Vacancy caducado!
They are a leader in the digital identity space, empowering users to control their personal information and authenticate their credential across a variety of different channels. They are serving over 20 million active users and are seeing growth of a million new users per month. They are growing rapidly so they are looking to triple the size of their company of this year. This would be a Governance Risk and Compliance Engineer position. You will build and operate tools to audit the company Security Controls across their entire product line. You will also build automation for capturing and managing key artifacts and metrics for the GRC program. You will work closely with many different teams to shape these controls and champion a robust and nimble approach to risk management across the company. Required Skills & Experience
- BA or BS in a technical field or equivalent experience
- 5+ years of Cloud Operations / Engineering experience
- 4+ years' experience with compliance audits (FedRAMP, SOC2, HIPAA, etc.)
- Experience with a strong focus on automation in a large-scale SaaS environment
- Deep understanding of cloud infrastructure and security concepts, especially AWS
- Software engineering experience with a focus on security automation
- Experience with automated configuration management and deployment using tools such as CloudFormation, Terraform, Ansible, Chef, and Python required
- Experience with Monitoring and reporting tools such as New Relic, Splunk, etc
- Strong attention to detail and written communication skills
- CCSP, CISSP, CISA, GCSA, Google Cloud PlatformN, GPEN, and similar certifications are a plus
- AWS certifications are strongly preferred
- Directly facilitate operational and regulatory outcomes across our client portfolio, including FedRAMP continuous monitoring and compliance audits
- Facilitate automation for compliance controls, evidence, and compliance artifact generation
- Guide technical and operational decision-making towards future product offerings and efficient organizational processes
- Manage and participate in audits, as appropriate
- Improve system monitoring and observability through log analysis, dashboard creation, and automated alerts and response
- Work with devops and security teams in specifying technical requirements to support deploying compliant capabilities
- Build automation frameworks and systems to improve time to delivery using modern CI/CD systems
- Review and update the FedRAMP System Security Plan (SSP), policies, and procedures as needed
- Identify opportunities to leverage automation to improve security and build the tools necessary to execute improvements
- Competitive Salary: Up to $155K/year, DOE
- Medical Insurance & Health Savings Account (HSA)
- 401(k)
- Paid Sick Time Leave
- Pre-tax Commuter Benefit
Vacancy caducado!