Workstreet

Manager, GRC Engineering

Workstreet

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇵🇭 Philippines

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

AWSAzureCloudCyber SecurityGoogle Cloud Platform

About the role

  • Develop, write, and maintain policies, procedures, and documentation to support compliance with SOC 2, ISO 27001, and related standards.
  • Lead and manage SOC 2 Type 1 and Type 2 implementation projects across multiple clients.
  • Implement and monitor technical controls in cloud environments (AWS, GCP, Azure) to ensure security best practices.
  • Conduct internal security audits and risk assessments, identifying vulnerabilities and recommending improvements.
  • Collaborate cross-functionally with engineering, operations, and client teams to embed compliance and security processes into day-to-day workflows.
  • Stay current with regulatory developments, cybersecurity trends, and evolving compliance requirements.
  • Operate confidently in compliance platforms such as Drata, Vanta, and SecureFrame.

Requirements

  • Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related discipline.
  • Proven experience in managing compliance programs and working with SOC 2 and ISO 27001 frameworks.
  • Strong knowledge of cloud infrastructure security across AWS, GCP, and Azure.
  • Excellent written and verbal communication skills with strong attention to detail.
  • Self-starter who thrives in a fast-paced, remote-first startup environment.
  • Analytical, organized, and proactive — with a strong sense of ownership and accountability.
  • Nice to Have: Professional certifications such as CISA, CISSP, CISM, or ISO 27001 Lead Implementer/Auditor. Experience in delivering security awareness and compliance training programs. Familiarity with additional frameworks and regulations including GDPR, HIPAA, NIST, or FedRAMP. Hands-on experience using compliance automation tools like Drata, Vanta, SecureFrame, or Tugboat Logic.
Benefits
  • Competitive Compensation: Fair, transparent pay aligned with your experience and impact.
  • Remote-First Flexibility: Work from anywhere in the world while collaborating with a distributed team.
  • Career Growth: Opportunity to grow into advanced roles such as vCISO or senior compliance leadership.
  • Meaningful Work: Partner with innovative, security-driven organizations across industries.
  • Learning Culture: Continuous exposure to evolving frameworks, technologies, and compliance standards.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
SOC 2ISO 27001cloud infrastructure securityrisk assessmentsinternal security auditstechnical controlscompliance programssecurity best practicescompliance training programsvulnerability identification
Soft skills
written communicationverbal communicationattention to detailself-starteranalyticalorganizedproactiveownershipaccountabilitycollaboration
Certifications
CISACISSPCISMISO 27001 Lead ImplementerISO 27001 Auditor
Career TEAM

Senior Software Engineer

Career TEAM
Seniorfull-time🇵🇭 Philippines
Posted: 11 hours agoSource: boards.greenhouse.io
AngularCloudDockerJavaScriptJenkinsjQueryLinuxMongoDBNext.jsNode.jsPHPReact+2 more
Career TEAM

PHP Software Engineer

Career TEAM
Junior · Midfull-time🇵🇭 Philippines
Posted: 11 hours agoSource: boards.greenhouse.io
AngularCloudDockerJavaScriptJenkinsjQueryLinuxMongoDBMySQLNode.jsPHPReact+2 more
DomainTools

Front End Software Engineer

DomainTools
Mid · Seniorfull-time🇵🇭 Philippines
Posted: 1 day agoSource: apply.workable.com
BabelDockerJavaScriptJestKubernetesLaravelMySQLPHPReactReduxSymfonyTypeScript+1 more
Manila Recruitment

Mid to Senior Fullstack Developer, Java, Angular

Manila Recruitment
Seniorfull-time🇵🇭 Philippines
Posted: 2 days agoSource: apply.workable.com
AngularCypressJavaRxJSTypeScript