Senior Manager, Information Security

About Echo Base

Echo Base is a privately funded investment platform focused on special situations and strategic opportunities within the digital asset ecosystem. We acquire, finance, and build companies where our operational expertise and capital can unlock outsized value. Our team combines institutional investment discipline with crypto-native insight to identify and execute on complex opportunities across the industry’s most dynamic segments.

Role Overview

The Senior Manager, Information Security will own and lead our information security and technology risk posture across systems, data, and digital assets. This role is critical to protecting sensitive data, wallets, infrastructure, and counterparties in a high-risk environment. It also provides oversight of core IT operations, ensuring the firm’s technology environment is secure and reliable.

The role will act as our senior security authority—setting strategy, managing risk, and ensuring security controls are proportionate, practical, and aligned with leadership’s expectations.

What You'll Do

• Define and maintain the firm’s information security strategy, policies, and controls.

• Own security risk management across trading systems, custody/wallet infrastructure, cloud platforms, and third-party vendors.
• Lead incident response and investigation for security events, including breaches, fraud, and wallet compromise scenarios.
• Oversee core IT operations, including endpoint security, identity and access management, device management, and SaaS administration.
• Ensure day-to-day IT systems are stable, secure, and well-supported, either directly or via managed service providers.
• Partner closely with IT, Operations and Legal teams to embed security into daily workflows.
• Provide clear security reporting and risk assessments to senior leadership.

Requirements

• 8+ years of experience in information security, cybersecurity, or technology risk, with leadership responsibility.
• Experience in financial services, fintech, crypto, trading, or investment environments.
• Strong knowledge of security frameworks (e.g., NIST, ISO 27001) and risk-based security programs.
• Hands-on experience with cloud security, incident response, and third-party risk management.
• Ability to operate independently in a small, high-trust, high-impact organization.
• Industry certifications such as CISSP, CISM, CCSP will be considered as an advantage.
• Strong problem-solving abilities and critical thinking skills.
• Ability to effectively communicate complex security concepts to technical and non- technical audiences.

Benefits

• Entrepreneurial, high-performance environment with institutional standards.
• Exposure to complex, frontier credit investments across global markets.
• Opportunity to help shape the playbook for crypto-native special situations investing.
• A very competitive remuneration package aligned with seniority, responsibility, and performance.
• Fully remote working arrangements with flexible schedules.