Security Governance, Risk, and Compliance Lead at Hudson River Trading

New York, New York, United States -

Full Time

Start Date

Immediate

Expiry Date

04 May, 26

Salary

300000.0

Posted On

03 Feb, 26

Experience

10 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Cybersecurity, Risk Management, Compliance, Security Governance, Data Analysis, Python, Go, SQL, Elastic, OSQuery, Prometheus, Linux, CISSP, CISM, NIST, FedRAMP

Industry

Financial Services

Description

Hudson River Trading (HRT) is seeking a Security Governance, Risk, and Compliance Lead to join our growing Information Security team. This role will lead security governance programs for HRT entities based in America, Europe, and Asia, and will work directly on automating security governance at scale. In this hands-on role, you will liaise closely with HRT’s Compliance and Legal teams to research, build, and maintain security solutions for a diverse set of industry regulations and requirements. You’ll lead a technical team responsible for owning and strategically ensuring HRT’s compliance with global security regulations, helping to equip HRT to enter new markets with increasingly complicated regulatory needs. Responsibilities Manage and lead a team of security GRC engineers Perform internal and external security control assessments using industry standard frameworks such as NIST and CIS Conduct threat modeling and risk assessments Create and maintain security and compliance policies, standards, and guidelines Track regulatory security compliance obligations worldwide Work with cross-functional teams on program management to meet security and compliance KPIs Define critical success factors and KPIs to ensure firm-wide security compliance and security goals are met according to standards-based frameworks Monitor KPIs and create dashboards for real-time reports and board presentations Collect and analyze business metrics and build dashboards for reporting through data engineering Support the automation and governance of HRT’s critical security controls, encompassing: Vendor risk management Penetration testing Access management Ensure timely and accurate responses to requests for company data in collaboration with Compliance and Legal Qualifications 7+ years of experience in cybersecurity risk and/or compliance with significant experience at a company in a heavily regulated industry Software development and/or scripting experience, preferably in Python or Go Familiarity with standards-based security frameworks such as CIS, NIST-CSF, FedRAMP, or ISO Data analysis skills leveraging SQL, Elastic, OSQuery, and Prometheus preferred Experience building strong cross-functional relationships and working across multiple teams, both technical and non-technical Experience with Linux and comfortability on the command line (Debian is a huge plus!) Familiarity with financial industry regulations CISSP, CISM, or a similar certification is a plus The estimated base salary range for this position is 200,000 to 300,000 USD per year (or local equivalent). The base pay offered may vary depending on multiple individualized factors, including location, job-related knowledge, skills, and experience. This role will also be eligible for discretionary performance-based bonuses and a competitive benefits package. Culture Hudson River Trading (HRT) brings a scientific approach to trading financial products. We have built one of the world's most sophisticated computing environments for research and development. Our researchers are at the forefront of innovation in the world of algorithmic trading. At HRT we welcome a variety of expertise: mathematics and computer science, physics and engineering, media and tech. We’re a community of self-starters who are motivated by the excitement of being at the cutting edge of automation in every part of our organization—from trading, to business operations, to recruiting and beyond. We value openness and transparency, and celebrate great ideas from HRT veterans and new hires alike. At HRT we’re friends and colleagues – whether we are sharing a meal, playing the latest board game, or writing elegant code. We embrace a culture of togetherness that extends far beyond the walls of our office. Feel like you belong at HRT? Our goal is to find the best people and bring them together to do great work in a place where everyone is valued. HRT is proud of our diverse staff; we have offices all over the globe and benefit from our varied and unique perspectives. HRT is an equal opportunity employer; so whoever you are we’d love to get to know you. Please be advised: Use of AI tools during interviews or assessments is strictly prohibited, unless otherwise instructed or agreed upon. We employ various methods to evaluate the authenticity of candidate responses. If we determine that AI assistance was used during any stage of the hiring process, we reserve the right to immediately disqualify your candidacy or rescind any job offers extended.

Responsibilities

Lead security governance programs and manage a team of security GRC engineers. Conduct assessments, create policies, and ensure compliance with global security regulations.