GRC Engineer

· Remote

Location

Remote

Type

Full Time

Job Description

NinjaTraderJobs
GRC Engineer

GRC Engineer

Posted 5 Hours Ago
Easy Apply
Be an Early Applicant
Chicago IL USA
Hybrid
130K-145K Annually
Mid level
Fintech • Software • Financial Services
Building better futures for all traders
The Role
Build and maintain automation and integrations for continuous control monitoring and evidence collection. Run and coordinate SOC 2 ISO 27001 and SOX audits map controls track remediation and maintain audit-ready documentation. Conduct risk assessments manage the enterprise risk register support third-party risk and partner with engineering and business stakeholders to translate compliance into engineering-focused controls and tooling.
Summary Generated by Built In

Disclaimer: Please be advised that the most accurate and up-to-date information about our open roles—including job descriptions compensation and benefits—can only be guaranteed on our official job board. For the latest listings and details please visit: https://job-boards.greenhouse.io/ninjatrader.

JOIN US ON OUR MISSION TO BECOME THE #1 RETAIL TRADING PLATFORM IN THE WORLD

Welcome to the dynamic world of NinjaTrader! As an industry-leading trading platform and futures broker we're empowering traders to take control of their financial destiny. How do we do it? We provide cutting-edge products and services that enhance the trading journey. Whether a seasoned pro or just starting out NinjaTrader equips traders with award-winning software and brokerage services to navigate the world's leading financial markets with confidence.  

Our growth story is nothing short of exhilarating. Since 2003 NinjaTrader has been dedicated to understanding and supporting traders on their journey toward trading triumph. Through those efforts our user base has grown to over 2 million users and we have become the number one rated futures brokerage worldwide. 

But we're not stopping there. We're constantly evolving pushing boundaries and modernizing the futures industry. Our commitment to innovation means users will always have access to dynamic tools real-time support and a community of like-minded traders.  

So why work at NinjaTrader? Here you're not just part of a team; you're part of a movement. We empower employees to reach new heights in their careers by providing a dynamic culture focused on social connection professional development and employee recognition initiatives. Sounds too good to be true? Take it from our employees. 

Join us as we redefine what's possible in trading advocate for our customers and continue our journey toward becoming the world's top retail-focused trading platform in the world.  

What you'll do:

We're looking for a mid-level GRC Engineer to help us scale our compliance program through automation and run audits across SOC 2 ISO 27001 and SOX. This is a hands-on technical role where you'll spend as much time writing code and integrating systems as you do reviewing controls. You'll serve as the bridge between Security Engineering and the business by transforming manual evidence-heavy compliance work into automated repeatable processes while helping leadership understand and prioritize risk.

This role is ideal for someone with GRC or security experience who wants to move beyond spreadsheets and checklists into building the tooling that makes a compliance program efficient scalable and audit-ready year-round.

In this role you will:

Automation & Tooling

  • Build and maintain automation for continuous control monitoring evidence collection and audit readiness through scripts APIs and GRC platform integrations
  • Integrate compliance workflows with cloud providers identity systems ticketing platforms and CI/CD pipelines to automatically collect control data and evidence
  • Reduce manual compliance work by codifying control checks and pulling evidence directly from source systems
  • Develop dashboards and reporting that provide stakeholders with real-time visibility into control health and audit readiness

Audits & Frameworks

  • Run and coordinate audits for SOC 2 (Type I and Type II) ISO 27001 and SOX including scoping evidence collection control walkthroughs and auditor coordination
  • Map controls across multiple compliance frameworks to reduce duplication and maintain a unified control library
  • Track audit findings and control gaps through remediation and closure with business and technical stakeholders
  • Maintain audit-ready documentation including policies procedures control narratives and evidence repositories

Risk Management

  • Identify assess and document organizational risks while maintaining the enterprise risk register
  • Support risk assessments including likelihood and impact scoring treatment planning and remediation tracking
  • Partner with Engineering and IT to evaluate the control impact of new systems vendors and architectural changes
  • Contribute to the third-party risk management program

