Job Description

QCP Capital is a full-suite crypto asset trading firm. Since our founding in 2017, we have witnessed the potential of crypto assets to transform financial markets and the world at large.

Today we exist at the centre of this change, bridging institutional and crypto ecosystems. We work to catalyse a circle of progress ultimately to shape a better financial system for generations to come.

We give investors bespoke access to a new class of opportunities. Everything we do is backed by institutional-grade experience, research and infrastructure. Our team is on hand around-the-clock to navigate the ever-evolving markets with you.

Beyond that, we are forging the industry ahead. We provide our community of institutions, builders and innovators with the resources and liquidity to go further.

Core Responsibilities:

• Manage all day to day activities within IT to ensure effective operations.
• Manage the IT service delivery and change management process.
• Support vendor due-diligence process and conduct outsourcing IT risk assessments.
• Support internal and external audit process for relevant compliance concerns including IT General, Application and Process Controls.
• Manage the disaster recovery and business continuity processes.
• Mentor security analysts regarding risk management, information security controls, incident analysis, incident response, security monitoring, and other operational tasks.
• Participate in security incident management and vulnerability management processes.
• Participate in evaluating, recommending, implementing, and troubleshooting security solutions and evaluating IT security of the organisation.
• Promoting responsible behaviour by improving the culture internally to ensure all staff adhere to good security practices.
• Conduct security investigations to provide guidance and oversight on incident resolution and containment techniques.
• Act as the team lead and accountable for information security incidents.
• Prepare Monthly Executive Summary Reports.

• 5-10 years of Information Security and/or IT experience.
• Preferred Information Security professional designations such as CISSP, CISM, CRISC.
• Knowledge on industry standards such as TRMG, ISO27001, NIST, CSA, OWASP, etc.
• Self-starter, work independently and adjust to changing priorities, critical and strategic thinker, negotiator and consensus builder.
• Strong knowledge of IT including multiple operating systems and system administration skills such as Windows, Linux.
• Strong understanding of security incident management, malware management and vulnerability management processes.
• Strong understanding of networking principles and commonly used Internet protocols.
• Demonstrated skills in digital investigations including: computer forensics, network forensics, malware analysis and memory analysis is a plus.
• A Bachelor\'s Degree / Diploma in a relevant area of study with a preference for Information Security, Computer Science or Computer Engineering.
• Excellent English written and verbal skills.