Identify Security on TwitterIdentify Security on FacebookIdentify Security on LinkedImIdentify Security Blog RSS Feed

Compliance Engineer

We thrive at the intersection of people, process and technology and empower our partners to unleash the maximum potential of their business through unmatched partnership and the entrepreneurial spirit of a startup. From the smallest venture to the largest enterprises, we believe having an impact is never a question – it’s part of our DNA.

Required Experience:

5

+ Years
Job Locations:

Remote

Location Restrictions:

Travel

Basic Qualifications and

The Compliance Engineer guides cross-functional teams in the engineering of automated controls and processes that safeguard the data of our businesses, clients and team members both on premise and in the cloud.

Responsibilities
  • Design, implement and execute technical compliance    
  • Monitoring and remediation processes for on premise and cloud environments
  • Leverage APIs to connect data from multiple sources to    
  • Extract and transform data pipelines for analysis
  • Synthesize large sets of data to draw conclusions and perform data driven decision making
  • Code sophisticated routines that identify, prevent or respond to compliance issues
  • Develop processes and cross-functional team relationships to address compliance issues, and influence process and control improvement
  • Lead technical compliance implementation projects by managing project phases, coordinating and driving communication, facilitating decisions and ensuring follow-through on the execution of projects with internal and external stakeholders to provide timely program deliverables and rapid remediation
  • Maintain excellent technical documentation within code as well as higher level process flows and narratives for non-technical audiences
  • Ensure the enterprise is adhering to the standards of the organization's software development life cycle, including the drafting and collection of feedback for detailed design documents
  • Develop performance dashboard and metrics for regular reporting to all levels of the organization on program status and performance
  • Continuously identify, assess, advise and prioritize technical risks and opportunities
  • Advise on complex control and training requirements as needs arise
  • Simplify constantly at the program level
  • Mentor junior team members on compliance engineering skills

Required Skills and Experience
  • 5 years of experience with information security programs, project or program management, governance, asset management or data management processes
  • 5 years of experience with one or more security compliance frameworks: AICPA Trust Principals (SSAE 18 - SOC 1 and 2), NIST CSF, ISO 27000 Series, PCI DSS, HIPAA, SOX, SANS CIS Critical Security Controls, regulations governing personally identifiable information (PII) and other regulatory compliance frameworks
  • 5 years of experience with Microsoft Excel, PowerBI, Tableau, Python, R or other data analysis tools
  • Understanding of IT constructs (e.g., servers, networking, operating systems, development, storage, cloud technologies)
  • Understanding of information security constructs (e.g., encryption, identity and access, risk analysis, threat hunting, vulnerability management, DLP, IDS/IPS, governance, exploitations, threat landscape)
  • Knowledge of IAM, EC2, S3 Buckets, VPC and Cloudtrail logs
  • Knowledge of Agile Framework
  • Proficient with AWS, Azure, and/or GCP
  • Ability to build deep and influential relationships with audience and business partners

Interested in this position?
Fill out the form below!