Browse
···
Log in / Register

Principal, Cyber Assurance

$180,000-215,000

Control Risks

Washington, DC, USA

Favourites
Share
Description

This role may be based in NYC or Washington DC. We are seeking a senior leader to drive the growth of Digital Risks in the United States, with a primary focus on cyber assurance, third-party risk management, and large-scale regulatory compliance audits. In this role, you will collaborate closely with our cyber threat intelligence, advisory, and response teams to expand our digital risk business. Your responsibility will include overseeing the assessment, and improving client cybersecurity programs, ensuring alignment with industry standards and regulatory requirements, and guiding clients through complex third-party audits. Key Responsibilities Cybersecurity Program Evaluation Lead cyber assurance engagements, assessing client cybersecurity programs for compliance with industry standards such as NIST, ISO 27001, and other relevant frameworks. Act as a trusted advisor, ensuring client cybersecurity postures are resilient, compliant, and in line with regulatory requirements. Third-Party Risk Management Audits Oversee large-scale third-party risk and compliance audits, ensuring alignment with industry-specific frameworks, regulatory standards, and contractual obligations. Regulatory Compliance Audits Oversee regulatory compliance audits to ensure clients meet required standards and regulations. Advise clients on audit preparation and guide them through maintaining compliance while improving cybersecurity measures. Ensure clients' compliance programs address both current and emerging regulatory requirements. Penetration Testing & Vulnerability Management Support Partner with the penetration testing team to incorporate findings into broader cyber assurance reviews. Lead remediation efforts for high-risk vulnerabilities, aligning them with the client’s overall compliance and cybersecurity objectives. Client Relationship & Business Development Build and sustain relationships with key stakeholders, especially C-suite executives, positioning Digital Risks as a leader in cyber assurance and regulatory compliance. Identify and capitalize on new business opportunities in cyber assurance, third-party risk assessments, and compliance audits. Provide thought leadership on cyber assurance trends, regulatory updates, and best practices to enhance client relationships and grow the practice. Advise clients on continuously improving their cybersecurity and compliance frameworks based on audit findings and risk assessments. Practice Development & Team Leadership Recruit, develop, and lead a high-performing team specializing in cyber assurance, third-party risk management, and regulatory compliance. Foster a culture of continuous learning, ensuring the team stays ahead of emerging trends in cybersecurity and compliance. Contribute to the creation of innovative services and solutions to meet clients' evolving needs in cyber assurance and compliance auditing. Requirements Candidates must be legally authorized to work in the US on a permanent basis without sponsorship. Candidates must possess unrestricted US work authorization. Experience & Knowledge: 12+ years of experience in cybersecurity, specializing in cyber assurance, third-party risk management, and regulatory compliance audits. Proven track record of leading cyber assurance engagements and guiding clients through risk management and compliance processes based on industry frameworks (e.g., NIST, ISO 27001). Expertise in managing third-party audits and ensuring regulatory compliance across audit lifecycles. In-depth understanding of regulatory frameworks, with hands-on experience delivering compliance audits for both commercial and government sectors. Experience integrating penetration testing and vulnerability assessments into broader cyber assurance strategies. Education & Certifications: Bachelor's or master’s degree in information security, Computer Science, Engineering, or a related field. Relevant certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor, SANS, or other recognized credentials in cybersecurity, third-party risk management, and compliance auditing. Skills: Strong commercial acumen, with proven ability to generate new business in cyber assurance and regulatory compliance services. Exceptional communication, presentation, and analytical skills with the ability to influence senior stakeholders and deliver impactful insights that improve cybersecurity resilience and regulatory compliance. The base salary range for this position in Washington DC is $180,000-$205,000 per year. The base salary range for this position in New York City is $200,000-$215,000 per year. Exact compensation offered may vary depending on job-related knowledge, skills, and experience. Control Risks is committed to a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status. If you require any reasonable adjustments to be made in order to participate fully in the interview process, please let us know and we will be happy to accommodate your needs. Control Risks participates in the E-Verify program to confirm employment authorization of all newly hired employees. The E-Verify process is completed during new hire onboarding and completion of the Form I-9, Employment Eligibility Verification, at the start of employment. E-Verify is not used as a tool to pre-screen candidates. For more information on E-Verify, please visit www.uscis.gov. Benefits Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarized in the full job offer. Control Risks supports hybrid working arrangements, wherever possible, that emphasize the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working. Medical Benefits, Prescription Benefits, FSA, Dental Benefits, Vision Benefits, Life and AD&D, Voluntary Life and AD&D, Disability Benefits, Voluntary Benefits, 401 (K) Retirement, Nationwide Pet Insurance, Employee Assistance Program. As an equal opportunities employer, we encourage suitably qualified applicants from a wide range of backgrounds to apply and join us and are fully committed to equal treatment, free from discrimination, of all candidates throughout our recruitment process.

