RemoteLeaf Logo
Log in Sign up

Senior Security Engineer (GRC)

1 month ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
AWS
Apply Now
Offchain Labs

Offchain Labs

Offchain Labs is a NY-based company creating cutting-edge scaling solutions for Ethereum with Arbitrum Rollup, instantly scaling Dapps and increasing capacity without sacrificing security.

Internet Software & Services
11-50
Founded 2018
$124M raised
View All Jobs 11

Description

  • Develop and enforce security policies, standards, and procedures across the organization.
  • Ensure the company remains audit-ready and responds to regulatory changes.
  • Establish and communicate data privacy and data-handling standards to internal and external stakeholders.
  • Track, document, and report on the status of security controls, audits, and compliance activities.
  • Design, launch, and continuously improve the company’s information security governance program.
  • Collaborate with security, engineering, infrastructure, and product teams to align controls with business and technical needs.
  • Promote security awareness and a shared risk culture through training and clear communication.
  • Support internal and external audits by coordinating evidence collection, preparing materials, and addressing findings.
  • Translate regulatory and technical obligations into actionable internal processes.

Requirements

  • 5+ years of experience in a security engineering, governance, or risk management role.
  • Solid understanding of AWS or other cloud vendors.
  • Strong understanding of core information security concepts and major regulatory frameworks/standards such as SOC 2, ISO 27001, and NIST CSF.
  • Hands-on experience with standard risk assessment approaches and supporting tools.
  • Direct experience drafting and updating security policies.
  • Ability to translate complex regulatory and technical obligations into straightforward, actionable internal processes.
  • Strong communication skills for both technical and non-technical audiences.
  • Excellent written and verbal communication skills with the ability to present complex technical details as clear, risk-focused recommendations.

Benefits

  • Remote-first global workforce with a New York office.
  • Annual company offsite and team onsites.
  • Professional reimbursement program for conferences, certifications, and other learning opportunities.
  • Medical, dental, and vision coverage (US and some other countries).
  • 401(k) retirement plan with company match (US only).
  • Wellness stipend.
  • Home office setup and ergonomic equipment program.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

The Missing Link

Saviynt IAM Specialist

The Missing Link 51-250 Internet Software & Services

The Missing Link is seeking a Security Engineer - Saviynt to support large enterprise identity governance initiatives, design and deliver Saviynt-based solutions, and strengthen its growing cyber security practice.

India Full-time Mid Level Security Engineer
Active Directory Azure Cybersecurity JavaScript PowerShell REST API SAP SQL
11 hours, 14 minutes ago
EnableComp

AI Security Architect (REMOTE - United States)

EnableComp 251-1K Insurance

EnableComp is seeking a remote AI Security Architect to secure and govern its AI and machine learning initiatives within its healthcare revenue cycle management environment.

United States Full-time Senior AI Engineer Security Engineer
Azure Cybersecurity HIPAA LLM Machine Learning
11 hours, 29 minutes ago
Dropbox

Senior Infrastructure Security Engineer

Dropbox 1K-5K Internet Software & Services

Dropbox is hiring a Security Engineer to secure its AI and agentic infrastructure while helping protect products and users across cloud and on-prem environments.

Canada Full-time Lead Infrastructure Engineer Security Engineer
$152k-$206k
Bash CI/CD CrowdStrike Go Java Kubernetes Linux LLM Node.js OAuth OpenID Connect OWASP Python Ruby Rust SIEM
11 hours, 29 minutes ago
Fullscript

Staff, Security Engineer

Fullscript 251-1K Health Care Providers & Services

Fullscript is hiring a Staff Security Engineer to lead hands-on security engineering across its healthcare technology platform, shaping secure product development and protecting systems that support practitioners and patients.

United States Canada Full-time Lead Security Engineer
AWS GitHub GitLab GraphQL JavaScript Node.js Penetration Testing Ruby on Rails
11 hours, 59 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers