RemoteLeaf Logo
Log in Sign up

Security Engineer II (Cloud Security & GRC)

3 weeks, 5 days ago
India
Full-time
Mid Level
Security Engineer
Cybersecurity
Azure Bash Go OAuth PowerShell Python Salesforce SAML
Apply Now
ShipBob

ShipBob

ShipBob is a global ecommerce fulfillment solution that empowers businesses to scale, offer 2-day shipping, manage inventory, and streamline shipments. With a focus on simplifying the shipping process, ShipBob provides best-in-class supply chain soluti...

Air Freight & Logistics
251-1K
Founded 2014
$330M raised
View All Jobs 15

Description

  • Design, implement, and maintain threat detection, response, and access control solutions for cloud-native environments and applications.
  • Develop and automate security workflows, playbooks, and tools to improve security operations efficiency and effectiveness.
  • Develop, enforce, and update security policies, procedures, and guidelines for access control, threat detection, and compliance.
  • Participate in and oversee risk assessments, compliance reviews, and internal and external audits, including evidence collection and control implementation.
  • Maintain and monitor control effectiveness and operations in GRC platforms such as Vanta.
  • Communicate security concerns and risks to stakeholders, document remediation plans, and share updates with management.
  • Conduct third-party risk reviews for SaaS tools, service providers, AI tools, and open-source software, and manage the vendor audit pipeline.
  • Build and execute threat hunting campaigns to identify advanced and targeted threats.
  • Guide the incident response process from triage to closure and coordinate across multiple teams.
  • Collaborate with security, development, operations, and other stakeholders to share knowledge and best practices.

Requirements

  • 4+ years of hands-on experience in security architecture and engineering within a cybersecurity operations program.
  • 2+ years of experience in incident response, detection, threat intelligence, or access control security engineering.
  • 1+ year of security experience focused on risk and compliance, including ISO 27001 and SOC 2 audits.
  • Strong knowledge of access control frameworks and tools, including IAM, RBAC, ABAC, OAuth, and SAML.
  • Experience securing cloud-based infrastructures such as Azure, Microsoft 365, Google Workspace, and Salesforce.
  • In-depth knowledge of Azure services, especially Azure Active Directory, Azure AD Identity Protection, and Azure RBAC.
  • Proficiency in scripting languages such as Python, PowerShell, Go, or Bash.
  • Excellent knowledge of industry frameworks including MITRE ATT&CK, ISO 27001, SOC 2, NIST CSF, PCI, SOX, and GDPR.
  • Experience with GRC tools and standard practices.
  • Ability to manage multiple risk and compliance projects.
  • Strong written and verbal communication skills and effective interpersonal collaboration.
  • Security+, CISSP, CISA, CISM, CRISC, GCIA, GCIH, GREM, or similar certifications are preferred, with equivalent experience accepted.

Benefits

  • Medical, term, and accidental insurance.
  • All Purpose Leave of 12 days for casual and sick time.
  • 15 days of Earned Leave.
  • 12 public holidays.
  • Generous maternity and paternity leave.
  • Quarterly wellness day.
  • Work from home allowance.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Recorded Future

Senior Threat Data Infrastructure Engineer

Recorded Future 251-1K Professional Services

Recorded Future is hiring a Senior Threat Data Infrastructure Engineer to support the Insikt Group’s Threat Data and Enablement team in building and maintaining the infrastructure that powers proprietary threat intelligence collection and analyst workflows.

United Kingdom Senior Infrastructure Engineer Security Engineer
Bash Go Linux Perl Python
1 hour, 21 minutes ago
Adoreal

Senior Manager, IT

Adoreal 1-10 Health Care Providers & Services

Adoreal is seeking a hands-on Senior Manager, IT to build and lead its IT function for a fast-growing vertical SaaS company supporting elective medicine, with ownership of security, compliance, infrastructure, and overall IT strategy.

United States Full-time Lead Infrastructure Engineer Security Engineer
AWS Cloudflare Datadog DevSecOps HIPAA Network Security
5 hours, 2 minutes ago
Anduril Industries

Senior Security Engineer

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is seeking a Security Engineer to help secure its OT and ICS environments and protect the infrastructure supporting its defense technology products and factory systems.

United States Full-time Senior Security Engineer
$166k-$220k
Go Linux Python Rust
5 hours, 6 minutes ago
Affirm

Sr. Security Operations Engineer, Incident Response

Affirm 1K-5K Diversified Financial Services

Affirm is seeking a Senior Security Operations Engineer to lead incident response and resilience efforts that protect its cloud-based financial systems, customers, and data.

Canada Full-time Senior Security Engineer
$111k-$148k
AWS CrowdStrike Elasticsearch Python SIEM Splunk
7 hours, 27 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers