Lead, Security GRC
@ Gemini

San Francisco, CA
$157,000
On Site
Full Time
Posted 20 hours ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXXX XXXXXXXXXXXXX XXXXXXXX****** @gemini.com
Recommended after applying

Job Details

About Gemini

Gemini is a global crypto and Web3 platform founded by Cameron and Tyler Winklevoss in 2014. With trusted crypto products and services in over 70 countries, Gemini bridges traditional finance with the emerging cryptoeconomy.

The Department: Security Governance, Risk & Compliance (GRC)

This role is part of the Security Governance, Risk & Compliance team.

The Role: Lead, Security GRC

Gemini is seeking a Security GRC Lead to own and drive the organization’s security governance programs. You will partner with senior leadership and cross-functional teams to implement best-in-class security frameworks, develop policies, and enforce governance across the enterprise.

Responsibilities

  • Governance Ownership: Set vision, priorities, and operating model for security governance.
  • Policy Management: Establish and maintain security policies, standards, and procedures.
  • Oversight: Lead policy lifecycle, control design and regulatory compliance efforts.
  • Cross-Functional Enablement: Partner with engineering, IT, and business units to embed security governance.
  • Reporting: Define metrics, dashboards and report outcomes to executive leadership.
  • Culture and Leadership: Mentor teams and shape a culture of accountability and transparency.

Minimum Qualifications

  • Bachelor’s degree or equivalent in cybersecurity or related field.
  • 8+ years’ experience in security governance.
  • Proven track record in establishing governance frameworks and policies.
  • Expertise in frameworks (ISO 27001, NIST CSF, SOC 2, PCI DSS, NYDFS).
  • Relevant certification (CISSP, CISM, or similar).

Preferred Qualifications

  • Big 4 or consulting experience in governance design.
  • Experience with GRC platforms (e.g., AuditBoard).
  • Familiarity with cloud-native environment governance (AWS, GCP, Azure).
  • Strong executive presence and enterprise alignment skills.

Compensation & Benefits

Competitive starting salary, discretionary annual bonus, new hire equity grant, comprehensive benefits including health, 401K matching, paid parental leave and flexible time off.

Work Arrangement

This is a full-time leadership position. The candidate is required to be in person twice a week at either our San Francisco, CA or New York City, NY office with a hybrid work approach.

Key skills/competency

  • Security Governance
  • Risk Management
  • Policy Development
  • Regulatory Compliance
  • Executive Communication
  • Framework Implementation
  • Stakeholder Engagement
  • Audit and Reporting
  • GRC Platforms
  • Cloud Security

How to Get Hired at Gemini

🎯 Tips for Getting Hired

  • Customize your resume: Highlight security governance achievements and roles.
  • Tailor your cover letter: Align with Gemini's crypto and Web3 values.
  • Research Gemini: Understand their mission, culture, and recent innovations.
  • Prepare for interviews: Be ready to discuss governance frameworks and policy implementation.

📝 Interview Preparation Advice

Technical Preparation

Review ISO 27001 and NIST guidelines.
Update knowledge on SOC 2 and PCI DSS.
Practice GRC platform functionalities like AuditBoard.
Understand cloud security controls for AWS, GCP, Azure.

Behavioral Questions

Describe a time you led governance changes.
Explain handling cross-team conflicts effectively.
Demonstrate influencing senior leadership decisions.
Discuss mentoring team members in challenging projects.

Frequently Asked Questions