Senior IT Security Engineer

• About Our Client:

Founded in 2004, the organization operates in the network automation industry. It addresses the challenge of managing complex hybrid multi-cloud connected networks by providing a no-code platform that automates diagnostic troubleshooting, outage prevention, and change management processes. The platform is used by over 2,500 large enterprises and managed services providers worldwide, supporting scalable IT operations.

• About the Opportunity:

The Senior IT Security Engineer will lead ISO 27001 and SOC 2 certification efforts to ensure IT security is aligned and audit-ready for the launch of a new SaaS product. This role involves cross-functional collaboration to define, implement, and enforce security requirements, directly supporting the organization’s SaaS business growth and compliance posture.

• Responsibilities:

• Lead ISO 27001 certification and SOC 2 Type II attestation from gap analysis to successful audit completion

• Build and mature governance, risk, and compliance (GRC) programs, including risk assessments and compliance reporting

• Develop scalable security policies and embed them into operations and product development workflows

• Define and enforce identity and access management (IAM) standards such as SSO, MFA, RBAC, and access reviews

• Implement and manage SIEM platforms for centralized security monitoring and audit evidence

• Oversee vulnerability management including scanning, remediation SLAs, and reporting on risk reduction

• Develop and maintain incident response plans, lead tabletop exercises, and coordinate during security events

• Assess and manage third-party vendor security risks and maintain supplier risk registers

• Design and deliver security awareness training to meet compliance training requirements

• Act as a security subject matter expert, communicating risks and recommendations across teams

• Requirements:

• 8+ years in information security, cybersecurity engineering, or GRC-focused roles

• Hands-on experience leading or supporting ISO 27001 and/or SOC 2 audit and certification processes

• Experience at a B2B SaaS company covering both product and corporate IT security

• Strong knowledge of ISO 27001, SOC 2, and NIST CSF compliance frameworks

• Experience with GRC platforms and security tools including SIEM, vulnerability scanners, IAM solutions, and EDR

• Professional certifications such as CISSP, CISM, or CISA preferred

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience)

• Ability to perform repetitive wrist, hand, and finger motions for computer use

• Capability to remain seated for extended periods

• Pay Range and Compensation Package:

• Estimated base salary range is $130,000 to $155,000 plus bonus

• Actual salary may vary based on market and individual qualifications assessed during the interview process

• Benefits & Perks:

• 401k plan

• Medical and dental coverage

• Comprehensive benefits package alongside cash compensation

Equal Opportunity Statement: Our client is an equal opportunity employer. They celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, or national origin.

Note:

RemoteHunter is not the Employer of Record (EOR) for this role. Our purpose in this opportunity is to connect exceptional candidates with leading employers. We help job seekers worldwide discover roles that match their goals and guide them to complete their full application directly through the hiring company’s career page or ATS.