Role Overview
Ninjatrader is hiring a entry-level GRC Engineer. This is a full-time role in Chicago. posted last week. Full responsibilities, required qualifications, and the apply link are listed in the description below.
Resume Keywords to Include
Make sure these keywords appear in your resume to improve ATS scoring
Job description
Disclaimer: Please be advised that the most accurate and up-to-date information about our open roles—including job descriptions, compensation, and benefits—can only be guaranteed on our official job board. For the latest listings and details, please visit: https://job-boards.greenhouse.io/ninjatrader.
JOIN US ON OUR MISSION TO BECOME THE #1 RETAIL TRADING PLATFORM IN THE WORLD
Welcome to the dynamic world of NinjaTrader! As an industry-leading trading platform and futures broker, we're empowering traders to take control of their financial destiny. How do we do it? We provide cutting-edge products and services that enhance the trading journey. Whether a seasoned pro or just starting out, NinjaTrader equips traders with award-winning software and brokerage services to navigate the world's leading financial markets with confidence.
Our growth story is nothing short of exhilarating. Since 2003, NinjaTrader has been dedicated to understanding and supporting traders on their journey toward trading triumph. Through those efforts, our user base has grown to over 2 million users and we have become the number one rated futures brokerage worldwide.
But we're not stopping there. We're constantly evolving, pushing boundaries, and modernizing the futures industry. Our commitment to innovation means users will always have access to dynamic tools, real-time support, and a community of like-minded traders.
So, why work at NinjaTrader? Here, you're not just part of a team; you're part of a movement. We empower employees to reach new heights in their careers by providing a dynamic culture focused on social connection, professional development, and employee recognition initiatives. Sounds too good to be true? Take it from our employees.
Join us as we redefine what's possible in trading, advocate for our customers, and continue our journey toward becoming the world's top retail-focused trading platform in the world.
What you'll do:
We're looking for a mid-level GRC Engineer to help us scale our compliance program through automation and run audits across SOC 2, ISO 27001, and SOX. This is a hands-on, technical role where you'll spend as much time writing code and integrating systems as you do reviewing controls. You'll serve as the bridge between Security, Engineering, and the business by transforming manual, evidence-heavy compliance work into automated, repeatable processes while helping leadership understand and prioritize risk.
This role is ideal for someone with GRC or security experience who wants to move beyond spreadsheets and checklists into building the tooling that makes a compliance program efficient, scalable, and audit-ready year-round.
In this role you will:
Automation & Tooling
- Build and maintain automation for continuous control monitoring, evidence collection, and audit readiness through scripts, APIs, and GRC platform integrations
- Integrate compliance workflows with cloud providers, identity systems, ticketing platforms, and CI/CD pipelines to automatically collect control data and evidence
- Reduce manual compliance work by codifying control checks and pulling evidence directly from source systems
- Develop dashboards and reporting that provide stakeholders with real-time visibility into control health and audit readiness
Audits & Frameworks
- Run and coordinate audits for SOC 2 (Type I and Type II), ISO 27001, and SOX, including scoping, evidence collection, control walkthroughs, and auditor coordination
- Map controls across multiple compliance frameworks to reduce duplication and maintain a unified control library
- Track audit findings and control gaps through remediation and closure with business and technical stakeholders
- Maintain audit-ready documentation including policies, procedures, control narratives, and evidence repositories
Risk Management
- Identify, assess, and document organizational risks while maintaining the enterprise risk register
- Support risk assessments, including likelihood and impact scoring, treatment planning, and remediation tracking
- Partner with Engineering and IT to evaluate the control impact of new systems, vendors, and architectural changes
- Contribute to the third-party risk management program
Cross-Functional Partnership
- Partner with control owners to ensure controls are operating effectively and generating appropriate evidence
- Translate compliance requirements into practical, engineering-focused guidance
