Security Engineer
crewAI
full-time
Posted on:
Location Type: Remote
Location: United States
Visit company websiteExplore more
About the role
- Collect and maintain compliance evidence in our GRC tooling, keeping controls current and audit-ready
- Identify and flag control gaps before they surface as audit findings
- Support evidence requests across active compliance programmes and assist with auditor liaison as needed
- Maintain accurate, current entries in the risk register
- Management and upkeep of our GRC platform
- Create and maintain our Security policies
- Assist with building out platform security processes
- Triage vulnerability findings from our internal tooling
- Create and track remediation tickets in Linear
- Follow up with engineering to drive findings to closure
- Complete Security questionnaires from potential customers
- Monitor and triage alerts from our SIEM; escalate genuine incidents with context and a recommended action, not just raw alerts
- Tune detection rules to reduce noise and improve signal quality
- Support incident response activities as they arise
- Implement Security controls
- Support access reviews and identity governance hygiene
- Contribute to security documentation — policies, runbooks, and playbook updates
- Pick up ad hoc security programme tasks as directed by the Head of Platform Security
Requirements
- 3–5 years in a security engineering, SecOps, or compliance engineering role
- Direct, hands-on experience with a compliance audit cycle — evidence collection, control testing, not just awareness
- Experience with SIEM tooling and alert triage — Wazuh, Splunk, Datadog Security, or equivalent
- Exposure working in AWS environments
- Strong written communication — able to produce a clear, concise risk summary without extensive direction
- Able to work independently across multiple workstreams without losing detail
- Experience across multiple compliance frameworks (SOC 2, ISO 27001, HIPAA, etc)
- Relevant certifications (CISSP, CISM, Security+, OSCP)
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
compliance evidence collectioncontrol testingvulnerability triageincident responsesecurity controls implementationrisk register managementsecurity policy creationremediation ticket trackingalert triagedetection rule tuning
Soft Skills
strong written communicationindependent workdetail orientation
Certifications
CISSPCISMSecurity+OSCP