Security Compliance Engineer

Sophos
115d$98,000 - $163,000
Match Resume

About The Position

We are seeking a technically skilled and proactive Security Compliance Engineer to support and enhance our compliance automation and monitoring capabilities. This role will serve as the technical subject matter expert and a key contributor within the Trust and Assurance team, focusing on integrating and expanding the capabilities of our GRC platform. The role will collaborate cross-functionally with product, engineering, and security teams enable continuous control monitoring, establish key risk indicators, and support security assurance objectives. The ideal will have light programming and scripting skills, familiarity with cloud technologies, and a understanding of compliance frameworks.

Requirements

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience).
  • 2+ years of experience in technical GRC, compliance automation, or security engineering roles.
  • Knowledge of industry frameworks such as NIST, ISO 27001, COBIT, or CIS Controls.
  • Understanding of various technologies used meet compliance objectives.
  • Strong analytical, problem-solving, and documentation skills.
  • Excellent communication and collaboration skills.

Nice To Haves

  • Certifications such as CISA, CISM, CRISC, CISSP, or Security+.
  • Experience with GRC tools (e.g., Archer, ServiceNow GRC, OneTrust).
  • Basic programming or scripting skills (e.g., Python, Bash) and familiarity with APIs.
  • Working knowledge of AWS and cloud security controls.

Responsibilities

  • Serve as a technical SME for compliance automation and integration efforts.
  • Design and implement automated workflows for evidence collection and control monitoring.
  • Expand and optimize the capabilities of the compliance platform through technical configuration and integration.
  • Develop and maintain dashboards to visualize compliance posture and key risk indicators.
  • Integrate GRC tools with cloud platforms and internal systems using APIs and scripting.
  • Collaborate with product, engineering, and security teams to implement technical controls.
  • Conduct gap analysis and support implementation of new compliance frameworks.
  • Monitor compliance with internal controls and external regulatory requirements (e.g., ISO 27001, NIST, SOC 2, GDPR, HIPAA).
  • Stay current with emerging technologies, regulations, and best practices in compliance automation.

Benefits

  • Remote-first working model.
  • Employee-led diversity and inclusion networks.
  • Annual charity and fundraising initiatives and volunteer days.
  • Global employee sustainability initiatives.
  • Global fitness and trivia competitions.
  • Global wellbeing days for employees.
  • Monthly wellbeing webinars and training.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Education Level

Bachelor's degree

Number of Employees

1,001-5,000 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service