- Support customer security questionnaires, trust requests, and due diligence activities
What you'll need:
- 3–5 years of experience in GRC, IT audit, security compliance, or a related field
- Hands-on experience supporting or leading audits for SOC 2, ISO 27001, SOX, or a comparable framework
- Working knowledge of SOC 2 Trust Services Criteria, ISO 27001 Annex A, COSO/SOX ITGCs, NIST, or similar control frameworks
- Experience with scripting and automation using Python or a similar language, including working with REST APIs to automate evidence collection
- Familiarity with at least one major cloud platform (AWS, GCP, or Azure) and its security and logging services
- Strong understanding of access management, change management, logging and monitoring, vulnerability management, and SDLC controls
- Excellent written communication skills with the ability to create clear control documentation, risk assessments, and stakeholder reporting
- Ability to manage multiple priorities while driving audit findings and remediation efforts to completion
Bonus points for:
- Experience with Infrastructure as Code (Terraform) and CI/CD pipeline security
- Exposure to SOX ITGC testing within a public company or pre-IPO environment
- Experience using SQL or data analysis for evidence collection and control sampling
- Certifications such as CISA, CISSP, CCSK, ISO 27001 Lead Implementer or Lead Auditor, or cloud security certifications
- Experience working directly with external auditors and managing audit timelines
Compensation:
The salary range for this role will be $130,000.00 - $145,000.00 USD. In addition, this position will also receive an annual target bonus of 10%. Bonus pay at NinjaTrader is based on individual performance (50%) as well as company/team performance (50%).
Salary and bonus earnings are only two components of the total compensation package offered by NinjaTrader. NinjaTrader offers a 401K plan through ADP under which the company will match up to 3.5% of employee contributions. Annual paid time off allowance accrues at a rate of 18 days per year (some positions may qualify for more) plus seven paid holidays.
Location:
This role is based in Chicago, IL. We are not open to remote candidates for this role.
Hybrid:
For Chicago-based employees, we follow a hybrid work schedule: In-office Tuesday through Thursday, with remote work on Mondays and Fridays. In addition to these weekly remote days, we offer:
- 20 additional flex remote days annually
- 5 Company Wide Office-Optional weeks tied to major holidays
Our Core Benefits Include:
- Generous PTO
- 7 Paid Holidays Annually + 5 Conditional Holidays Annually
- 1 Service Day Annually
- 401k with 3.5% Company Match
- Paid Parental Bonding Leave
- Health, Vision, Dental Coverage
- Life and Disability Insurance Covered 100% by NinjaTrader
We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.
About Ninjatrader
Ninjatrader
23 other open roles at Ninjatrader on TryApplyNow.
Frequently Asked Questions
How do I apply for the GRC Engineer position at Ninjatrader?
Use the Apply button above to submit your application directly to Ninjatrader. Most applications take less than 5 minutes if your resume and contact details are ready, and you'll be routed to the employer's official application system to finish.
Where is the GRC Engineer position at Ninjatrader located?
This position is based in Chicago. Ninjatrader has not indicated remote or hybrid options for this role, so candidates should plan for on-site work.
What does a GRC Engineer at Ninjatrader earn?
Ninjatrader has not disclosed a salary range in this posting. Many employers share specifics later in the interview process; you can also ask during a recruiter screen if compensation transparency is important to you.
When was the GRC Engineer role at Ninjatrader posted?
This role was posted on July 2, 2026 (7 days ago). It's still listed as actively hiring; we re-confirm openings against the source system multiple times per day and remove closed roles.
Is the GRC Engineer role at Ninjatrader entry-level?
Yes. This is an entry-level position. Strong candidates typically have 0-2 years of relevant work experience, internships, or significant project work. Read the full description for any specific qualification requirements Ninjatrader has listed.
More Jobs at Ninjatrader
View all →Staff UX Product Designer
Ninjatrader
Staff Software Engineer, FCM
Ninjatrader
Staff Security Engineer, Application Security
Ninjatrader
Staff Cloud Security Engineer
Ninjatrader
Senior Software Engineer II, Trading Services
Ninjatrader
AI-powered job search
Get every job scored to your resume
Upload your resume and get jobs ranked, your resume tailored, and employee contacts found automatically.
Get started freeNo credit card to start