Staff Security Engineer - GRC

What will you do?

• Compliance and Standards
• Lead efforts to maintain and enhance compliance with industry standards, including SOC2 Type2, HIPAA, ISO27001, and USDPI.
• Stay current with regulatory changes and ensure our security practices align with evolving requirements.

Policy as Code:

• Drive the implementation of Policy as Code methodologies to automate and enforce security policies throughout the organization.
• Collaborate with cross-functional teams to ensure seamless integration of security policies.

Shift Left Security:

• Advocate and implement Shift Left Security practices to embed security into the early stages of the development lifecycle.
• Work closely with development teams to integrate security into the CI/CD pipeline.

Automation and Tools:

• Utilize automation tools, focusing on Vanta, to streamline security processes and enhance efficiency.
• Evaluate and implement additional tools to support the automation of security tasks and assessments.

ISO Compliance:

• Ensure adherence to ISO standards and best practices, contributing to the continuous improvement of the security posture.
• Conduct regular assessments to validate compliance with ISO requirements.

ARR Improvement:

• Collaborate with stakeholders to enhance Annual Recurring Revenue (ARR) through improved security measures.
• Implement security strategies that align with organizational goals and customer expectations.

Policy Rollout and Compliance:

• Lead the rollout of security policies and procedures across the organization.
• Monitor and enforce compliance with established policies, initiating corrective actions as needed

What makes you a great match for us? 😍

• Proven experience in a Security Engineering role, focusing on policy implementation and compliance.
• Strong expertise in SOC2 Type2, HIPAA, ISO27001, USDPI, and familiarity with Policy as Code.
• Experience with Shift Left Security practices and a commitment to integrating security into the development lifecycle.
• Proficiency in utilizing automation tools, particularly Vanta.
• In-depth knowledge of ISO standards and compliance requirements.
• Excellent communication skills and the ability to collaborate with cross-functional teams.

Working at Atlan 👨‍💻 👩‍💻

• We love open-source. One of our open-source projects was trending worldwide on GitHub.
• Read about our 10 engineering commandments
• The why, what, and who of internships at Atlan
• Engineering demos: How we share knowledge and build better engineering culture
• Going from great people to greater teams: How we think about growth at Atlan