hero

STARTUP JOBS

Explore jobs at American Underground member companies
Search 
jobs
 53
Explore 
companies
 22
Talent
 network
My job alerts

Security and Compliance Engineer

ProcessMaker

ProcessMaker

This job is no longer accepting applications

See open jobs at ProcessMaker.See open jobs similar to "Security and Compliance Engineer" American Underground.
Legal
Durham, NC, USA
Posted on Dec 11, 2024

The Security & Compliance Engineer ensures the organization’s systems, processes, and networks remain secure and compliant with relevant standards. This role requires strong Ethical Hacking skills to identify vulnerabilities and proactively mitigate risks while supporting ongoing compliance and audit initiatives.

Responsibilities

  • Perform Ethical Hacking assessments (penetration testing, vulnerability scanning) to detect and resolve security weaknesses.
  • Respond to security alerts and incidents, leading incident response activities to mitigate risks.
  • Support the design and implementation of information security measures for infrastructure, cloud systems, and applications.
  • Assist with security and compliance audits, ensuring alignment with ISO 27001, SOC 2 type 2 and similar frameworks.
  • Develop and update security policies, guidelines, and procedures to maintain risk management practices.
  • Collaborate with teams to ensure Engineering processes and security controls are implemented in CI/CD pipelines.
  • Provide technical support to threat analysis activities, using tools and intelligence to prevent damage.
  • Keep employees informed and trained on security awareness topics and best practices.

Essential Functions

  • Conduct periodic security reviews to ensure compliance with internal and external standards.
  • Assist in developing and maintaining control frameworks to support security objectives.
  • Analyze threats and vulnerabilities using tools like Metasploit, Burp Suite, Nessus, and Wireshark.
  • Provide 3rd-level escalation support for security incidents and tools.
  • Enable internal and external audit readiness by developing required documentation and compliance evidence.

Minimal Qualifications

  • English proficiency; other languages are a plus.
  • Bachelor's degree in Systems Engineering, Informatics, Telecommunications, or related fields.
  • Ethical Hacking Certification (e.g., CEH, OSCP).
  • Recognized cloud security certification (AWS, Azure, or GCP).
  • Understanding of security frameworks and standards (ISO 27001, NIST, CIS).
  • Experience performing penetration testing and vulnerability analysis.

Preferred Qualifications

  • Master’s degree in Security and Compliance Information.
  • Strong problem-solving, communication, and documentation skills.
  • Familiarity with threat intelligence platforms and automation tools like Terraform or Ansible.

This job is no longer accepting applications

See open jobs at ProcessMaker.See open jobs similar to "Security and Compliance Engineer" American Underground.
See more open positions at ProcessMaker
Privacy policyCookie policy