.
- Strong analytical and problem-solving skills, with the ability to interpret complex requirements and design practical solutions.
- Excellent written and verbal communication skills; able to engage effectively with stakeholders at all levels, from engineers to executives.
- Detail-oriented with the ability to manage multiple priorities and deliver high-quality work under deadlines.
- Collaborative and proactive, with a passion for continuous improvement and scaling security assurance processes.
- Industry certifications such as CISSP, CISA, ISO 27001 Lead Implementer are a strong plus.
- Blockchain and Web3 knowledge/experience is a plus, along with enthusiasm to engage with emerging technologies.
- Education or experience in the Information Security field.
- Certification in any of the following: CISSP, CEH, CRISC, AWS/Azure/CGP security, ISO 27001 Lead Auditor or Implementer, FAIR etc.
- Experience in implementing security awareness and training programs for engineering teams.
- High sense of ownership, urgency, and drive, as well as the ability to collaborate cross-functionally.
- Excellent project management and relationship management skills.
Benefits
- All roles with Chainlink Labs are global and remote-based.
- To maintain a smooth and efficient process, we only accept one application per candidate for each position.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
security risk assessmentssecurity controls testingautomation of security controlsdocumenting processesmonitoring security controlstechnical control implementationsreporting on control deficienciesremediation of riskscompliance requirements translationsecurity awareness programs
Soft Skills
analytical skillsproblem-solving skillswritten communicationverbal communicationcollaborationdetail-orientedproject managementrelationship managementproactivecontinuous improvement
Certifications
CISSPCISAISO 27001 Lead ImplementerCEHCRISCAWS securityAzure securityCGP securityISO 27001 Lead AuditorFAIR