Security Compliance Officer

Who We are

Charles River Development (CRD) is the FinTech division of State Street. Together with State Street’s Middle and Back-office services, Charles River’s cloud-based Front Office technology forms the foundation of the State Street Alpha® Platform, the first front-to-back solution in the industry.

Industry momentum has seen CRD grow over 135% in headcount over the last 5 years, and we continue to grow. As a digital innovation leader, we invest into our solutions, processes, systems, and talent.

CRD / Alpha® Platform Engineering organization is innovating and transforming the platform by moving away from monolithic software to utilizing next generation cloud-based technology that leverages Microsoft Azure, Kafka, Snowflake, etc.

Position Summary

Be an integral part of an agile organization and contribute to the security of our products. As a Security Compliance Officer based in North America (NAM), you will be a key contributor to support the application security functions to ensure all required risk management controls are identified, documented, communicated and implemented for all products developed in Charles River Development (CRD) / Alpha Platform. In this role, you will have the opportunity to work and collaborate with other security functions such as Security Architecture and Security Engineering teams and gain knowledge around secure application development and design. You will have the opportunity to help improve the current state model of how we do things today within the Secure SDLC space and bring in innovative solutions to improve our ways of working while keeping risk management at the forefront of our goals.

Responsibilities

• Individual contribution to respond to queries and participate in discussions with other security and risk functions during NAM hours.
• Provide support for internal and external audits including regulatory compliance reviews
• Ensure the SSDLC Procedures are up to date and reflective of the Enterprise Policies and Standards control requirements.
• Keep track of and ensure timely closure of issues and findings with appropriate remediation activities
• Work closely with risk management teams and other security functions to communicate and implement process changes as necessary
• Identify areas of improvement in risk reporting and operations and develop ways to increase efficiency and effectiveness of existing processes
• Perform periodic control testing and evidence collection to support risk objectives
• Work with CRD Engineers to spread awareness of vulnerability management goals and requirements
• Develop and improve processes to efficiently manage the use of third-party libraries in our products

Education

• B.S. degree (or foreign education equivalent) in Computer Science, Engineering, Mathematics, Physics, or other technical course of study required.

Qualifications/Experience

• Demonstrable experience in risk management and application security roles
• Strong knowledge of Secure Software Development Lifecycle (SSDLC)
• Knowledge of industry standards and regulatory requirements such as NIST 800-53, DORA, GDPR, CCPA is desirable
• Certifications such as ISO 27001 Lead Auditor, CISA, SSCP, CISSP
• Strong written and verbal communication skills
• Strong analytical and problem-solving skills

About State Street

What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we’re making our mark on the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.

Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You’ll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.

Inclusion, Diversity and Social Responsibility. We truly believe our employees’ diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you.

State Street is an equal opportunity and affirmative action employer.