Lead, IT Risk

Posted 9 Hours Ago
Be an Early Applicant
New York, NY, USA
In-Office
99K-142K Annually
Senior level
Blockchain • Fintech • Cryptocurrency
At Gemini, no job is too small and no project too big as we endeavor to build the future of money.
The Role
Lead IT Risk at Gemini will execute IT risk management frameworks, perform RCSAs and targeted reviews, maintain IT risk registers, support control testing and audits, manage BCM and vendor resilience, and liaise between IT, security, and enterprise risk to report metrics and drive remediation and regulatory readiness.
Summary Generated by Built In

About the Company

Gemini is a global crypto and Web3 platform founded by Cameron and Tyler Winklevoss in 2014, offering a wide range of simple, reliable, and secure crypto products and services to individuals and institutions in over 70 countries. Our mission is to unlock the next era of financial, creative, and personal freedom by providing trusted access to the decentralized future. We envision a world where crypto reshapes the global financial system, internet, and money to create greater choice, independence, and opportunity for all — bridging traditional finance with the emerging cryptoeconomy in a way that is more open, fair, and secure. As a publicly traded company, Gemini is poised to accelerate this vision with greater scale, reach, and impact.

The Department: Enterprise Risk

Risk at Gemini is a team dedicated to managing the next generation of financial and non-financial risks in a complex and evolving landscape. We are a diverse group of technology, legal, and operational professionals who develop new approaches to solving classic problems using cutting edge tools and processes in an ever changing industry. We are looking for like-minded individuals who are willing to be bold, visionaries and live the ethos of turning risk into return for our shareholders. 

The Role: Lead, IT Risk

The Lead of Technology Risk position is predominantly focused on helping the overall risk management group and different areas of technology to come together. This role will be helping establish areas from a risk and control perspective and working as a bridge between IT and security stakeholders, the business and the risk management department.

This role is required to be in person twice a week at our New York City, NY office.

Responsibilities:

Risk Assessment & Monitoring

  • Execute the IT Risk Management Framework, including risk identification, analysis, and reporting. 
  • Conduct annual IT risk assessments, including RCSAs, targeted risk reviews, and new product/key initiative assessments. 
  • Maintain the IT risk register; ensure timely updates and accurate reporting of exposures.
  • Perform post-mortem risk reviews for critical incidents and support operational loss reviews with ORM.

Governance & Frameworks

  • Assist the Head of IT Risk in maintaining risk policies, standards, and procedures that align with Gemini’s enterprise risk management program and regulatory expectations (NYDFS, DFS, OCC, CFTC).
  • Coordinate with Technology and Security teams to ensure policies and controls are properly implemented and followed.
  • Help prepare materials for risk committees, regulators, and senior leadership.

Controls & Testing

  • Partner with Internal Audit, IT, Security, and BCM to assess design and operating effectiveness of IT and cyber controls.
  • Support control testing for internal/external audits, RCSAs, and regulatory examinations.
  • Track remediation and validate closure of issues using GRC tool(s).

Collaboration & Stakeholder Management

  • Serve as a liaison between IT Risk and other functional areas, facilitating risk awareness and control adoption.
  • Provide guidance to IT teams on risk and control considerations for new projects, initiatives, and system changes.
  • Contribute to risk awareness training and initiatives across the organization.

Reporting & Metrics

  • Assist in the development of periodic risk dashboards and key risk indicators (KRIs).
  • Support the Head of IT Risk in communicating IT risk posture to senior leadership.
  • Support development of IT & Security dashboards; ensure metric accuracy and timely updates.

Business Continuity & Resilience

  • Execute and maintain the Business Continuity Management (BCM) program, including governance artifacts, testing, audits, and issue remediation.
  • Assess and manage business continuity risks, including people dependencies, facilities, physical security, and third-party operational resilience.
  • Drive crisis response and regulatory notifications (e.g., NYDFS), including escalation, documentation, and external stakeholder coordination.
  • Validate vendor BCM compliance and define and monitor business impact thresholds (RTOs, RPOs, tolerances), supporting ongoing impact assessments and reporting.

Minimum Qualifications:

  • Bachelor’s or advanced degree in Information Security, Risk Management, or related field.
  • 8+ years of experience in IT internal audit, IT risk management, or related roles in highly regulated industries with strong knowledge of IT risk, cybersecurity, operational risk, and third-party/vendor risk.
  • Proven experience in implementing risk management frameworks, control testing, and data governance.
  • Familiarity with regulatory requirements (NYDFS, SOC2, PCI DSS).
  • Excellent communication and stakeholder engagement skills.

