Security Engineer - GRC

Job Summary

To support a growing security program, the full-time remote Security Engineer - GRC will configure and automate Machinify's GRC platform, manage compliance requirements, and streamline evidence collection and control monitoring across the organization.

Key responsibilities

• Configure and continuously improve the Vanta GRC platform, ensuring integration with cloud environments and compliance data sources
• Automate evidence collection workflows for certifications and monitor control health dashboards for compliance management
• Support audit activities and assist with security policies, vendor assessments, and regulatory documentation

Required qualifications

• Bachelor's degree in Information Security, Computer Science, Compliance, Risk Management, or related field, or equivalent work experience
• 3+ years of experience in information security, GRC, or a technical compliance role
• Hands-on experience with a GRC platform such as Vanta or similar
• Working knowledge of SOC 2 Trust Service Criteria and HITRUST CSF control requirements
• Familiarity with cloud environments (AWS or Azure) and experience with API integrations