Source:  workable View Original Post
Location
Washington, DC, USA
Show Map
workable

You may also like

RP Pro Services
Mid-Level Cyber Security Specialist (Top Secret Clearance Required)
Washington, DC, USA
RP Professional Services is a rapidly growing Technology consulting firm headquartered in Virginia. We’re an 8a and Service-Disabled Veteran-Owned Small Business (SDVOSB) serving both federal and commercial customers. At RP, we help our clients achieve their mission by developing value driven, customized solutions that are executed by the best people. Our dedication to our employees and clients is driven by our promise to deliver Excellence, Value, and Flexibility. "People, not just Resources" is more than our motto; it's the foundation on which we are built! RP Professional Services is seeking a Mid-Level Cybersecurity Specialist to support and advise security professionals on emerging cyber threats, risk mitigation strategies, and compliance standards within the Department of Defense (DoD) Intelligence Community (IC). The ideal candidate will have a strong technical background in classified and unclassified systems, insider threat tools, user activity monitoring (UAM), and cyber threat intelligence. This role requires expertise in offensive and defensive cyber capabilities, network security frameworks, and collaboration across government organizations to enhance cybersecurity posture and threat detection capabilities. This position is contingent upon the contract being awarded to RP Professional Services. Requirements: Advise security professionals on emerging cyber threats, risk mitigation strategies, and industry regulations. Support DoD Intelligence Community operations with expertise in cybersecurity threat management. Apply classified and unclassified system knowledge to facilitate security standards and compliance. Assist non-IT professionals in understanding Department of Defense network standards for effective insider threat tool deployment. Coordinate with cyber threat intelligence teams to develop strategic threat assessments and response plans. Promote and implement technical solutions that support mission-critical cybersecurity objectives. Conduct user activity monitoring (UAM) and cybersecurity evaluations to detect anomalous behaviors and insider threats. Assess and advise on both offensive and defensive cybersecurity strategies within DoD and Intelligence frameworks. Utilize expertise in at least one of the following cybersecurity domains: Risk/Vulnerability/Threat Assessments Cloud Security Security Operations Firewall (FW), Intrusion Prevention System (IPS), Intrusion Detection System (IDS) Configuration Penetration Testing Forensics Threat Intelligence Threat Hunting Maintain awareness of state, local, and federal cybersecurity developments, standards, frameworks, and regulations and their impact on operations. Support counterintelligence, insider threat, and law enforcement investigations through cybersecurity expertise. Requirements Bachelor’s degree in Computer Science or a related field. Minimum eight (8) years of experience advising security professionals on emerging cyber threats. Minimum eight (8) years of experience working within the DoD Intelligence Community. Demonstrated knowledge of DoD/IC computer systems, protections, and cybersecurity threats. Experience advising non-IT professionals on DoD network standards for insider threat tools. Strong coordination skills for collaborating across organizations and implementing cybersecurity solutions. Preferred Qualifications:  Certified Information Systems Security Professional (CISSP). Knowledge of user activity monitoring (UAM) software and processes. Expertise in DoD cybersecurity compliance frameworks and regulations. Strong background in counterintelligence and insider threat investigations. Experience working across government security agencies, military cybersecurity teams, and intelligence divisions. Salary Range: $175,000 - $195,000 The salary range for this role considers a wide range of factors, including, but not limited to, skill sets, equity, experience and training, licensure and certifications, and other business and organizational needs. It is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case.   Benefits Health Benefits: Medical, Vision, Dental Up to 4% retirement match with 100% vesting Company paid STD and LTD Company paid basic life insurance Competitive PTO package RP Professional Services, LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
$175,000-195,000
Aretum
Senior IA/Cybersecurity Lead
Washington, DC, USA
