👉 Hiring for a remote Compliance + Infosec position?on the 🏆 #1 remote jobs board
|The first health insurance for remote startups|
A fully equipped health insurance that works for all your global employees
Security & Compliance Engineer
Security & Compliance Engineer
👁 1,797 viewed | ✍️ 6 applied (0%)
To reinforce our commitment to customers’ privacy, we are looking to grow our compliance team. If you’re looking for an exciting, high-growth opportunity with an award-winning, cutting-edge company, this could be the job for you.\n\nFor its PaaS solution, https://platform.sh is looking for a Security & Compliance Engineer with a taste for Python and Go, great Linux system understanding, outstanding written English skills, experience working on PCI and/or SOC compliance, and a real hunger for the challenges of building compliant distributed systems.\n\nThis position is unique and well suited for engineers wanting to transition into a heavy security and compliance role. We are targeting developers/sysadmins that like writing documentation. Initially, this high-visibility position will be non-coding while we overcome a bubble of compliance activities. In the future this role may convert over to a SecOps engineering position depending upon the desire of the candidate. \n\nSecurity, privacy and compliance controls are at the heart of what we do as our mission is to simplify the cloud. The job is to transform what is often regarded as red-tape and constraints to a well-oiled machine where everything is automated, where every constraint becomes a feature making the product better.\n\nThe ideal candidate will work USA-friendly hours (and ideally resides in the Americas). \n\nAbout Platform.sh \n\nPlatform.sh is an idea-to-cloud application platform that simplifies cloud infrastructures.\n\nWe give developers the tools they need to experiment, innovate, get rapid feedback and deliver better-quality features with speed and confidence thanks to our unique rapid cloning technology.\n\nPlatform.sh serves thousands of customers worldwide including The Financial Times, Gap, Magento Commerce, Orange, Hachette, Ikea, Stanford University, Harvard University, The British Council, and Lufthansa.\n\nWe want people who are passionate, open, multicultural, friendly, humble and smart to join us and help this fast-growing, award-winning company to revolutionize the tech industry.\n\n\n\n# Responsibilities\n Directly reporting to our Security, Compliance and Data Protection Officer (VP), and in close interaction with our Chief Product Officer, CTO, VP of Infrastructure, and our Engineering and Customer Support teams, you will be responsible for:\n\n- acting as a technical liaison between our compliance department and our product, engineering, and operations staff\n- creating documentation and processes in English to help satisfy compliance requirements\n- evaluating, deploying, and possibly creating, systems and tools that will enhance our support and operations efficiency\n- supporting our data protection officer and compliance team with information requests, pen testing, disaster recovery, and related activities\n- executing our security incident management process\n- working with appropriate teams to deploy and operate security tools and solutions\n- ensuring all systems, security applications, and services in environment are securely configured and managed through operating system appropriate security platforms and tools\n- ensuring optimal operation of all security solutions and tools\n- automating all the above, so we can instead drink margaritas (or non-alcoholic beverages, of course) \n\n# Requirements\nThe ideal candidate must have:\n\n- works USA-friendly hours\n- has excellent written English skills (as in, you could have been a tech writer or commercial author in another life)\n- has proven experience with Linux (preferably Debian-based)\n- knows markdown\n- has experience implementing PCI, SOC, or related\n- can operate largely independently (go take that hill) with management support\n- has proven successful experience in an operations role\n- has had good exposure to cloud services (AWS in particular)\n- understands how an OS works, knows networking, how git works, and the constraints of a distributed system\n- is proficient in Python\n- has an understanding of\n .. Patch and Vulnerability Management process\n .. Principle of Least Privilege\n .. Incident response\n .. Identity and Access Management\n .. IPTABLES\n .. WAFs\n \n\nNice to have :\n\n- resides in the Americas\n- has experience with containerization technologies (LXC/LXD, Docker)\n- has experience with vendor management\n- has experience with Puppet\n- has demonstrated the ability to successfully manage cloud-based infrastructure for a fast growing organization\n- knowledge of Magento Ecommerce, Symfony, Drupal, eZ Platform, or Typo3\n- has experience with Golang\n- relational database skills\n- public speaking experience\n- ability to speak French or German a plus\n- ability to kick ass in Chess or beat Zork without using a map\nCISSP, CISM, Security+, GCED, GICSP, GCIH, SSCP, or CASP Certification or similar will get you moved to the top of the queue\n- CIPM/E, CIPP/E, CIPM/E certification or similar will get you moved to the top of the queue\n- can bravely take on new challenges like a Gryffindor, analyzes problems like Ravenclaw, protects our infrastructure and client data like a Slytherin, and talks with clients like a Hufflepuff.
See more jobs at Platform.sh
# How do you apply? This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.Apply for this Job
👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!