Senior Security Engineer
Role summary
Seeking a Compliance & Privacy Engineer for a 6-12 month contract role in Cupertino, CA. This onsite position focuses on data governance, privacy engineering, and regulatory compliance. Responsibilities include maintaining metadata, applying data classification, executing compliance controls across frameworks like PCI DSS and SOX, monitoring tools such as Splunk, and supporting AWS operations. Requires 10+ years of experience in compliance, data governance, or privacy engineering, with familiarity in relevant frameworks and tools. Strong documentation and project management skills are essential.
Job Title: Security Engineer III
Type:
Contract (W-2 Only)
Duration:
6–12 Months
Location:
100% onsite - Cupertino, CA
About the Role
W-2 ONLY, NO C2C.
We are seeking a detail-oriented and proactive
Compliance & Privacy Engineer
to support data governance, privacy engineering, and regulatory compliance initiatives.
This role is highly cross-functional and hands-on, focused on maintaining data integrity, enforcing classification standards, and executing compliance controls across multiple audit frameworks.
Key Responsibilities
Data Governance & Privacy
- Maintain and validate metadata within a centralized data registry
- Apply data classification and tagging (data type, sensitivity, PII, etc.)
- Partner with data owners, engineers, and privacy stakeholders to ensure accurate metadata
- Support migration efforts by mapping metadata to new schemas and standards
- Conduct quality assurance checks for data accuracy and completeness
Compliance & Monitoring
- Execute and track compliance controls across audits and assessments
- Manage recurring controls (e.g., Splunk monitoring, GitHub access reviews, patching validation)
- Monitor governance tools (e.g., Compass, Verdad, Plato) and flag issues
- Track audit/project tickets, ensuring milestones are met and risks escalated
- Oversee vulnerability management and patching cycles
- Track PCI training completion across teams
- Collect and organize audit evidence (PCI, SOX, etc.)
- Maintain documentation in Confluence/Quip and track project progress
- Support AWS-based compliance operations
Required Qualifications
- 10+ years in compliance engineering, data governance, privacy engineering, or similar
- Experience with metadata management and data classification frameworks
- Familiarity with PCI DSS, PCI PIN, SOX, or similar frameworks
- Experience with tools like Splunk, GitHub, or equivalent
- Working knowledge of AWS cloud services
- Strong documentation and project management skills
- Ability to manage multiple workstreams and stakeholders
Preferred Qualifications
- Bachelor's degree in Computer Science, Information Security, or related field
- Experience with GDPR, CCPA, or privacy-by-design principles
- Familiarity with vulnerability management and patching processes
- Relevant certifications (CISA, CISM, CRISC, PCI, CIPM/CIPP, AWS, etc.)
- Experience in large enterprise environments
What We Value
- Attention to Detail:
Precision in metadata and audit work
- Collaboration:
Strong cross-functional partnership skills
- Accountability:
Ownership of timelines and deliverables
- Continuous Improvement:
Process and tooling optimization mindset
Similar roles
Staff Security EngineerPivotal Health · Los Angeles, California, United States · Hybrid- Security EngineerLawrence Harvey · Toronto, Ontario, Canada · Hybrid
- Security EngineerARQ · New York, New York, United States · Remote
Security EngineerAP Professionals · United States · Remote
Senior Security EngineerAbnormal AI · United States · Onsite