ARETUM is seeking a Senior IA/Cybersecurity Lead to oversee and enhance our information assurance strategies while ensuring compliance with cybersecurity regulations and frameworks. In this pivotal role, you will guide a talented team in developing, implementing, and maintaining robust information assurance and cybersecurity programs tailored for our government clients. As a Senior IA/Cybersecurity Lead, you will be responsible for evaluating and strengthening security controls, conducting risk assessments, and managing compliance with Federal Information Security Management Act (FISMA) requirements. Your leadership will be crucial in establishing a security-first culture within the organization, and will directly contribute to safeguarding critical information systems. Key Responsibilities Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. May respond to computer security breaches and viruses.  Monitor DOD, and other sites (e.g. Army Cyber) for new standards, regulations and policies.  Review contract deliverables for compliance.  Support risk management framework (RMF) implementation.  Assess Information Assurance Vulnerability Alert (IAVA) management plans and processes.  Develop and maintain Plans of Actions and Milestones (POAMs) for security related activities.  Manage DD2875 submissions and support provisioning activities.  Lead a Cybersecurity team and support interaction with other IT teams.   Requirements A minimum of ten years of DoD IA experience  Possess one of the following certifications: GSLC, CISSP, CISM, and CISA, or another DoD 8570.01-M Level 3 authorized IAT/IAM certification.  A minimum of eight years of experience analyzing, assessing, and implementing corrective actions based on vulnerability management and penetration testing tools and work efforts.  A minimum of eight years of experience with the NIST RMF, NIST SP 800-53, STIGs, SCAP, IAVAs, and FISMA.  A minimum of eight years of experience supporting DoD defensive cyber operational activities, including, but not limited to, information system protection, defense, response (incident handling), reporting, and recovery.  A minimum of eight years of experience in managing complex DoD projects.  Possess a minimum of a favorably adjudicated NACLC/ANACI investigation (Tier 3) at proposal submission.  Preferred Qualifications  A bachelor’s degree in an IT related field  Strong verbal and written communication skills as well as the ability to work independently.  Experience leading teams.  Experience writing Standard Operation Procedures (SOP), COOP Planning, POA&Ms, and other documentation in support of RMF as required.  The ability to provide technical evaluation of proposed system(s) and application approaches.  Work Environment & Physical Requirements  This is a remote/work-from-home position. The employee is expected to maintain a professional and distraction-free home office environment with reliable internet access and the ability to participate in video and audio calls during standard working hours. Standard office equipment such as a computer, phone, and webcam will be used regularly.  The physical demands described here are representative of those that must be met to successfully perform the essential functions of this job:  Prolonged periods of sitting and working on a computer.  Frequent use of hands and fingers to operate computer and telephone equipment.  Must be able to lift up to 15 pounds occasionally (e.g., moving equipment).  Ability to participate in virtual meetings and communicate clearly via video/audio platforms.  Travel Requirement  This is a remote position; however, occasional travel may be required based on project needs, client meetings, team collaboration events, or training sessions. Travel is expected to be less than 10% and will be communicated in advance whenever possible. EEO & Pay Transparency Statement  Aretum is committed to fostering a workplace rooted in excellence, integrity, and equal opportunity for all. We adhere to merit-based hiring practices, ensuring that all employment decisions are made based on qualifications, skills, and ability to perform the job, without preference or consideration of factors unrelated to job performance.  As an Equal Opportunity Employer, Aretum complies with all applicable federal, state, and local employment laws.  We are proud to support our nation’s veterans and military families, providing career opportunities that honor their service and experience.  If you require a reasonable accommodation during the hiring process due to a disability, please contact our Talent Acquisition team for assistance.    In compliance with Executive Order 13665, Aretum will not discharge or otherwise discriminate against employees or applicants for inquiring about, discussing, or disclosing their own pay or that of another employee or applicant.  U.S. Work Authorization   Applicants must be U.S. citizens and currently authorized to work in the United States on a full-time basis. This position supports a federal government contract and therefore requires an active Top Secret Clearance or the ability to obtain one.  Benefits Health Care Plan (Medical, Dental & Vision)  Retirement Plan (401k, IRA)  Life Insurance (Basic, Voluntary & AD&D)  Paid Time Off (Vacation, Sick & Public Holidays)  Family Leave (Maternity, Paternity)  Short Term & Long-Term Disability  Training & Development 
Negotiable Salary
Triage Staffing
Cybersecurity Systems Administrator
Cincinnati, OH, USA