Cross-Functional Partnership

  • Partner with control owners to ensure controls are operating effectively and generating appropriate evidence
  • Translate compliance requirements into practical engineering-focused guidance
  • Support customer security questionnaires trust requests and due diligence activities
What you'll need:
  • 3–5 years of experience in GRC IT audit security compliance or a related field
  • Hands-on experience supporting or leading audits for SOC 2 ISO 27001 SOX or a comparable framework
  • Working knowledge of SOC 2 Trust Services Criteria ISO 27001 Annex A COSO/SOX ITGCs NIST or similar control frameworks
  • Experience with scripting and automation using Python or a similar language including working with REST APIs to automate evidence collection
  • Familiarity with at least one major cloud platform (AWS GCP or Azure) and its security and logging services
  • Strong understanding of access management change management logging and monitoring vulnerability management and SDLC controls
  • Excellent written communication skills with the ability to create clear control documentation risk assessments and stakeholder reporting
  • Ability to manage multiple priorities while driving audit findings and remediation efforts to completion
Bonus points for:
  • Experience with Infrastructure as Code (Terraform) and CI/CD pipeline security
  • Exposure to SOX ITGC testing within a public company or pre-IPO environment
  • Experience using SQL or data analysis for evidence collection and control sampling
  • Certifications such as CISA CISSP CCSK ISO 27001 Lead Implementer or Lead Auditor or cloud security certifications
  • Experience working directly with external auditors and managing audit timelines
Compensation:

The salary range for this role will be $130000.00 - $145000.00 USD. In addition this position will also receive an annual target bonus of 10%. Bonus pay at NinjaTrader is based on individual performance (50%) as well as company/team performance (50%).

Salary and bonus earnings are only two components of the total compensation package offered by NinjaTrader. NinjaTrader offers a 401K plan through ADP under which the company will match up to 3.5% of employee contributions. Annual paid time off allowance accrues at a rate of 18 days per year (some positions may qualify for more) plus seven paid holidays.

Location:

This role is based in Chicago IL. We are not open to remote candidates for this role.

Hybrid:

For Chicago-based employees we follow a hybrid work schedule: In-office Tuesday through Thursday with remote work on Mondays and Fridays. In addition to these weekly remote days we offer:

  • 20 additional flex remote days annually
  • 5 Company Wide Office-Optional weeks tied to major holidays

Our Core Benefits Include:

  • Generous PTO
  • 7 Paid Holidays Annually + 5 Conditional Holidays Annually
  • 1 Service Day Annually
  • 401k with 3.5% Company Match
  • Paid Parental Bonding Leave
  • Health Vision Dental Coverage
  • Life and Disability Insurance Covered 100% by NinjaTrader

We are committed to equal employment opportunity regardless of race color ancestry religion sex national origin sexual orientation age citizenship marital status disability gender gender identity or expression or veteran status. We are proud to be an equal opportunity workplace.

Skills Required

  • 3-5 years of experience in GRC IT audit security compliance or a related field
  • Hands-on experience supporting or leading audits for SOC 2 ISO 27001 SOX or comparable frameworks
  • Working knowledge of SOC 2 Trust Services Criteria ISO 27001 Annex A COSO/SOX ITGCs NIST or similar control frameworks
  • Experience with scripting and automation using Python or a similar language including working with REST APIs to automate evidence collection
  • Familiarity with at least one major cloud platform (AWS GCP or Azure) and its security and logging services
  • Strong understanding of access management change management logging and monitoring vulnerability management and SDLC controls
  • Excellent written communication skills for control documentation risk assessments and stakeholder reporting
  • Ability to manage multiple priorities and drive audit findings and remediation to completion
  • Experience with Infrastructure as Code (Terraform) and CI/CD pipeline security
  • Exposure to SOX ITGC testing within a public company or pre-IPO environment
  • Experience using SQL or data analysis for evidence collection and control sampling
  • Certifications such as CISA CISSP CCSK ISO 27001 Lead Implementer or Lead Auditor or cloud security certifications
  • Experience working directly with external auditors and managing audit timelines

What the Team is Saying

Emma
Ryan
Markus
Maria
Paula
Katie
Melissa
Billy
Wade
Andrew
Matt

NinjaTrader Compensation & Benefits Highlights

  • Healthcare StrengthHealth coverage includes medical dental and vision with company‑paid life and disability insurance. Feedback suggests mental health support and FSA options are available reinforcing comprehensive coverage.
  • Retirement SupportA 401(k) with company match is offered. This signals tangible employer support for long‑term savings.
  • Leave & Time Off BreadthGenerous PTO and paid holidays are featured as part of the package. Feedback suggests additional paid volunteer time may be available broadening time‑off options.

NinjaTrader Insights

Am I A Good Fit?
beta
Expert contributor network
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Chicago IL
340 Employees
Year Founded: 2003

What We Do

More than 2 million futures traders trust NinjaTrader's award-winning software and brokerage services to help them trade smarter. Since 2003 we've been building better futures for all traders by making futures trading more accessible scalable and user-friendly. As a bold innovative thought leader in the trading space we build products and services that empower active futures traders to easily analyze and react to data from the world's leading financial markets. Veteran and new futures traders alike look to us for our always-on support daily free education and analysis access to developer apps and much more. We believe in the power of innovation to drive futures trading forward. Together we continue to redefine what's possible in trading advocate for our customers and provide the best tools support and experiences to the fast-growing retail futures trading community. Located in Chicago our entrepreneurial employee-centric culture is inspiring innovative and inviting. We're committed to diversity equity and inclusivity so our team members feel at ease to be themselves and empowered to deliver the work they do best.

Why Work With Us

Our team members are our #1 asset and the signature ingredient to our success. When you join NinjaTrader you become part of an innovative forward-looking community that encourages creativity collaboration and camaraderie to deliver the best futures trading experience possible to our more than 1.8 million users. See why better futures start here.

Gallery

NinjaTrader Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

Chicago-based employees follow a hybrid schedule: In-office Tuesday – Thursday remote on Mondays and Fridays. In addition to these weekly remote days we offer: 20 flex remote days annually 5 company-wide office-optional weeks

Typical time on-site: 3 days a week
HQNinjaTrader HQ
With river views and all the hotspots of River North and the Loop minutes away 222 North LaSalle is positioned in the most vibrant part of downtown right at the corner of LaSalle and Wacker. Amenities include onsite parking gym coffee house employee events and restaurants.

Similar Jobs

NinjaTrader

Principal Software Engineer

Fintech • Software • Financial Services
Easy Apply
Hybrid
Chicago IL USA
340 Employees
195K-220K Annually

NinjaTrader

Client Services Representative Spanish

Fintech • Software • Financial Services
Easy Apply
Hybrid
Chicago IL USA
340 Employees
54K-54K Annually

NinjaTrader

Director Product Management - Brokerage

Fintech • Software • Financial Services
Easy Apply
Hybrid
Chicago IL USA
340 Employees
220K-270K Annually
Easy Apply
Remote or Hybrid
Chicago IL USA
340 Employees
180K-230K Annually
Apply Now

Date Posted

07/02/2026

Views

0

Back to Job Listings Add To Job List Company Profile View Company Reviews
Neutral
Subjectivity Score: 0

Similar Jobs

GNC Engineer, RPO -

Views in the last 30 days - 0

View Details

Perception Engineer -

Views in the last 30 days - 0

View Details

Software Engineer (TS/SCI) -

Views in the last 30 days - 0

View Details

Software Engineer (TS/SCI) -

Views in the last 30 days - 0

View Details

Tanium Engineer, Expert -

Views in the last 30 days - 0

View Details
142,000+ Jobs Tracked
12,400+ Companies
1,930 Categories