Сhief Information Security Officer (CISO)

cyber•Fund

cyber•Fund

IT
Posted on May 6, 2025

About us:

cyber•Fund is an investment fund which is dedicated to partnering with founders from genesis to growth stage and beyond. Our mission is to accelerate the transition to an open cybernetic economy by backing entrepreneurs innovating at the intersection of blockchain, artificial intelligence, robotics and adjacent technologies.

Since 2014, we have worked with leading crypto teams and actively contributed to projects such as [P2P.org](http://p2p.org/), [=nil; Foundation](https://nil.foundation/), and the [Lido DAO](https://lido.fi/). We assist with everything from operational and technological decisions to security and research questions, helping companies go from zero to one.

Role Overview

Cyber Fund is seeking a crypto-native, strategically minded CISO to lead our information security, compliance, and risk management efforts across multi-entity structure.

As the CISO, you will be responsible for safeguarding sensitive data, managing vendor risks, and embedding security practices across our portfolio companies, internal operations, and investment infrastructure.

You’ll be hands-on in designing policies, responding to threats, leading audits, and guiding the leadership team on regulatory risks in Web3. This is a mission-critical role for building trust and scaling responsibly in a global, high-stakes environment.

Key responsibilities

Enterprise & operational security

  • Define and implement information security frameworks, including asset protection, access control, encryption, and monitoring protocols.

  • Oversee security of digital infrastructure across the fund, its subsidiaries, and portfolio companies (wallets, APIs, cloud services, etc.)

  • Collaborate with legal, ops, and product teams to ensure GDPR, data protection, and security by design.

Cyber risk management & governance

  • Conduct periodic threat modeling, risk assessments, and penetration tests (external vendors or internal tooling).

  • Monitor for vulnerabilities and incident response handling (detect, respond, recover).

  • Define board-level risk appetite and ensure alignment with operational policies.

Third-party & vendor security

  • Build and maintain vendor due diligence processes (SaaS, custody providers, exchanges, communication tools).

  • Lead KYB/KYC security best practices for counterparties and service providers.

  • Coordinate with finance and legal on security implications in procurement or partnership.

Compliance & regulatory readiness

  • Support global compliance with relevant cybersecurity laws (DORA, GDPR, SEC/ESMA proposals, etc.)

  • Ensure audit trail design, access logs, and whistleblower mechanisms are in place.

Wallet & crypto-native infrastructure

  • Oversee multi-sig / MPC wallet security, custody integrations, and access control for treasury operations.

  • Design procedures for secure token issuance, validator operations, key management, and staking infrastructure.