The Cybersecurity Systems Administrator plays a critical hybrid role, bridging traditional IT systems administration with advanced information security responsibilities. This position ensures the confidentiality, integrity, and availability of organizational systems by managing security tools, responding to threats, and maintaining secure infrastructure across cloud and on-prem environments.  This is a hands-on role assisting with Tier 2/Tier 3 escalations and strategic cybersecurity tasks, such as monitoring security alerts, conducting phishing campaigns, managing vendor relationships, and writing security policies. You'll work cross-functionally to support tool integrations, secure network operations, and align the organization with industry security standards.    Core Functions & Responsibilities  Cybersecurity & Risk Management  Monitor and respond to security alerts and incidents, using tools such as SIEMs and endpoint protection platforms.  Manage and maintain core security infrastructure, including firewalls, antivirus, encryption, and multi-factor authentication systems.  Lead phishing simulation campaigns and drive employee cybersecurity awareness training.  Write, implement, and maintain information security policies, procedures, and best practices.  Oversee identity and access management (IAM) systems, including SSO implementations and integrations with enterprise platforms.  Assist with vulnerability scanning, patching coordination, and hardening of systems based on industry frameworks.  Support regulatory and compliance needs (e.g., Joint Commision, HIPAA, GDPR, PCI-DSS), ensuring ongoing audit readiness.  IT Systems Administration & Tool Management  Administer and configure Microsoft-based infrastructure, including Active Directory, Azure AD, and Microsoft 365.  Manage security groups, application integrations, and group policy management across systems.  Provide Tier 2/Tier 3 escalation support for complex IT and security issues, including advanced troubleshooting.  Maintain and support cloud and on-prem environments, including campus networking, DNS, Web Application Firewall (WAF), servers, and endpoint provisioning.  Configure and optimize Intune, Windows Deployment Services, and automation tools to improve operational efficiency.  Support system stability and reliability across enterprise networks and SaaS platforms.  Collaboration & Strategic Support  Partner with IT, compliance, and business teams to integrate security best practices into daily operations and project workflows.  Serve as a technical lead during incident response efforts, including documentation, colleague communication, and root cause analysis.  Collaborate with third-party vendors for tool evaluation, contract review, and ongoing vendor management.  Manage cloud-based applications and infrastructure including Azure AD, Microsoft 365, and enterprise SaaS platforms.  Requirements Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field.  2+ years of experience in a hybrid IT/security role or cybersecurity-focused systems administration.  Proficient in managing and securing cloud platforms such as Microsoft Azure and SaaS environments.  Familiarity with security frameworks and tools (e.g., NIST CSF, SIEM, IDS/IPS, MFA, VPNs).  Hands-on experience with firewalls, encryption, group policy, and endpoint protection tools.  Strong knowledge of network protocols and system hardening best practices.  Experience responding to incidents and conducting root cause analysis and remediation.  Working knowledge of compliance frameworks like Joint Commission, HIPAA, PCI-DSS, and GDPR.  Experience with vulnerability scanning (e.g., Qualys, Tenable, Rapid7) and code scanning tools (e.g., Snyk, SonarQube, GitHub Advanced Security).  Excellent troubleshooting skills, communication skills, and documentation habits.  Preferred:  Certifications such as Security+, CISSP, CISM, CEH, or Microsoft/Azure certifications.  Experience with ITIL processes or other service management methodologies.     Work Schedule  In-office with flexibility to work from home with manager approval.    Benefits Why Triage? Our commitment to creating a unique work culture sets us apart from the rest—no corporate robots here. Triage values transparency and autonomy, and we believe in recognizing your efforts and dedication. Join us on this exciting journey as we continue to be recognized among Inc. Magazine's 5000 fast-growing companies in America. Triage Staffing is an equal-opportunity employer committed to fostering diversity and inclusion in the workplace. We prohibit discrimination and harassment based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws. Note: This job description outlines the primary duties and responsibilities of the Intern role but is not an exhaustive list. Additional tasks may be assigned by your supervisor or manager. All duties are subject to change and may be modified to reasonably accommodate individuals with disabilities. Your performance will be evaluated based on your execution of the tasks outlined in this job description.
