This is a Hybrid role (3 days in office /2 days remote)
About your Team:
The Information Security Policy Manager develops, maintains, and communicates IBKRs information security policies aligned to regulatory requirements, industry best practices, and IBKR's control environment and risk appetite. This role is responsible for IBKR's formal information security policy library, ensuring IBKR's security program is supported by well-considered policy mandates.
What will be your responsibilities within IBKR:
• Maintain and extend IBKR's information security policy library to align with regulatory requirements, business risk appetite, industry-accepted risk frameworks, and IBKR's control environment. • Coordinate and drive the development, review, and update of information security policies and standards based on identified need and defined maintenance intervals. • Map IBKR's security policies to, and analyze gaps against, applicable risk and regulatory frameworks and laws, such as DORA, FFIEC, NIST CSF. • Support security-related external assessments, audits, and regulatory examinations by providing evidence of compliance. • Partner with the Information Security Controls Manager to ensure policies are supported by appropriate controls and testing procedures. • Evaluate security controls, identify opportunities for improvement, and communicate constructive recommendations.
Other duties, as assigned
Required skills:
• 7+ years of experience in information / cyber security experience, including 3+ years developing and managing information security policies in a regulated industry (preferably financial services) and 3+ years hands-on, technical cybersecurity roles. • Fluent understanding of regulatory requirements affecting cybersecurity, including DORA, SEC, FFIEC, and common regulations issued in Europe (EBA) and APAC (SFC, MAS). • Working familiarity with common security frameworks, including NIST CSF and ISO 27001/27002. • Prior experience as owner of policies or technical standards documentation. • Experience as lead responder to regulatory examinations, audit requests, and client due diligence questionnaires related to policy and compliance. • Proven ability to write clear, actionable policies addressing complex regulatory and technical requirements, grounded in industry accepted practices and risk management concepts, and based on existing controls and technology environments. • Experience working with GRC (Governance, Risk, and Compliance) tooling a plus. • Experience building cross functional consensus as an individual contributor. • Bachelor's degree in Information Security, Computer Science, Information Technology or a related field, or equivalent experience. • CISM certification a plus.
To be successful in this position, you will have the following:
• Strong critical thinking, analytical, organizational, time management, and writing and editing skills - all with attention to detail. • Track record of building bridges with technology practitioners and translating complex technical concepts into simple, accessible language for business audiences. • A self-motivated, open, collaborative, client-centric, consensus-building problem-solving mentality. • Ability to exercise good judgment when solving problems with incomplete information.
Company Benefits & Perks:
Competitive salary, annual performance-based bonus and stock grant Retirement plan 401(k) with competitive company match Excellent health and wellness benefits, including medical, dental, and vision benefits. Company paid medical healthcare premium. Wellness screenings and assessments, health coaches and counseling services through an Employee Assistance Program (EAP) Daily company lunch allowance provided and a fully stocked kitchen with healthy options for breakfast and snack Corporate events including team outings, dinners, volunteer activities and company sports teams Education reimbursement and learning opportunities
For over 40 years, Interactive Brokers has been the pioneer of the electronic trading revolution. We rapidly scaled from a small U.S. options market-maker into a sizable global trading firm by leveraging the power of technology and automation.
Recognizing an opportunity to provide low-cost brokerage services to individuals and institutions seeking alternatives to high-priced firms, we opened our vast intercontinental electronic network and trade execution services to clients. Today, we serve 1.81M clients in over 200 countries and territories worldwide.*
Since inception, we have been committed to delivering value through technological innovation, and providing our clients with unprecedented access to global markets at the lowest cost.
See the list of our awards here:
https://www.interactivebrokers.com/en/index.php?f=809
We are looking for people who see opportunity where others see the status quo. At Interactive Brokers, every one of our exceptional and dedicated employees plays a role in keeping our technology on the cutting-edge, and our company at the forefront of the electronic trading industry.
Our employees work on projects that impact clients around the world in a dynamic startup-style culture. We offer opportunities to push the boundaries of technology. Why will you choose Interactive Brokers?
As an employee of Interactive Brokers, you will enjoy a competitive and comprehensive benefits and compensation package. While the specifics of each country's package may vary, most of our offices offer some version of the following, plus more:
Review our many openings across our unique teams
and see what opportunities are right for you.
We are a global company headquartered in Greenwich, Conneticut, with over 2,650+ employees in offices in the USA, Hungary, Estonia, Russia, Switzerland, Canada, hong Kong, the UK, Australia, Japan, India and China.