SS&C is a global provider of investment and financial services and software for the financial services and healthcare industries. Named to Fortune 1000 list as top U.S. company based on revenue, SS&C is headquartered in Windsor, Connecticut and has 20,000+ employees in over 90 offices in 35 countries. Some 18,000 financial services and healthcare organizations, from the world’s largest institutions to local firms, manage and account for their investments using SS&C’s products and services.
Job Description
Compliance & Security officer, EMEA & APAC
SS&C is a global provider of investment and financial services and software for the financial services and healthcare industries. Named to Fortune 1000 list as top U.S. company based on revenue, SS&C is headquartered in Windsor, Connecticut and has 20,000+ employees in over 90 offices in 35 countries. Some 18,000 financial services and healthcare organizations, from the world’s largest institutions to local firms, manage and account for their investments using SS&C’s products and services.
SS&C Advent is a business unit in SS&C that provides software and services to the finance industry. The software and services provided by SS&C Advent include all lifecycle management of financial instruments such as trade capture, modelling, confirmations, reconciliations, valuations, portfolio accounting, client reporting etc. Our clients are located across Europe, Middle East and APAC and are often global in their investment servicing needs. This introduces a number of compliance, technology and regulatory challenges, which are constantly evolving.
Job Responsibilities
- Provide specialist security and privacy knowledge inputs to sales and legal for service agreements.
- Create and deliver high quality written and verbal communications on cyber security, data protection, compliance, and audit issues.
- Work with client organizations to assist with due diligence responses and site inspections.
- Develop and maintain knowledge of security and compliance attributes of Advent’s products.
- Review and enhance security policies that cover physical and logical access to systems and the management of sensitive data.
- Perform IT risk assessments, incident investigations, root cause analyses, and forensics.
- Monitor and report on privacy and security legislation, regulations, and standards and maintain an inventory of all regulatory, commercial and organizational technology compliance requirements e.g., PCI, GDPR, HITRUST, ISO 27001 & NIST 800-53, SOC1\2 etc
Qualifications
- +5 years of professional experience involving security, compliance, risk management, and privacy of non-public personal data.
- Knowledge of common security frameworks and privacy principles.
- Hands-on experience with IT security and privacy risk assessments and audits of IT general security controls and certification such is ISO 27001 as well as a thorough understanding of SSAE 18 and ISAE 3402.
- Experience in a pre-sales software or technical services role, or in a post-sales compliance/contracts role highly preferred.
- Experience with common vulnerability scanning and penetration testing tools.
- Writing experience in areas such as sales/legal contracts, bidding specifications, sales presentations, audit reports.
- Knowledge of common computer security issues, including network and application vulnerabilities.
- Knowledge of industry specific legal and regulatory requirements such as GDPR/HIPAA etc.
- Certification activity a plus (such as SANS, CISSP, CISM, CRISC, CEH, CompTIA, RHCE, IAPP, MSCE).
Competencies
- Interpersonal skills and team player to maintain collaborative relationships throughout the company and with clients.
- Attention to detail, especially with written work such as legal contracts and client-facing communications.
- Ability to think and work analytically.
- Ability to document policies, procedures, and technical diagrams.
- Ability to execute multiple activities simultaneously.
- Ability to quickly analyze client requirements and remediate knowledge gaps with research.
- Highly motivated self-starter that is capable of working with limited direct supervision.
SS&C Advent is an equal opportunity employer, committed to a diverse workforce. SS&C offers excellent benefits including health, dental, pension plan, tuition and professional development reimbursement plan. SS&C is an Equal Employment Opportunity employer and does not discriminate against any applicant for employment or employee on the basis of race, color, religious creed, gender, age, marital status, sexual orientation, national origin, disability, veteran status or any other classification protected by applicable discrimination laws.
Unless explicitly requested or approached by SS&C Technologies, Inc. or any of its affiliated companies, the company will not accept unsolicited resumes from headhunters, recruitment agencies, or fee-based recruitment services. SS&C offers excellent benefits including health, dental, 401k plan, tuition and professional development reimbursement plan. SS&C Technologies is an Equal Employment Opportunity employer and does not discriminate against any applicant for employment or employee on the basis of race, color, religious creed, gender, age, marital status, sexual orientation, national origin, disability, veteran status or any other classification protected by applicable discrimination laws.
