RemoteLeaf Logo
Log in Sign up

Security Engineer II (Cloud Security & GRC)

1 month, 2 weeks ago
India
Full-time
Mid Level
Security Engineer
Cybersecurity
Azure Bash Go OAuth PowerShell Python Salesforce SAML
Apply Now
ShipBob

ShipBob

ShipBob is a global ecommerce fulfillment solution that empowers businesses to scale, offer 2-day shipping, manage inventory, and streamline shipments. With a focus on simplifying the shipping process, ShipBob provides best-in-class supply chain soluti...

Air Freight & Logistics
251-1K
Founded 2014
$330M raised
View All Jobs 17

Description

  • Design, implement, and maintain threat detection, response, and access control solutions for cloud-native environments and applications.
  • Develop and automate security workflows, playbooks, and tools to improve security operations efficiency and effectiveness.
  • Develop, enforce, and update security policies, procedures, and guidelines for access control, threat detection, and compliance.
  • Participate in and oversee risk assessments, compliance reviews, and internal and external audits, including evidence collection and control implementation.
  • Maintain and monitor control effectiveness and operations in GRC platforms such as Vanta.
  • Communicate security concerns and risks to stakeholders, document remediation plans, and share updates with management.
  • Conduct third-party risk reviews for SaaS tools, service providers, AI tools, and open-source software, and manage the vendor audit pipeline.
  • Build and execute threat hunting campaigns to identify advanced and targeted threats.
  • Guide the incident response process from triage to closure and coordinate across multiple teams.
  • Collaborate with security, development, operations, and other stakeholders to share knowledge and best practices.

Requirements

  • 4+ years of hands-on experience in security architecture and engineering within a cybersecurity operations program.
  • 2+ years of experience in incident response, detection, threat intelligence, or access control security engineering.
  • 1+ year of security experience focused on risk and compliance, including ISO 27001 and SOC 2 audits.
  • Strong knowledge of access control frameworks and tools, including IAM, RBAC, ABAC, OAuth, and SAML.
  • Experience securing cloud-based infrastructures such as Azure, Microsoft 365, Google Workspace, and Salesforce.
  • In-depth knowledge of Azure services, especially Azure Active Directory, Azure AD Identity Protection, and Azure RBAC.
  • Proficiency in scripting languages such as Python, PowerShell, Go, or Bash.
  • Excellent knowledge of industry frameworks including MITRE ATT&CK, ISO 27001, SOC 2, NIST CSF, PCI, SOX, and GDPR.
  • Experience with GRC tools and standard practices.
  • Ability to manage multiple risk and compliance projects.
  • Strong written and verbal communication skills and effective interpersonal collaboration.
  • Security+, CISSP, CISA, CISM, CRISC, GCIA, GCIH, GREM, or similar certifications are preferred, with equivalent experience accepted.

Benefits

  • Medical, term, and accidental insurance.
  • All Purpose Leave of 12 days for casual and sick time.
  • 15 days of Earned Leave.
  • 12 public holidays.
  • Generous maternity and paternity leave.
  • Quarterly wellness day.
  • Work from home allowance.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

JumpCloud

Security Engineer, DevSecOps - Mexico

JumpCloud 251-1K Internet Software & Services

JumpCloud is hiring a remote Security Engineer for its DevSecOps team in Mexico to design and build cloud security automation, detection, and vulnerability management solutions that protect the company’s data and infrastructure.

Mexico Full-time Mid Level Security Engineer
AWS DevSecOps GCP GitHub Actions Go Python SIEM Terraform
3 hours, 52 minutes ago
Label Your Data

Head of Security

Label Your Data 51-250 Internet Software & Services

Label Your Data is hiring a Head of Security to build and lead its standalone security function, owning security operations, strategy, and maturity while collaborating with the group security team.

Czech Republic Hungary Poland Romania Slovakia Full-time Senior Security Engineer
Cybersecurity SIEM
4 hours, 47 minutes ago
Smart Working

Anti-Bot Engineer (Remote, Full-Time) [HR177]

Smart Working Internet Software & Services

Smart Working is hiring a senior Anti-Bot Engineer to build and operate large-scale web scraping systems that reliably extract data from highly protected, fast-changing websites.

India Full-time Senior Backend Engineer Security Engineer
Docker Go HTTP JavaScript Kubernetes Playwright Puppeteer Python Rust Selenium
4 hours, 48 minutes ago
Cision

Senior Security Engineer

Cision 5K-10K Professional Services

Cision is hiring a Senior Security Engineer to monitor, investigate, and respond to security activity across cloud, identity, endpoint, and Linux-based environments.

Hungary Full-time Senior Security Engineer
Active Directory AWS Bash GCP Kubernetes Linux PowerShell Python Serverless SIEM Splunk
5 hours, 1 minute ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers