Customer Security Engineer managing end - to - end pentesting services at Aikido Security. Ensuring customer value and addressing vulnerabilities for a developer - first security product.
About the role
- Security Manager designing and operationalizing SOC2 compliant policies at MarketProminence. Overseeing audits and collaborating with various teams to ensure security compliance.
Responsibilities
- Lead the company’s SOC 2 Type II and HIPAA compliance initiatives from planning through certification.
- Develop, draft, and maintain security, IT, and privacy policies aligned with SOC 2, HIPAA, NIST, and other relevant standards.
- Establish and maintain a security roadmap, including milestones, control gaps, remediation steps, and timelines.
- Implement, configure, and administer the company’s GRC platform.
- Map controls, evidence sources, workflows, and automated tests within the GRC tool.
- Ensure continuous monitoring and automated evidence collection is accurate and functioning.
- Serve as the primary liaison for external auditors, assessors, and compliance partners.
- Prepare audit-ready documentation, evidence, and controls for SOC 2 Type II and HIPAA audits.
- Train internal teams on new policies, procedures, and compliance requirements.
- Collaborate with Engineering and DevOps to implement technical security controls (e.g., logging, access management, encryption, vulnerability management).
- Maintain the MarketProminence risk register and ensure timely risk assessments.
- Stay current with regulatory requirements and industry frameworks (e.g., SOC 2, HIPAA).
Requirements
- 3–7+ years of experience in security, compliance, IT risk, or related field.
- Direct experience with SOC 2 Type II and/or HIPAA compliance initiatives.
- Strong familiarity with common GRC tools and compliance automation platforms.
- Experience drafting policies, procedures, and technical security documentation.
- Ability to manage audits, communicate with auditors, and gather required evidence.
- Understanding of security best practices (access control, encryption, logging, vulnerability management, cloud security).
- Excellent organizational, project management, and cross-functional communication skills.
- Bachelor’s Degree or relevant certifications.
Benefits
- Medical, vision, and dental plans for full time employees
- 401(k) offered with a generous match
- Benefits begin on first day of the month following employment
- Exercise/Health Club reimbursement opportunity
- Monthly dependent care reimbursement opportunity
- Short Term and Long-Term disability
- Basic Term Life and AD&D Insurance
- Generous PTO and Company Paid Holidays
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cybersecurity GRC Specialist developing compliance standards across IT environments at Axpo Group. Collaborate with teams to safeguard critical systems and implement cybersecurity policies in energy sector.
Lead Cybersecurity Specialist managing enterprise cybersecurity programs at NexThreat. Overseeing cybersecurity research, engineering, and technical services while ensuring federal compliance.
Manager overseeing Netflix's global physical security technology design and build programs across multiple business verticals. Leading a team to ensure best - in - class security systems and vendor management.
Technician in workplace health and safety conducting interventions in member companies of CIAMT. Focusing on risk prevention and improving workplace safety conditions.
Information System Security Officer liaising between Cybersecurity Group and information owners. Ensuring compliance and security posture for national security IT systems in a hybrid environment.
Information System Security Officers maintaining IT security posture through collaboration with stakeholders. Supporting system security policies and risk management for national cybersecurity objectives.
Security Manager overseeing and processing security clearances for Danish Government and NATO compliance. Liaising with security authorities and ensuring organizational requirements are met.
Business Cybersecurity Partner overseeing cybersecurity and compliance in Aerospace sector. Ensure alignment with regulatory frameworks and manage compliance with cybersecurity requirements.
Lead Security Engineer shaping the security strategy for a renewable energy startup. Focus on secure architecture, risk management, and cross - functional collaboration.