Senior Compliance Engineer (Security)

200 000 - 220 000$

Формат работы

remote (только USA)

Тип работы

fulltime

Грейд

senior

Английский

Страна

US/Canada

Вакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:

TL;DR

Senior Compliance Engineer (Security): Developing scalable processes and automation for security controls and audit evidence collection with an accent on GRC operationalization and regulatory certifications. Focus on programmatically implementing control validations, managing risk registries, and integrating compliance into CI/CD pipelines.

Location: Remote (North America)

Salary: $200,000–$220,000

Company

hirify.global provides AI-powered intelligence solutions to help public and private sector agencies investigate and disrupt financial crime and trace illicit activity.

What you will do

Develop scalable and sustainable processes for normalized controls, audit evidence collection, and gap analyses.
Manage the security compliance lifecycle for certifications including SOC 2 Type II, ISO 27001/27701, FedRAMP, and CMMC.
Operationalize the GRC program and manage customer due diligence requests (SIG, CAIQ).
Conduct enterprise risk assessments, manage the risk registry, and develop a vendor risk management program.
Build automation and leverage APIs to programmatically implement control validations and evidence collection using Python.
Shift compliance left by integrating security standards directly into CI/CD pipelines to flag issues before production.

Requirements

Must be based in North America.
Proficiency in Python or other scripting languages for automating compliance controls.
Strong understanding of NIST 800-53, SOC 2, CMMC, ISO, and CyberEssentials UK.
Experience leading cloud-first SaaS companies through audit processes.
AI fluency: Ability to apply AI to accelerate repeatable workflows and solve complex problems.
Expertise in normalizing controls across frameworks to improve maturity and scalability.

Nice to have

Experience with Privacy and GDPR.
Security certifications such as CISSP or CISM.
Previous software development background.

Culture & Benefits

Remote-first, globally distributed team environment.
Eligibility to participate in the company equity plan.
High-velocity culture emphasizing personal ownership, adaptability, and impact.
Collaborative atmosphere based on mutual respect, transparency, and candid feedback.
Commitment to AI-driven efficiency in all professional crafts.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →