Cybersecurity Governance, Risk, and Compliance Specialist

Overview

As a Cybersecurity Governance, Risk, and Compliance Specialist in our India office, you will play a pivotal role in safeguarding our operations by designing, implementing, and managing a robust Cybersecurity Governance framework that aligns with India's regulatory requirements while integrating with Susquehanna's global security program. In this high-impact role, you will drive the development and enforcement of cybersecurity policies, manage and mitigate cyber risks, and ensure compliance with internal standards and industry regulations. 

This role demands a collaborative approach, where your ability to work closely with stakeholders, including IT, legal, and compliance teams, will drive the organization’s commitment to security and risk management. By leveraging your expertise in cybersecurity risk assessment, incident response coordination, and third-party security evaluations, you will help safeguard the firm’s technological and operational resilience. 

This is an opportunity to leverage your expertise in cybersecurity frameworks and risk management to support the growth and success of our new office, ensuring it thrives within a secure and compliant operational environment. 

In this role, you will :

Implement and Manage Cybersecurity Governance Frameworks: 

• Develop and manage a comprehensive cybersecurity governance program aligned with India’s regulatory requirements and Susquehanna’s global security program. 

• Ensure cybersecurity policies and procedures continually support business objectives and meet regulatory requirements. 

Cybersecurity Risk Management: 

• Identify, assess, and manage security risks, integrating them into the enterprise risk management program. 

• Conduct comprehensive third-party security assessments to mitigate risks associated with external vendors. 

• Monitor and report on key risk indicators (KRIs) and metrics to ensure proactive identification and escalation of risks. 

Cybersecurity Audit and Incident Response: 

• Coordinate and oversee internal/external audits and vulnerability assessments (VAPT) to address findings and improve security posture. 

• Manage local incident response activities in alignment with the global security operations center, ensuring compliance with regulatory reporting obligations. 

Innovate and Improve: 

• Leverage your expertise to introduce innovative practices in cybersecurity frameworks, risk management, and compliance methodologies to the program. 

What you can expect from us:

Real Impact: By integrating sophisticated coding techniques with innovative engineering ideas, we design and optimize systems that can process massive amounts of data while still ensuring high performance and stability. You’ll see how your contributions towards developing and supporting leading-edge hardware and software technologies make a firm-wide impact that makes us all smarter, faster, and better.

Collaboration: You will work closely with IT, legal, and compliance teams to address security risks, ensure adherence to internal policies, and meet regulatory requirements. Champion cybersecurity awareness and training initiatives across the organization. 

Growth: For many of our roles, we don’t expect you to have prior industry experience in proprietary trading or financial services to succeed at Susquehanna International Group. We’re looking for people who are naturally curious, relentless problem solvers, and have the desire to continuously innovate, learn, and grow.

Benefits: Susquehanna offers a wide array of competitive employee perks & benefits. 

What we’re looking for

• Minimum 7 years in cybersecurity governance, compliance, risk management, or related roles, with a proven track record of building or maturing programs

• Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field 

• Strong grasp of governance principles, risk management, and compliance methodologies 

• In-depth understanding of cybersecurity frameworks (SEBI CSCRF, NIST CSF, ISO 27001, CIS)

• Excellent written and verbal communication skills, with experience communicating with and presenting to executive audiences, auditors, and regulators

• Understanding of financial regulatory requirements and experience managing examinations strongly preferred 

About Susquehanna:

Susquehanna is a global quantitative trading firm founded by a group of friends who share a passion for game theory and probabilistic thinking. We have incorporated this approach into our culture, where you will find relentless problem solvers within each of our core disciplines: Trading, Technology, and Quantitative Research. From offices around the world, our employees collaborate to make optimal decisions and are driven by the desire to achieve winning results together. What we do:

We are experts in trading essentially all listed financial products and asset classes, with a focus on derivatives trading. Through market making and market taking, we handle millions of trading transactions around the world every day, providing liquidity and ensuring competitive prices for buyers and sellers. While our presence in the market is broad, our trading desks are highly specialized, allowing for a deep understanding of unique drivers of each asset class.

Equal Opportunity Statement

We encourage applications from candidates from all backgrounds, and we welcome requests for reasonable adjustments during the recruitment process to ensure that you can best demonstrate your abilities.

Susquehanna does not accept unsolicited resumes from recruiters or search firms. Any resume or referral submitted in the absence of a signed agreement will become the property of Susquehanna and no fee will be paid.