Full-Time

Senior Governance

Risk and Compliance, GRC, Analyst

Posted on 11/8/2024

Abacus Group LLC

Abacus Group LLC

51-200 employees

Provides hosted IT solutions for investment firms

Cybersecurity
Financial Services

Mid, Senior

Edinburgh, UK

Must be available to work 8am-5pm GMT Monday-Friday.

Category
Risk & Compliance
Legal & Compliance
Required Skills
Word/Pages/Docs
Excel/Numbers/Sheets
Requirements
  • Bachelors’ Degree (Masters’ Preferred) in one of the following areas of concentration: Computer Science, Software Development, Information Technology, Cybersecurity.
  • 3+ years GRC experience including information security policy development and certification/regulatory gap analysis (such as ISO 27001, CIS CSC v8, etc.)
  • Experience within the investment and financial services state preferred.
  • ISACA CRISC, ISC2 CGRC, or CompTIA CySA+ preferred.
  • Relevant certifications such as CISM, CRISC, CGRC, CySA+, or Security+.
  • Basic operational capabilities for the Office 365 stack (Microsoft Word, Excel, Outlook).
  • Strong ability to direct self-work with excellent organizational and time management skills.
  • Excellent verbal and written communication skills, especially when communicating technical concepts to non-technical audiences.
  • Critical and creative thinking to strategize how to add value to customer engagements and improve processes.
  • Exceptional spelling and grammar skills for writing and proofreading documents.
  • Ability to remain flexible as processes continuously improve.
  • Proficiency in regulatory and security framework gap assessments.
  • Proven expertise in the realm of identity and access management (IAM) leveraging solutions such as Privileged Identity Management (PIM) and conditional access policies.
  • Experience working with cloud automation to include infrastructure as code and compliance as code.
  • Experience configuring and supporting endpoint security tools (EDR, Encryption, Behavior Analysis).
  • Strong attention to detail and well organized.
  • Highly motivated to continuously learn, grow and innovate.
Responsibilities
  • Coordinating and working with clients to develop formalized Written Information Security Programs (WISPs)
  • Performing cybersecurity due diligence assessments on client vendors
  • Engaging with the cybersecurity engineering team to assist with client risk management and technical gaps with regulatory requirements.
  • Assist with providing strategic guidance and oversight on regulatory and risk management procedures for multiple clients’ cybersecurity programs.
  • Assisting clients in meeting regulatory requirements via policy review and testing (e.g., Incident Response tabletop exercises)
  • Assisting clients with their own due diligence questionnaire and fielding cybersecurity and compliance questions
  • Providing customized end-user security awareness training via presentations and simulated phishing campaigns
  • Researching and keeping up to date with industry compliance regulations, most specifically within the investment and financial services space including FCA, SEC, and DORA.
  • Build and maintain strong relationships with clients, understanding their unique compliance challenges and providing tailored solutions.
  • Internally assess, evaluate, and make recommendations to management regarding the adequacy of the security policies and documentation.
  • Serving as a lead resource for compliance-based information security gap assessments for various regulations and frameworks. (NIST CSF, CIS CSC v8, ISO27001, DORA, etc.)

Abacus Group, LLC provides hosted IT solutions tailored for alternative investment firms in the financial services sector. Their main product, the Abacus Cloud platform, allows investment managers to access all necessary technology as a service. This platform is designed to be flexible, enabling firms to scale their technology resources according to their needs, particularly in areas like cybersecurity, data storage, and compliance. What sets Abacus apart from its competitors is its specific focus on the unique requirements of the financial services industry, ensuring that their solutions are highly relevant and effective for investment managers. The goal of Abacus Group is to empower alternative investment firms by providing them with a comprehensive and adaptable technology platform that meets their evolving needs.

Company Stage

Growth Equity (Venture Capital)

Total Funding

N/A

Headquarters

New York City, New York

Founded

2008

Simplify Jobs

Simplify's Take

What believers are saying

  • Increased demand for cloud IT solutions in finance boosts Abacus's market potential.
  • FFL Partners' investment supports growth through client support and strategic acquisitions.
  • Acquisition of Tribeca Technology Group expands Abacus's UK market presence and capabilities.

What critics are saying

  • Integration with Tribeca may face operational and cultural alignment challenges.
  • Dependency on Zero Networks could affect service if partner faces operational issues.
  • Rapid UK expansion post-Tribeca acquisition may strain resources and service quality.

What makes Abacus Group LLC unique

  • Abacus Group offers a scalable IT platform tailored for financial services.
  • The Abacus Cloud platform provides on-demand scaling for cybersecurity and compliance needs.
  • Partnership with Zero Networks enhances network security with micro-segmentation and zero trust solutions.

Help us improve and share your feedback! Did you find this helpful?

INACTIVE