Staff Security Engineer - GRC
Posted on Tuesday, February 6, 2024
What will you do?
- Compliance and Standards
- Lead efforts to maintain and enhance compliance with industry standards, including SOC2 Type2, HIPAA, ISO27001, and USDPI.
- Stay current with regulatory changes and ensure our security practices align with evolving requirements.
- Drive the implementation of Policy as Code methodologies to automate and enforce security policies throughout the organization.
- Collaborate with cross-functional teams to ensure seamless integration of security policies.
- Advocate and implement Shift Left Security practices to embed security into the early stages of the development lifecycle.
- Work closely with development teams to integrate security into the CI/CD pipeline.
- Utilize automation tools, focusing on Vanta, to streamline security processes and enhance efficiency.
- Evaluate and implement additional tools to support the automation of security tasks and assessments.
- Ensure adherence to ISO standards and best practices, contributing to the continuous improvement of the security posture.
- Conduct regular assessments to validate compliance with ISO requirements.
- Collaborate with stakeholders to enhance Annual Recurring Revenue (ARR) through improved security measures.
- Implement security strategies that align with organizational goals and customer expectations.
- Lead the rollout of security policies and procedures across the organization.
- Monitor and enforce compliance with established policies, initiating corrective actions as needed
Policy as Code:
Shift Left Security:
Automation and Tools:
Policy Rollout and Compliance:
What makes you a great match for us? 😍
- Proven experience in a Security Engineering role, focusing on policy implementation and compliance.
- Strong expertise in SOC2 Type2, HIPAA, ISO27001, USDPI, and familiarity with Policy as Code.
- Experience with Shift Left Security practices and a commitment to integrating security into the development lifecycle.
- Proficiency in utilizing automation tools, particularly Vanta.
- In-depth knowledge of ISO standards and compliance requirements.
- Excellent communication skills and the ability to collaborate with cross-functional teams.
Working at Atlan 👨💻 👩💻
- We love open-source. One of our open-source projects was trending worldwide on GitHub.
- Read about our 10 engineering commandments
- The why, what, and who of internships at Atlan
- Engineering demos: How we share knowledge and build better engineering culture
- Going from great people to greater teams: How we think about growth at Atlan