Negotiable Salary
Prosync
Sr. Information System Security Officer
Annapolis Junction, MD, USA
ProSync Technology Group, LLC (ProSync) is an award-winning, SDVOSB Defense Contracting company with a strong military heritage and a record of excellence in supporting the Department of Defense and the Intelligence Community.  If you have prior military service or government contracting experience, are proud to serve and support our nation, and want to help support ProSync's mission to "Define and Redefine the State of Possible,” please apply today! The Senior Information Systems Security Officer (ISSO) will provide aid to the program, organization, system, or enclave's information assurance program and will also lend assistance for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies in addition to the below. Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed. Assists with the management of security aspects of the information system and performs day-to-day security operations of the system. Evaluates security solutions to ensure they meet security requirements for processing classified information. Performs vulnerability/risk assessment analysis to support certification and accreditation. Provides configuration management (CM) for information system security software, hardware, and firmware. Manages changes to system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Assists security authorization activities in compliance with Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF). Requirements A minimum of twelve (12) years of total experience in the information security arena. A minimum of seven (7) years of experience directly as an ISSO supporting IC or DoD programs and contracts of similar scope, type, and complexity. A Bachelors of Science degree in Computer Science, Information Assurance, Information Security, or related discipline. Experience supporting over 30 SSP's. DoD 8570 compliance with IAM Level II or IAT Level III (i.e., CASP, CISSP, or Associate). A Top Secret/SCI w/ Polygraph is required. Benefits Join PROSYNC and enjoy our great benefits! Compensation: We offer bonuses that are awarded quarterly to our employees and our compensation rates are highly competitive. Health & Retirement: We offer a comprehensive Health Benefits package and 401K Retirement plan so you can take care of yourself and your family, now and in the future. Other health-related benefits include an employee assistance program for those difficult times or when you need to take care of your mental health. Education: Individual growth is a priority at ProSync. Employees are encouraged to take advantage of our company-sponsored continuing education program so you can get your degree or that next certification you need to propel you to the next level. Work/Life Balance: A healthy work/life balance is essential for building and executing your work effectively at ProSync, but it’s also necessary to allow you the room to pursue everything else you want to develop in your personal life.. We offer generous Paid Time Off and 11 paid holidays a year. ProSync also provides flexible work options that work with your schedule and lifestyle.
Negotiable Salary
DMV IT Service
Cyber Detection & Automation Engineer
Seattle, WA, USA
Job Title: Cyber Detection & Automation Engineer  Location: Seattle, WA  Employment Type: Contract About Us:  DMV IT Service LLC is a trusted IT consulting firm, established in 2020. We specialize in optimizing IT infrastructure, providing expert guidance, and supporting workforce needs with top-tier staffing services. Our expertise spans system administration, cybersecurity, networking, and IT operations. We empower our clients to achieve their technology goals with a client-focused approach that includes online training and job placements, fostering long-term IT success. Job Purpose: The Cyber Detection & Automation Engineer will design, build, and maintain advanced detection logic and automation workflows across various security platforms. This role works closely with SOC analysts, threat intelligence teams, and incident responders to enhance threat detection, streamline security operations, and improve overall response capabilities. Requirements Key Responsibilities Develop and automate high-precision detection rules across SIEM, EDR, and cloud telemetry sources (e.g., Sentinel, Defender, AWS). Continuously monitor and optimize detection alerts to minimize false positives and enhance accuracy. Validate and test detection mechanisms to ensure ongoing reliability and effectiveness. Document detection methods, engineering processes, and knowledge transfer materials. Conduct detection coverage assessments and improve resilience and accuracy through gap analysis. Create security automation workflows using SOAR platforms, particularly Microsoft Sentinel and Logic Apps. Build custom integrations between security platforms, including SIEM, EDR, threat intelligence feeds, and ticketing systems. Automate repetitive SOC tasks like alert triage, IOC lookups, and ticket creation. Develop dashboards and utilities that provide insights into SOC metrics and operational performance. Collaborate with SOC analysts and threat intelligence teams to stay ahead of emerging threats using the MITRE ATT&CK framework. Maintain and update playbooks, runbooks, and documentation related to detection strategies and attacker behaviors. Prepare reports on detection performance, automation activities, and recommended improvements for leadership. Required Skills & Experience Bachelor’s degree in cybersecurity, computer science, IT, or related discipline. 