GRC Engineer

NinjaTrader
Illinois, United StatesPosted 12d ago

Apply to this job with Jobbie

Jobbie fills out the application and submits it for you — no forms, no cover letters, no retyping your resume.

Sign up to apply

Job description

<div class="content-intro"><hr> <p><span style="font-family: verdana, geneva, sans-serif; font-size: 10pt; color: rgb(0, 0, 0);"><span data-contrast="auto"><em><span style="color: rgb(255, 66, 0);"><strong>Disclaimer:</strong> </span>Please be advised that the most accurate and up-to-date information about our open roles—including job descriptions, compensation, and benefits—can only be guaranteed on our official job board. For the latest listings and details, please visit: <a href="https://job-boards.greenhouse.io/ninjatrader">https://job-boards.greenhouse.io/ninjatrader</a>.</em></span></span></p> <hr> <p><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt; color: rgb(0, 0, 0);"><span data-contrast="auto"><strong>JOIN US ON OUR MISSION TO BECOME THE #1 RETAIL TRADING PLATFORM IN THE WORLD</strong></span></span></p> <p><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;"><span data-contrast="auto">Welcome to the dynamic world of NinjaTrader! As an industry-leading trading platform and futures broker, we're empowering traders to take control of their financial destiny. How do we do it? We provide cutting-edge products and services that enhance the trading journey. Whether a seasoned pro or just starting out, NinjaTrader equips traders with award-winning software and brokerage services to navigate the world's leading financial markets with confidence.&nbsp;</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}">&nbsp;</span></span></p> <p><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;"><span data-contrast="auto">Our growth story is nothing short of exhilarating. Since 2003, NinjaTrader has been dedicated to understanding and supporting traders on their journey toward trading triumph. Through those efforts, our user base has grown to over 2 million users and we have become the number one rated futures brokerage worldwide.</span>&nbsp;</span></p> <p><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;"><span data-contrast="auto">But we're not stopping there. We're constantly evolving, pushing boundaries, and modernizing the futures industry. Our commitment to innovation means users will always have access to dynamic tools, real-time support, and a community of like-minded traders.&nbsp;</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}">&nbsp;</span></span></p> <p><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;"><span data-contrast="auto">So, why work at NinjaTrader? Here, you're not just part of a team; you're part of a movement. We empower employees to reach new heights in their careers by providing a dynamic culture focused on social connection, professional development, and employee recognition initiatives. Sounds too good to be true?&nbsp;</span><a href="https://www.greatplacetowork.com/certified-company/7025362"><span data-contrast="none"><span data-ccp-charstyle="Hyperlink">Take it from our employees.</span></span></a><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}">&nbsp;</span></span></p> <p><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;"><span data-contrast="auto">Join us as we redefine what's possible in trading, advocate for our customers, and continue our journey toward becoming the world's top retail-focused trading platform in the world. </span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}">&nbsp;</span></span></p></div><h2><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt; color: rgb(255, 66, 0);">What you'll do:</span></h2> <p><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">We're looking for a mid-level GRC Engineer to help us scale our compliance program through automation and run audits across SOC 2, ISO 27001, and SOX. This is a hands-on, technical role where you'll spend as much time writing code and integrating systems as you do reviewing controls. You'll serve as the bridge between Security, Engineering, and the business by transforming manual, evidence-heavy compliance work into automated, repeatable processes while helping leadership understand and prioritize risk.</span></p> <p><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">This role is ideal for someone with GRC or security experience who wants to move beyond spreadsheets and checklists into building the tooling that makes a compliance program efficient, scalable, and audit-ready year-round.</span></p> <p><strong><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">In this role you will:</span></strong></p> <p><span style="text-decoration: underline;"><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Automation &amp; Tooling</span></span></p> <ul> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Build and maintain automation for continuous control monitoring, evidence collection, and audit readiness through scripts, APIs, and GRC platform integrations</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Integrate compliance workflows with cloud providers, identity systems, ticketing platforms, and CI/CD pipelines to automatically collect control data and evidence</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Reduce manual compliance work by codifying control checks and pulling evidence directly from source systems</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Develop dashboards and reporting that provide stakeholders with real-time visibility into control health and audit readiness</span></li> </ul> <p><span style="text-decoration: underline;"><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Audits &amp; Frameworks</span></span></p> <ul> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Run and coordinate audits for SOC 2 (Type I and Type II), ISO 27001, and SOX, including scoping, evidence collection, control walkthroughs, and auditor coordination</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Map controls across multiple compliance frameworks to reduce duplication and maintain a unified control library</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Track audit findings and control gaps through remediation and closure with business and technical stakeholders</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Maintain audit-ready documentation including policies, procedures, control narratives, and evidence repositories</span></li> </ul> <p><span style="text-decoration: underline;"><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Risk Management</span></span></p> <ul> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Identify, assess, and document organizational risks while maintaining the enterprise risk register</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Support risk assessments, including likelihood and impact scoring, treatment planning, and remediation tracking</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Partner with Engineering and IT to evaluate the control impact of new systems, vendors, and architectural changes</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Contribute to the third-party risk management program</span></li> </ul> <p><span style="text-decoration: underline;"><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Cross-Functional Partnership</span></span></p> <ul> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Partner with control owners to ensure controls are operating effectively and generating appropriate evidence</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Translate compliance requirements into practical, engineering-focused guidance</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Support customer security questionnaires, trust requests, and due diligence activities</span></li> </ul> <h2><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt; color: rgb(255, 66, 0);">What you'll need:</span></h2> <ul> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">3–5 years of experience in GRC, IT audit, security compliance, or a related field</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Hands-on experience supporting or leading audits for SOC 2, ISO 27001, SOX, or a comparable framework</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Working knowledge of SOC 2 Trust Services Criteria, ISO 27001 Annex A, COSO/SOX ITGCs, NIST, or similar control frameworks</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Experience with scripting and automation using Python or a similar language, including working with REST APIs to automate evidence collection</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Familiarity with at least one major cloud platform (AWS, GCP, or Azure) and its security and logging services</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Strong understanding of access management, change management, logging and monitoring, vulnerability management, and SDLC controls</span></li> <li><span style="font-family: verdana, geneva, sans-serif; font-size: 12pt;">Excellent written communication skill

Ready to apply?

Create your free Jobbie profile once — we apply to this job and hundreds like it for you.

Sign up to apply