Plus
Включить Plus
Назад
Company hidden
обновлено 1 месяц назад

Senior Security Engineer (GRC)

Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Senior Security Engineer (GRC): Defining and improving security posture through robust governance, policies, and risk management for blockchain scalability platform with an accent on compliance and audit readiness. Focus on developing organization-wide security standards, tracking controls, and aligning operations with regulatory frameworks like SOC2.

Location: Remote, cannot be performed in California or Colorado. Remote-first global workforce + NY office.

Company

Leading blockchain scalability and security pioneers building the Arbitrum stack, the most adopted Ethereum scaling solution powering hundreds of dApps and custom chains, backed by $124M funding.

What you will do

  • Develop and enforce security policies, standards, and procedures organization-wide.
  • Ensure audit-readiness and responsiveness to regulatory changes.
  • Establish and communicate data privacy and handling standards to teams, partners, and stakeholders.
  • Track, document, and report on security controls, audits, and compliance activities.
  • Design, launch, and refine the information security governance program.
  • Collaborate with security, engineering, infrastructure, and product teams to align controls with business and technical needs.
  • Promote security awareness and shared risk responsibility through training and communication.
  • Support internal and external audits by gathering evidence and addressing findings.

Requirements

  • 5+ years in security engineering, governance, or risk management.
  • Solid understanding of AWS or other cloud vendors.
  • Strong knowledge of information security concepts and frameworks like SOC2, ISO 27001, NIST CSF.
  • Hands-on experience with risk assessment approaches and tools.
  • Direct experience drafting and updating security policies.
  • Ability to translate complex regulatory and technical obligations into actionable processes.
  • Strong communication skills for technical and non-technical audiences.

Culture & Benefits

  • Remote-first global workforce with NY office, annual company offsite, and team onsites.
  • Professional reimbursement for conferences, certifications, and more.
  • Medical, dental, vision coverage (US + some other countries), 401k with company match (US only).
  • Wellness stipend and home office ergonomic equipment program.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →