Director of Information Technology & Cybersecurity
Join our fast-paced entrepreneurial culture.
# Director of Information Technology & Cybersecurity
Strive is the first publicly traded asset management Bitcoin Treasury Corporation, a company whose primary objectives are to (i) accumulate Bitcoin; (ii) increase Bitcoin exposure; and (iii) outperform Bitcoin over the long run by deploying both beta Bitcoin treasury accumulation strategies and alpha investment strategies with the goal of beating Bitcoin’s investment performance as the hurdle rate. Since launching its first ETF in August 2022, Strive Asset Management, LLC, a direct, wholly owned subsidiary of Strive and an SEC-registered investment adviser, has grown to manage over $2 billion in assets. Learn more at strive.com and follow the Company on X at @strive.
## Position Summary
The Director of Information Technology & Cybersecurity is responsible for the strategic leadership, oversight, and day-to-day management of the Company’s IT infrastructure, enterprise systems, cybersecurity program, and technology operations. This role ensures the availability, reliability, scalability, and security of all technology platforms while maintaining compliance with legal, regulatory, and governance requirements applicable to a publicly traded company.
The ideal candidate brings a strong blend of technical depth, leadership ability, cybersecurity judgment, and public-company governance experience, including Sarbanes-Oxley (SOX) compliance and IT General Controls (ITGCs). This individual will work closely with Finance, Internal Audit, Legal, Executive Leadership, external auditors, and third-party technology vendors to support the Company’s operational and compliance objectives.
## Responsibilities
- Create, refine, implement, and oversee corporate IT policies, standards, and procedures across infrastructure, access management, endpoint security, collaboration tools, data handling, retention, and incident response.
- Lead day-to-day enterprise IT operations, ensuring high availability, reliability, performance, and scalability of the Company’s systems, networks, collaboration environments, and user-support workflows.
- Own the Company’s cybersecurity program, including threat monitoring, incident response coordination, vulnerability management, security awareness, access governance, and protection of confidential, financial, and business-critical information.
- Contribute to and help operationalize the Business Continuity Plan and disaster recovery readiness, including response procedures, testing, and vendor coordination.
- Manage information security and technology compliance at the firm, including controls aligned to SOX, ITGCs, logical access, change management, system administration, and other applicable regulatory obligations for a public company.
- Partner with Finance, Internal Audit, Legal, and external auditors on walkthroughs, evidence requests, control design, remediation planning, and ongoing support for the Company’s audit and compliance program.
- Manage relationships and operating processes with external IT, security, cloud, telecom, and managed-service vendors, including regular meetings, service reviews, renewals, and performance accountability.
- Act as the senior escalation point to resolve hardware, software, identity, connectivity, and network issues quickly and keep a hybrid workforce productive, including onsite employees in Dallas and remote team members.
- Oversee end-user hardware procurement, provisioning, deployment, support, lifecycle management, and inventory across laptops, desktops, monitors, peripherals, and mobile devices.
- Administer and optimize the Company’s Microsoft 365 environment, including identity, licensing, email, Teams, SharePoint, OneDrive, endpoint integrations, and security settings.
- Oversee identity and access management processes, including onboarding, offboarding, role-based access, MFA, SSO integrations, periodic access reviews, and privileged-access controls.
- Provide input to leadership on enterprise IT and security budgets, including cost optimization opportunities, control investments, and scalable architecture decisions.
- Be available to manage urgent security events and threat investigations, exercising sound judgment and providing clear management reporting without requiring extensive additional resourcing.
- Communicate technology risks, incidents, roadmap priorities, and control matters clearly to executive leadership and other non-technical stakeholders.
## Qualifications
- 5+ years of progressive experience in corporate IT, including ownership of infrastructure, enterprise systems, and user support operations.
- Demonstrated experience leading or materially supporting cybersecurity operations, security controls, or enterprise information security programs.
- Experience in a publicly traded company environment or meaningful exposure to SOX compliance, ITGCs, and audit support processes.
- Demonstrated expertise administering Microsoft 365, including user account management, license administration, email configuration, SharePoint, Teams, OneDrive, and security settings.
- Working knowledge of Okta administration, including user lifecycle management, Single Sign-On (SSO), Multi-Factor Authentication (MFA), group assignments, and third-party application integrations.
- Proven ability to monitor and maintain system performance, troubleshoot issues, implement updates, and improve the organization’s productivity and collaboration environment.
- Experience managing video conferencing systems such as Zoom Rooms, Microsoft Teams Rooms, or similar platforms to support high-quality meeting experiences.
- Strong judgment in incident response, escalation management, vendor oversight, and executive communication.
- Ability to operate both strategically and hands-on in a fast-moving environment.
## Preferred Experience
- Experience working at a startup or other high-growth environment.
- Experience working in a public company.
- Experience in financial services, asset management, wealth management, fintech, or another regulated industry.
- Experience with Microsoft 365 eDiscovery, retention, and information governance tools.
- Experience reviewing or coordinating around vendor assurance materials such as SOC 1 and SOC 2 reports.
- Relevant certifications such as CISSP, CISM, or comparable credentials are a plus.
## Benefits
- Competitive compensation package, including a generous initial equity grant.
- Health, vision, and dental insurance.
- 401(k) plan.
- Paid time off.
- Additional employee benefits.
## Equal Opportunity
Strive provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type as protected by applicable federal, state, and local law.
- Department
- Strategy & Operations
- Locations
- Remote (US)
- Remote status
- Fully Remote