Security Engineer
Overstory
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇺🇸 United States
Visit company websiteJob Level
JuniorMid-Level
Tech Stack
MacOS
About the role
- Maintain and improve Overstory’s compliance platform in its support of SOC 2, ISO27001 and other frameworks.
- Monitor and track vulnerabilities across infrastructure and applications, coordinating with and assisting engineering teams for timely remediation.
- Provide limited IT support for onboarding, offboarding, access management, and endpoint security.
- Conduct vendor security reviews to manage third-party risk.
- Support SOC 2 and ISO27001 audit compliance, including evidence gathering and control monitoring.
- Assist with customer security questionnaires and maintain a knowledge base of standard responses.
Requirements
- 2+ years of experience in IT support, security engineering, or compliance.
- You have knowledge of (or strong interest in learning) security frameworks like SOC 2 or ISO 27001.
- You are familiar with vulnerability management tools and processes.
- You’ve had hands-on experience troubleshooting IT issues (macOS, Windows, SaaS tools, identity management).
- You have strong written communication skills and attention to detail.
- You are proactive, curious, and eager to learn.
- You thrive in a collaborative remote environment and enjoy working across teams.
Benefits
- We meet up once a year in-person for our unforgettable team gathering event.
- We also offer the option to occasionally meet up for in-person collaboration.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
IT supportsecurity engineeringcompliancevulnerability managementtroubleshootingendpoint securityaccess managementevidence gatheringcontrol monitoring
Soft skills
written communicationattention to detailproactivecuriouseager to learncollaborativeteamwork