Cyber Security & Compliance Associate

As a leading financial services and healthcare technology company based on revenue SS&C is headquartered in Windsor Connecticut and has 27000 employees in 35 countries. Some 20000 financial services and healthcare organizations from the worlds largest companies to small and mid-market firms rely on SS&C for expertise scale and technology.

Calastone is the largest global funds network connecting the worlds leading financial organisations.

Our mission is to help the funds industry transform by creating innovative new ways to automate and digitalise the global investment funds marketplace reducing frictional costs and lowering operational risk to the benefit of all. Through this we generate the opportunity for the industry to deliver greater value back to the end investor.

Over 3500 clients in 54 countries and territories benefit from Calastones services processing 250 billion of investment value each month.

Calastone is headquartered in London and has offices in Luxembourg Hong Kong Taipei Singapore New York Milan and Sydney.

The Cyber Security & Compliance Associate is in charge of supporting Calastones cyber security framework that underpins BAU. This hands‑on role will have responsibility for assisting in the provision of cyber security assurance for a leading financial technology business and will work alongside other teams outside of technology to ensure ongoing best practice and compliance.

• Assist in the delivery of the Calastone cyber security / information security strategy
• Managing the documentation publication and review of information security policies
• Conduct ongoing security threat risk capability and/or maturity assessments
• Administer due diligence assurance activities in line with client expectations
• Conduct research to keep up to date with the latest threats and mitigations
• Identify and recommend third party tools services or software to further improve cyber (information) security practices within Calastone
• Act as a subject matter expert to internal parties.
• Conduct third‑party vendor risk assurance for Calastone supplier network
• Lead internal audits and assessments of organisational controls
• Reporting of cyber security metrics to stakeholder community

• Experience of improving organisational control environments policies and procedures
• Professional information security audit experience
• Any cyber/information security or audit certification (e.g. ISO CISA) (desired)
• Experience of applying and auditing security methodologies and industry standards (e.g. ISO27001 NIST)
• Extensive knowledge of security assessment frameworks (e.g. controls assessment risk assessment)
• Experience of third‑party vendor risk management

• Passionate about evangelising cyber security best practises
• Understands key business drivers and can inform and influence key stakeholders
• Always calm and focused under pressure and able to positively direct colleagues and service partners
• Takes ownership of problems and leads by example through to root cause identification
• Highest levels of professionalism transparency and integrity
• Clear and precise in written oral and diagrammatic forms

Unless explicitly requested or approached by SS&C Technologies Inc. or any of its affiliated companies the company will not accept unsolicited resumes from headhunters recruitment agencies or fee‑based recruitment services.

SS&C Technologies is an Equal Employment Opportunity employer and does not discriminate against any applicant for employment or employee on the basis of race color religious creed gender age marital status sexual orientation national origin disability veteran status or any other classification protected by applicable discrimination laws.

IC