We are global private markets specialists delivering tailored investment solutions, advisory services, and impactful, data driven insights to the world’s investors. Leveraging the power of our platform and our peerless intelligence across sectors, strategies, and geographies, we help identify the advantages and the answers our clients need to succeed.

REQUIRED SKILLS

• Strong knowledge of information security principles, frameworks, and practices.
• Proficiency in risk assessment methodologies and threat management.
• Expertise with security technologies such as SIEM tools, firewalls, encryption, and endpoint protection.
• Familiarity with financial industry-specific regulatory requirements and standards.
• Exceptional problem-solving and analytical abilities.
• Excellent communication and interpersonal skills for collaboration with technical and non-technical teams.
• Leadership skills to manage and motivate security teams effectively.

EDUCATIONS AND OR WORK EXPERIENCE REQUIREMENTS

• Bachelor’s degree in Computer Science, Information Security or related field
• Eight (8) years of related experience in information security in an enterprise environment.
• Professional certifications such as CSSLP, CGRC, CCSP, GSLC, GSOM, GSTRT, GISP, or ISSMP
• Prior exposure to audit standards including SOC/SOX/ISO27001

ABOUT US

Working out of 26 offices in 15 countries, StepStone has a truly global viewpoint. As people are our biggest asset, we offer resources to help our employees reach their full potential. Our principles are based on integrity, transparency, respect and creativity, which together define how we do business.

• Develop, implement, and maintain organizational security policies, procedures and standards.
• Conduct regular security assessments to ensure compliance with internal policies and external regulations.
• Work closely with Internal Audit and IT to implement and ensure compliance with SOC controls.
• Coordinate with various departments to ensure alignment and integration of security measures across the organization.
• Manage vendors relationships and perform new vendor and product assessments in support of the security program.
• Ensure compliance with relevant regulations such as GDPR and SOX.
• Develop and maintain the security training and awareness program.
• Work closely with internal IT and DevOps teams to secure web applications and infrastructure.
• Report on security metrics to senior leadership and provide recommendations for improvements