About Us:
Charles River Development (CRD) is the FinTech division of State Street. We form the foundation of the State Street Alpha Platform, a cloud-based front-to-back solution in the industry.
We've experienced significant growth over the last 5 years, with a headcount increase of over 135%. Our digital innovation strategy drives investments into our solutions, processes, systems, and talent.
The CRD / Alpha Platform Engineering organization innovates by leveraging next-generation cloud technology on Microsoft Azure, Kafka, Snowflake, and more.
Job Summary:
Join our agile organization as a Security Compliance Associate to contribute to the security of our products.
You'll support application security functions to ensure all required risk management controls are identified, documented, communicated, and implemented for all products developed in Charles River Development (CRD) / Alpha Platform.
This role offers opportunities to work with other security functions, gain knowledge around secure application development and design, and help improve the current state model of Secure SDLC.
Responsibilities:
* Support internal and external audits, including regulatory compliance reviews
* Document procedures to keep them up-to-date and reflective of Enterprise Policies and Standards
* Track and ensure timely closure of issues and findings with remediation activities
* Work with risk management teams and other security functions to communicate and implement process changes
* Identify areas for improvement in risk reporting and operations
* Develop ways to increase efficiency and effectiveness of existing processes
* Perform periodic control testing and evidence collection to support risk objectives
* Collaborate with CRD Engineers to spread awareness of vulnerability management goals and requirements
* Develop and improve processes for managing third-party libraries in our products
Requirements:
* Bachelor's degree (or foreign education equivalent) in Computer Science, Engineering, Mathematics, Physics, or other technical course of study
* Knowledge of risk management and application security concepts, as well as Secure Software Development Lifecycle (SSDLC)
* Familiarity with industry standards and regulatory requirements, such as NIST 800-53, DORA, GDPR, CCPA (desirable)
* Certifications like ISO 27001 Lead Auditor, CISA, SSCP (a plus)
About State Street:
We're one of the largest custodian banks, asset managers, and asset intelligence companies in the world.
We provide investment servicing, data & analytics, investment research & trading, and investment management to institutional clients.
Benefits:
We offer a comprehensive benefits package, including generous medical care, insurance, and savings plans.
You'll have access to flexible work arrangements and a wealth of development programs and educational support to help you reach your full potential.
Inclusion, Diversity, and Social Responsibility:
We welcome candidates from diverse backgrounds and perspectives.
We actively engage with our communities around the world, both as a partner and a leader.
We provide tools to help balance your professional and personal life, paid volunteer days, and matching gift programs.
State Street is an equal opportunity and affirmative action employer.