Sophos

Security Compliance Engineer

Sophos

full-time

Posted on:

Origin:  • 🇨🇦 Canada

Visit company website
AI Apply
Apply

Salary

💰 CA$80,000 - CA$136,000 per year

Job Level

JuniorMid-Level

Tech Stack

AWSCloudCyber SecurityPythonServiceNow

About the role

  • Serve as a technical SME for compliance automation and integration efforts
  • Design and implement automated workflows for evidence collection and control monitoring
  • Expand and optimize the capabilities of the compliance platform through technical configuration and integration
  • Develop and maintain dashboards to visualize compliance posture and key risk indicators
  • Integrate GRC tools with cloud platforms and internal systems using APIs and scripting
  • Collaborate with product, engineering, and security teams to implement technical controls
  • Conduct gap analysis and support implementation of new compliance frameworks
  • Monitor compliance with internal controls and external regulatory requirements (e.g., ISO 27001, NIST, SOC 2, GDPR, HIPAA)
  • Enable continuous control monitoring and establish key risk indicators to support security assurance objectives
  • Stay current with emerging technologies, regulations, and best practices in compliance automation

Requirements

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience)
  • 2+ years of experience in technical GRC, compliance automation, or security engineering roles
  • Knowledge of industry frameworks such as NIST, ISO 27001, COBIT, or CIS Controls
  • Understanding of various technologies used meet compliance objectives
  • Strong analytical, problem-solving, and documentation skills
  • Excellent communication and collaboration skills
  • Certifications such as CISA, CISM, CRISC, CISSP, or Security+ (preferred)
  • Experience with GRC tools (e.g., Archer, ServiceNow GRC, OneTrust) (preferred)
  • Basic programming or scripting skills (e.g., Python, Bash) and familiarity with APIs (preferred)
  • Working knowledge of AWS and cloud security controls (preferred)
  • Applicants must have legal authorization to work in the jurisdiction where the position is posted, without requiring employer sponsorship
Sophos

Security Compliance Engineer

Sophos
Junior · Midfull-time$98k–$163k / year🇺🇸 United States
Posted: 5 hours agoSource: jobs.lever.co
AWSCloudCyber SecurityPythonServiceNow
CrowdStrike

Senior Risk Analyst, Cyber GRC

CrowdStrike
Seniorfull-time$100k–$155k / year🇺🇸 United States
Posted: 21 days agoSource: crowdstrike.wd5.myworkdayjobs.com
CloudCyber SecurityServiceNow
Aviso Wealth

Security GRC Specialist

Aviso Wealth
Mid · Seniorfull-time$105k–$125k / year🇨🇦 Canada
Posted: 14 days agoSource: apply.workable.com
Cyber SecurityServiceNow
CBTS

Security Engineer II

CBTS
Mid · Seniorfull-time🇺🇸 United States
Posted: 17 hours agoSource: ats.rippling.com
AWSCloudCyber SecurityITSMLinuxPerlPythonRubyServiceNowSMTPSplunkTCP/IP+1 more
CGWS - COME GROW WITH US

GRC Analyst

CGWS - COME GROW WITH US
Juniorfull-timeUtah · 🇺🇸 United States
Posted: 11 days agoSource: boards.greenhouse.io
AWSCloudSaltStackServiceNow