5+ years of experience in cybersecurity, with at least 3 years focused on detection and automation engineering. Proficient in writing detection logic using KQL, SPL, or similar query languages. Skilled in scripting with Bash, PowerShell, Python, or JavaScript. Hands-on experience developing automation with SOAR platforms, particularly Microsoft Sentinel/Logic Apps. Strong understanding of SOC operations, incident response workflows, and threat detection strategies. Experience working with RESTful APIs and integrating third-party security tools. Background in cloud environments, preferably AWS and Azure. In-depth knowledge of the MITRE ATT&CK framework and threat modeling. Practical understanding of attacker TTPs and detection methodologies. Familiarity with version control (Git), CI/CD pipelines, and infrastructure as code. Ability to process and analyze large datasets to detect patterns and threats. Effective communication skills for diverse technical audiences. Collaborative mindset with the ability to work across multiple teams in a fast-paced environment. Preferred Certifications Microsoft SC-200, Azure Security Engineer Associate AWS Certified Security – Specialty GIAC (GCIA, GCTI, GDAT) CISSP, CISM
Negotiable Salary
Trexquant Investment
Senior Cyber Security Engineer (USA)
Stamford, CT, USA
Trexquant is a growing systematic fund adviser with a core team of highly accomplished technologists. We apply a wide variety of statistical and machine learning techniques to build investment portfolios and trade our client assets in global equity and derivatives markets.  Our global team is composed primarily of research professionals with advanced science, math and technology degrees, with locations in the US, China and India.   We’re looking for a motivated and technically adept security engineer to support the Technology and Compliance teams in engineer, enhancing and maintaining the Firm’s security program and infrastructure.   This opportunity is ideal for a security professional who strives to work on diverse projects in an academically-influenced technologist culture, with mentoring and guidance from veteran staff. Responsibilities Explore, develop and implement innovative security solutions, protocols, and procedures to protect the organization’s systems and networks. Maintain current security platforms and set up preventive measures. Assist in reviewing cybersecurity protocols designed to protect the Firm’s proprietary data, systems and infrastructure in accordance with industry regulations and best practices. Monitor vulnerability awareness platforms, penetration testing results, and other risk analysis to identify and mitigate security weaknesses. Help maintain and review data flow monitoring and configure logging tools to capture and detect suspicious behavior.  Assist compliance team  with incident response procedures to identify, manage, and mitigate security incidents and breaches, and establish a protocol for security incident reporting. Collaborate with internal stakeholders to carry-out periodic risk assessments and work closely with consultants to ensure ongoing compliance and security readiness. Stay up to date with the latest security trends, technologies, and threat intelligence. Requirements Bachelor’s degree  in Cybersecurity, Information Technology, Computer Science, or a related field. Master’s degree in a related field preferred. 3+ years of prior experience in a security engineering or security operations role, ideally at a quantitative adviser, technology company or systematic trading firm. Solid understanding of security concepts such as encryption, authentication, access control, vulnerability management and network monitoring and security. Experience with security tools such as firewalls, SIEM systems, IDS/IPS and vulnerability scanners. Knowledge of security frameworks and standards (e.g., NIST,  ISO 27001, SOC 2, PCI-DSS, GDPR). Experience with scripting or automation (e.g., Python, Bash, PowerShell) to implement security measures or automate tasks. Ability to translate complex security concepts to non-technical stakeholders. Industry certifications such as CISSP, CEH, or CompTIA Security+ are preferred. Good knowledge of Unix-like operating systems and experience with FreeBSD is a plus. Benefits Competitive salary, plus bonus based on individual and company performance Collaborative, casual, and friendly work environment while solving the hardest problems in the financial markets PPO Health, dental and vision insurance premiums fully covered for you and your dependents Pre-tax commuter benefits Weekly company meals Trexquant is an Equal Opportunity Employer
Negotiable Salary
About Us
Terms of Use
Privacy Policy
Help
Contact Us
FAQ
Cookie
Cookie Policy
Cookie Settings
© 2025 Servanan International Pte. Ltd.