GRC Analyst

Join the Future of Fintech as a GRC Analyst at Etrading Software

At Etrading Software, we're not just another company-we're a vibrant, forward-thinking community where diversity, collaboration, and innovation thrive. Step into a workplace that values your unique perspective and rewards your hard work. We foster a high-trust environment where integrity, autonomy, and work-life balance are paramount. Get ready to revolutionize the financial industry with cutting-edge trading projects that will shape the future.

Why Choose Us?

Happiness & Well-Being - Say goodbye to Sunday dread We prioritize work-life balance, ensuring a workplace where trust and respect thrive. With a hybrid setup (only 2x onsite per month), you have the flexibility to do your best work from where you thrive.

Transparency & Trust - Open communication is at the heart of what we do. We foster a culture of clarity, accountability, and integrity, ensuring you always have a voice.

Excellence & Growth - We are committed to continuous learning and innovation. With training, certifications, and career development opportunities, we support your professional growth every step of the way.

Diversity & Inclusion - We embrace diverse perspectives, creating an empowering and inclusive workplace where everyone can contribute meaningfully.

Collaboration & Impact - Work alongside industry leaders, developing high-frequency, low-latency trading applications that drive fairness and transparency in financial markets worldwide.

About the role:

This position will support the Governance, Risk and Compliance (GRC) team under the direction of the wider Audit, Risk & Controls function on the establishment and maintenance of all compliance programs within the company. Existing programs include PCI-DSS and ISO 27001:2022 and any related security policies and processes.

This role is encouraged to conduct research on compliance requirements as vital, and will be responsible for performing or managing assessments, and documenting findings for reporting to management. The candidate ideally has extensive experience in compliance, audit, project management, security, privacy and software development lifecycle standard methodologies.

This position will require coordinating, communicating, and working effectively with prospects, customers, internal process owners, internal and external auditors, across all levels of the organization, including senior leadership.

Job Responsibilities & Duties:

• Perform supervised security compliance assessments and support.
• Assist in design remediation with process owners or stakeholders.
• Perform other tasks assigned by the GRC Lead.

Qualifications

The position prefers experience in IT Compliance, Audit, Enterprise Risk Management, Third-Party Risk Management (TPRM), Secure Software Development Lifecycle (SSDLC) & Security Standard Methodologies in a cloud environment.

• Candidate must possess at least a Bachelor's/College Degree, Finance/Accountancy/Banking, Computer Engineering or equivalent.
• At least 2-4 years of working experience in IT Audit, Security, Risk Management, Security Compliance or related field is required for this position.
• Certification holder or passer of any of the following is preferred but not required: CISA, ISC2 CC and/or CompTIA Security+.
• Exposure to either NIST, ISO 27001, PCI-DSS, SOC2 Type II and/or HIPAA frameworks.
• Experience with internal and external audits plus PCI DSS, HIPAA, Data Privacy and related security policies, processes, and regulations are an advantage.
• Familiarity with the different teams within the audit and cybersecurity spaces and the dynamic workflow within the organization.
• Exposure to security-related technology (e.g. Identity Management tools, Firewalls, etc.) is also an advantage.
• Understanding and experience of using GRC Solutions and security/privacy standards and its implementation is helpful.
• Exposure to cloud environments is an advantage.

Soft Skills:

Has proven skills on the following: time management, communication, adaptability, problem-solving, teamwork, creativity, leadership, interpersonal-skills, work ethic and attention to detail.

By applying to this job, you are permitting our organization to use your personal data solely for recruitment purposes. This data may be shared with third-party services to streamline the processing of your application and with our parent company, ETS London, for recruitment assessment and interview purposes.

We are committed to protecting and respecting your privacy. For more information on how we collect, use, store, and protect your personal data, please read our Privacy Notice or request a copy from our Data Protection Officer (DPO)