Remote GRC Engineer - Cloud & Application Security

Posted

This job is closed

This job post is closed and the position is probably filled. Please do not apply.  Automatically closed by a robot after apply link was detected as broken.

Description:

  • Define and implement the overall strategy for One’s Information Security program
  • Identify control gaps and lead initiatives to remediate such gaps
  • Design, oversee, and execute information security risk management processes
  • Define security standards and policies, perform internal and external security assessments, identify and manage security risks, and support audits
  • Evaluate the security posture of cloud infrastructure and application security designs
  • Ensure compliance with frameworks such as SOC 2 and PCI DSS controls
  • Proactively evaluate security configurations of applications and AWS services
  • Determine remediation plans for security gaps and work with stakeholders to resolve them
  • Define, publish, and maintain company-wide security standards and requirements
  • Perform security assessments of third-party hosted applications and systems
  • Collaborate on security reviews of new product features, system architectures, and business processes
  • Support information security audit initiatives and compliance projects
  • Provide guidance and training to internal teams on information security, AWS security, and compliance
  • Engage with technology and business teams as a consultant for security-related issues

Requirements:

  • 5+ years of experience in security governance, cloud and application security assessments, risk management, and/or third-party risk
  • Strong knowledge of industry standard frameworks such as NIST, FFIEC, SOC 2, PCI DSS, HiTrust, etc
  • Thorough knowledge of enterprise-scale security architecture, cloud security, and application security best practices
  • Domain knowledge of IT systems, networking, security, and compliance
  • Familiarity with containerization technologies and CI/CD pipelines
  • Excellent written and verbal communication skills
  • Strong analytical and problem-solving skills
  • Relevant certifications such as AWS Certified Security Specialty, CISSP, or CCSP are a plus

Benefits:

  • Competitive cash salary ranging from $175,000 to $190,000 annually
  • Benefits effective on day one
  • Early access to a high potential, high growth fintech
  • Generous stock option packages in an early-stage startup
  • Remote-friendly (anywhere in the US) and office-friendly
  • Flexible time off programs including vacation, sick, paid parental leave, and paid caregiver leave
  • 401(k) plan with match
About the job
Posted on
Job type
Full-time
Salary
$ 175,000 - 190,000 USD / year
Location requirements
United States - Remote
Position
Cybersecurity Engineer
Experience level
Senior
Technology stack
CI/CD Docker Kubernetes AWS Lambda
O
One's company logo
One
View company profile Visit one.app
Leave a feedback