Preferred Qualifications:

  • Previous experience working at a digital asset institution.  
  • At least one relevant industry certification (e.g., CISSP, CISM, CRISC, CISA).
  • Experience with GRC tools (e.g., AuditBoard, Archer). 
  • Strong executive presence with ability to drive enterprise-wide alignment.
It Pays to Work Here
 
The compensation & benefits package for this role includes:
  • Competitive starting pay
  • A discretionary annual bonus
  • Long-term incentive in the form of a new hire equity grant
  • Comprehensive health plans
  • 401K with company matching
  • Paid Parental Leave
  • Flexible time off

Salary Range: The base salary range for this role is between $99,400 - $142,000 in the State of New York. This range is not inclusive of our discretionary bonus or equity package. When determining a candidate’s compensation, we consider a number of factors including skillset, experience, job scope, and current market data.

In the United States, we offer a hybrid work approach at our hub offices, balancing the benefits of in-person collaboration with the flexibility of remote work. Expectations may vary by location and role, so candidates are encouraged to connect with their recruiter to learn more about the specific policy for the role. Employees who do not live near one of our hubs are part of our remote workforce.

At Gemini, we strive to build diverse teams that reflect the people we want to empower through our products, and we are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. Equal Opportunity is the Law, and Gemini is proud to be an equal opportunity workplace. If you have a specific need that requires accommodation, please let a member of the People Team know.

#LI-MW1

Skills Required

  • Bachelor's or advanced degree in Information Security, Risk Management, or related field.
  • 8+ years of experience in IT internal audit, IT risk management, or related roles in highly regulated industries.
  • Proven experience implementing risk management frameworks, control testing, and data governance.
  • Familiarity with regulatory requirements (NYDFS, SOC2, PCI DSS).
  • Excellent communication and stakeholder engagement skills.
  • In-person presence in New York City office twice weekly (hybrid requirement).
  • Previous experience working at a digital asset institution.
  • At least one relevant industry certification (e.g., CISSP, CISM, CRISC, CISA).
  • Experience with GRC tools (e.g., AuditBoard, Archer).
  • Strong executive presence and ability to drive enterprise-wide alignment.

Gemini Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Gemini and has not been reviewed or approved by Gemini.

  • Healthcare Strength Healthcare options are described as comprehensive, with multiple medical plan choices alongside dental and vision coverage at low employee cost. Feedback suggests these offerings meet common needs and are a relative bright spot within the package.
  • Retirement Support Retirement benefits include a 401(k) with company matching and immediate vesting after a short eligibility period. Feedback suggests this support is competitive for the sector and valued by employees.
  • Leave & Time Off Breadth Time-off programs are characterized by flexible vacation, generous sick time, and notable parental leave. Feedback suggests these policies offer meaningful flexibility for family and personal needs.

Gemini Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: New York, NY
660 Employees
Year Founded: 2014

What We Do

Gemini is a licensed digital asset exchange and custodian. We built the Gemini platform so customers can buy, sell, and store digital assets (e.g., Bitcoin, Ethereum, and Zcash) in a regulated, secure, and compliant manner.

Why Work With Us

Digital assets and blockchain technology have the power to transform the world for good. This truth, along with our core values, form the bedrock of our company and culture. We are a mission-driven, team-based, inclusive, and determined community of thought leaders who invest in each other and the long game. Join us in our mission!

Gallery

Gallery

Similar Jobs

GCash Logo GCash

Lead, IT Risk Management

Fintech • Software • Financial Services
In-Office
West Perry Center, NY, USA
2570 Employees

Kensho Technologies Logo Kensho Technologies

Software Engineer

Artificial Intelligence • Fintech • Machine Learning • Natural Language Processing • Software • Generative AI
Hybrid
New York, NY, USA
175 Employees
150K-225K Annually

Legora Logo Legora

Brand Manager

Artificial Intelligence • Legal Tech • Software
In-Office
New York City, NY, USA
700 Employees
178K-230K Annually

PNC Bank Logo PNC Bank

Portfolio Manager III

Machine Learning • Payments • Security • Software • Financial Services
Remote or Hybrid
USA
55000 Employees

Similar Companies Hiring

Hanover Park Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
42 Employees
Kepler  Thumbnail
Fintech • Software
New York, New York
6 Employees
Onshore Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
60 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account