Senior Security Engineer at Kroo Bank designing security measures for applications and services. Collaborating with teams to ensure compliance, mitigate vulnerabilities, and enhance cybersecurity protocols.
About the role
- Leading security and compliance at Piedmont Global as a hands-on leader. Managing security vendors, maintaining certifications, and implementing frameworks.
Responsibilities
- Serve as the primary administrator for Vanta.
- You will manage continuous compliance monitoring daily, triage failing tests, automate evidence collection, and ensure our security posture remains audit-ready year-round.
- Own the relationships with third-party security vendors.
- You will hold vendors accountable to SLAs, ensure they deliver high-quality work, and conduct security reviews for new software procurement.
- Serve as the primary point of contact for audits.
- Maintain our ISO 27001 certification and lead the hands-on implementation for future compliance initiatives such as SOC 2 Type II and HITRUST.
- Partner directly with Software Engineering and DevOps to configure cloud security controls in AWS, review Infrastructure as Code, and integrate security tools into the SDLC.
- Manage day-to-day security operations, including vulnerability management, incident response, and access control reviews.
- Act as a subject matter expert internal business units, helping them understand and navigate security requirements in government and healthcare contracts.
- Partner closely with the IT Support team to design and validate secure configuration standards for laptops and mobile devices.
Requirements
- 5+ years of experience in Information Security, GRC, or Security Engineering.
- Hands-on experience managing compliance automation platforms like Vanta is highly preferred.
- Proven experience helping an organization achieve or maintain frameworks like ISO 27001 or SOC 2.
- Strong technical background with exposure to cloud native environments, identity management, and modern SaaS platforms.
- Experience managing external vendors or contractors and holding parties accountable for deliverables and quality.
- You understand that security exists to support the business, not slow it down.
- You are pragmatic and skilled at right-sizing controls that support business needs while maintaining compliance.
- Exposure to Government (FedRAMP, CMMC) or Healthcare (HIPAA) compliance environments.
- You’ve worked at software companies where security was mission critical.
- You know what it looks like when security is a core part of the product offering.
Benefits
- Health
- Dental
- 401k
- Vision
- Pet Insurance
- PTO
- Paid Holidays
- flexible work schedule
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Lead Micro Segmentation Engineer at Wells Fargo, focused on enterprise security architecture. Collaborate with the Principal Engineer to develop secure segmentation strategies and designs.
Senior IT security advisor protecting IT systems and advising on strategic projects at Desjardins. Leading initiatives and representing the unit in senior management committees.
Senior Manager in Cybersecurity focusing on identity and access management at PwC. Leading innovative solutions and building top - performing teams to tackle complex challenges.
Lead security functions across ClearBank’s regulated cloud banking platform. Ensure safety, resilience, and compliance while collaborating with engineering and product teams.
Business Exp Plan & Admin Spec Sr. collaborating with cross - functional teams for PNC's Enterprise Technology & Security Organization. Delivering business planning processes and value - add opportunities while managing projects across physical security.
Cloud Security Engineer focused on protecting Shipt applications and guiding engineering teams in cybersecurity best practices. Designing, developing, and maintaining secure security systems in a hybrid environment.
Construction Site Superintendent overseeing construction projects for Johnson Controls, ensuring timely completion and adherence to project scope, budget, and schedule. Collaborating with teams and managing site activities in the United States.
Apprentice Fire and Security Engineer installing, commissioning, and maintaining electronic protection systems for Johnson Controls. Collaborating in a team - based environment and gaining hands - on experience in fire and security technology.
Senior Security Architect providing security consulting and risk assessment at The Missing Link. Leading initiatives in security architecture and technology risk support within a hybrid work environment.