We are seeking a Software Security Engineer with experience in compliance audits and frameworks such as SOC 2 Type II, FedRAMP and ISO. The ideal candidate will have a deep understanding of information security principles, infrastructure management and secure software development practices and tools.

Requirements

Collaborate with cross-functional teams to integrate state of the art security controls
Discover, assess and report vulnerabilities and escalate issues if needed
Review, identify weaknesses and propose improvements in architectures and systems designs
Develop and promote best security practices, design and architecture patterns to engineering teams
Analyze findings from different tools, pen tests and support DevSecOps pipelines development
Develop and maintain tools/scripts to help teams to achieve secure coding practices
Collaborate with Product Owners and business stakeholders to prioritize and assess security related tasks
Monitor latest industry security developments, analyze impact, and work with teams to mitigate risks
Manage the SOC 2 Type II audit process for infrastructure systems
Maintain expert knowledge of our systems infrastructure, ensuring it meets SOC 2 Type II compliance requirements and other regulatory standards
Develop, implement, and maintain procedures and policies to ensure system compliance with SOC 2 Type II and other applicable regulations
Communicate effectively with stakeholders, auditors, and team members regarding compliance matters and audit processes
Manage remediation efforts to address any identified system vulnerabilities or issues
Provide training and guidance on compliance matters to other team members
Conduct regular security assessments of applications, identifying vulnerabilities and taking appropriate mitigation measures
Participate in incident response and cyber security investigations

Benefits

Generous Paid Time Off
401k Matching
Retirement Plan
Tuition Reimbursement
Relocation Assistance

Requirements

Collaborate with cross-functional teams to integrate state of the art security controls

Discover, assess and report vulnerabilities and escalate issues if needed

Review, identify weaknesses and propose improvements in architectures and systems designs

Develop and promote best security practices, design and architecture patterns to engineering teams

Analyze findings from different tools, pen tests and support DevSecOps pipelines development

Develop and maintain tools/scripts to help teams to achieve secure coding practices

Collaborate with Product Owners and business stakeholders to prioritize and assess security related tasks

Monitor latest industry security developments, analyze impact, and work with teams to mitigate risks

Manage the SOC 2 Type II audit process for infrastructure systems

Maintain expert knowledge of our systems infrastructure, ensuring it meets SOC 2 Type II compliance requirements and other regulatory standards

Develop, implement, and maintain procedures and policies to ensure system compliance with SOC 2 Type II and other applicable regulations

Communicate effectively with stakeholders, auditors, and team members regarding compliance matters and audit processes

Manage remediation efforts to address any identified system vulnerabilities or issues

Provide training and guidance on compliance matters to other team members

Conduct regular security assessments of applications, identifying vulnerabilities and taking appropriate mitigation measures

Participate in incident response and cyber security investigations

Security Engineer

About the Company

Job Description

Requirements

Benefits

Similar Jobs

Security Engineer

Security Development Engineering

Security Engineer II - Network Defense

Security Engineer

About the Company

Job Description

Requirements

Benefits

Similar Jobs

Security Engineer

Security Development Engineering

Security Engineer II - Network Defense

Job Details

About SICPA