Skip to main content
Tallo logoTallo logo
Apply for this opportunity

This job application is on an outside website. Be sure to review the job posting there to verify it's the same.

Apply Offsite

Engineer, Information Security GRC

Job

Intercontinental Exchange (ICE)

Provo, UT (In Person)

Full-Time

Posted 1 week ago (Updated 1 week ago) • Actively hiring

Expires 6/27/2026

Review key factors to help you decide if the role fits your goals.
How is this calculated?
Pay Growth
?
out of 5
Not enough data
Not enough info to score pay or growth
Job Security
?
out of 5
Not enough data
Calculating job security score...
Total Score
80
out of 100
Average of individual scores

Were these scores useful?

Skill Insights

Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.

Job Description

Overview
  • Job Purpose
  • The Engineer, Information Security GRC is part of a team responsible for the global Information Security program.
The role would gain exposure to the full suite of businesses and products which underpin the Parent ICE company. Information Security ("IS") is charged with: + Preventing impactful cybersecurity and physical security incidents, + maintaining a reputation with customers, regulators, and key stakeholders as running a best-in-class cybersecurity and physical security program, and + avoiding negative impact to business agility and growth from cybersecurity and physical security policies and controls. Governance, Risk, and Compliance maintain said policies, ensure controls are operating effectively via assessment and attestation, and own the vulnerability management program to identify and correct any problems within.
  • Responsibilities
  • + Security Metrics
  • Uses automated and manual processes to produce regular reports communicating the status of the Information Security program + Policies and Procedures
  • Maintains corporate Information Security policies and departmental procedures and maps them to relevant control standards + Regulator, Audit, and Customer Inquiries
  • Organizes and updates departmental documentation and responds to inquiries in an organized and repeatable fashion + Recertification
  • Operates periodic processes to ensure hire, transfer, and termination protocols are complied with and regular access reviews are conducted + Security Awareness
  • Builds and maintains company awareness and education programs + Risk Assessment
  • Builds and operates the company platform to document, measure, and report assessments, risks, controls, findings, and remediation activity
  • Knowledge and Experience
  • + University degree in Information Security, Engineering, MIS, CIS, or related discipline + 3+ years of relevant work experience + Experience in Cybersecurity Framework (such as
NIST, COBIT
) + Experience with Systems Administration and/or IP Networking is a plus + Experience with Regulatory Compliance + Experience in an exchange, trading facility, or financial services a plus + Experience in Customer communication and Vendor evaluation + Experience with senior management and board metrics generation and communication + Advanced certifications (for example, the CISSP) + Advanced technical writing and/or communication education and experience
  • Specific Technologies
  • Excel, Workflow automation tools, Data collection, normalization, indexing, correlation, and visualization.
Scripting, regular expressions, string-parsing, light SDLC, and project management. NIST Cyber Security Framework, CIS, and GRC Platforms. Intercontinental Exchange, Inc. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to legally protected characteristics.