RemoteLeaf Logo
Log in Sign up

Security Engineer II (Cloud Security & GRC)

6 days, 11 hours ago
India
Full-time
Mid Level
Security Engineer
Cybersecurity
Azure Bash Go OAuth PowerShell Python Salesforce SAML
Apply Now
ShipBob

ShipBob

ShipBob is a global ecommerce fulfillment solution that empowers businesses to scale, offer 2-day shipping, manage inventory, and streamline shipments. With a focus on simplifying the shipping process, ShipBob provides best-in-class supply chain soluti...

Air Freight & Logistics
251-1K
Founded 2014
$330M raised
View All Jobs 18

Description

  • Design, implement, and maintain threat detection, response, and access control solutions for cloud-native environments and applications.
  • Develop and automate security workflows, playbooks, and tools to improve security operations efficiency and effectiveness.
  • Develop, enforce, and update security policies, procedures, and guidelines for access control, threat detection, and compliance.
  • Participate in and oversee risk assessments, compliance reviews, and internal and external audits, including evidence collection and control implementation.
  • Maintain and monitor control effectiveness and operations in GRC platforms such as Vanta.
  • Communicate security concerns and risks to stakeholders, document remediation plans, and share updates with management.
  • Conduct third-party risk reviews for SaaS tools, service providers, AI tools, and open-source software, and manage the vendor audit pipeline.
  • Build and execute threat hunting campaigns to identify advanced and targeted threats.
  • Guide the incident response process from triage to closure and coordinate across multiple teams.
  • Collaborate with security, development, operations, and other stakeholders to share knowledge and best practices.

Requirements

  • 4+ years of hands-on experience in security architecture and engineering within a cybersecurity operations program.
  • 2+ years of experience in incident response, detection, threat intelligence, or access control security engineering.
  • 1+ year of security experience focused on risk and compliance, including ISO 27001 and SOC 2 audits.
  • Strong knowledge of access control frameworks and tools, including IAM, RBAC, ABAC, OAuth, and SAML.
  • Experience securing cloud-based infrastructures such as Azure, Microsoft 365, Google Workspace, and Salesforce.
  • In-depth knowledge of Azure services, especially Azure Active Directory, Azure AD Identity Protection, and Azure RBAC.
  • Proficiency in scripting languages such as Python, PowerShell, Go, or Bash.
  • Excellent knowledge of industry frameworks including MITRE ATT&CK, ISO 27001, SOC 2, NIST CSF, PCI, SOX, and GDPR.
  • Experience with GRC tools and standard practices.
  • Ability to manage multiple risk and compliance projects.
  • Strong written and verbal communication skills and effective interpersonal collaboration.
  • Security+, CISSP, CISA, CISM, CRISC, GCIA, GCIH, GREM, or similar certifications are preferred, with equivalent experience accepted.

Benefits

  • Medical, term, and accidental insurance.
  • All Purpose Leave of 12 days for casual and sick time.
  • 15 days of Earned Leave.
  • 12 public holidays.
  • Generous maternity and paternity leave.
  • Quarterly wellness day.
  • Work from home allowance.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

3E

DevSecOps Engineering Team Lead

3E 251-1K Professional Services

3E is hiring a DevSecOps Engineering Team Lead to oversee secure cloud infrastructure, deployment pipelines, and AI-enabled modernization efforts across Azure and AWS.

United States Full-time Lead DevOps Engineer Security Engineer
$172k-$175k
AWS Azure Bash CI/CD DevSecOps Docker Git Kubernetes PowerShell Python Terraform
17 hours, 55 minutes ago
Ro

Senior Security Engineer, Enterprise SaaS

Ro 251-1K Health Care Providers & Services

Ro is hiring a Senior Security Engineer for its enterprise SaaS environment to lead security posture management and data loss prevention efforts that protect company systems and patient data as the organization scales.

United States Full-time Senior Security Engineer
$153k-$186k
HIPAA SIEM Splunk
18 hours, 25 minutes ago
Mindgard

IT & Security Engineer

Mindgard 1-10 Internet Software & Services

Mindgard is hiring a mid-level Security & IT Engineer in London to implement SOC 2 controls, strengthen internal security operations, and run core IT systems for its AI security startup.

United Kingdom Full-time Mid Level Security Engineer
18 hours, 40 minutes ago
Thaloz

CO - DevSecOps - 234

Thaloz 51-250 Internet Software & Services

Clearco is hiring a Senior DevSecOps Engineer to improve cloud security, platform reliability, and incident response across its GCP-based systems and delivery pipelines.

Brazil Full-time Senior DevOps Engineer Security Engineer
AWS CI/CD CrowdStrike Docker GCP Jenkins Kubernetes Splunk Terraform
18 hours, 55 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers