Senior Security Engineer

Job Summary

Taking ownership of the security and compliance program, the full-time Senior Security Engineer will manage SOC 2 and ISO implementations, conduct customer security reviews, and oversee AWS remediation efforts while working remotely in Europe.

Key responsibilities

• Own and maintain SOC 2 compliance, ensuring audits are clean and Drata is effectively managed
• Lead the implementation of ISO 27001 and ISO 42001, driving new initiatives to completion
• Run the customer security questionnaire process, facilitating quick turnaround to unblock revenue

Required qualifications

• Proven experience owning a SOC 2 or ISO audit end-to-end with a zero-exception report
• Working knowledge of AWS, including the ability to action Drata-flagged remediations
• Ability to understand Terraform with AI assistance for infrastructure as code reviews
• Strong written English skills for customer-facing documentation and policies
• High ownership and accountability in managing security operations without direct oversight