Security & Compliance Engineer
$100,000 - $140,000/Yr
Interex Group - Irvine, CA
posted 2 months ago
Full-time - Mid Level
Irvine, CA
Administrative and Support Services
About the position
The Security & Compliance Engineer role focuses on ensuring the security of cloud environments across multiple platforms, including AWS, Azure, and OCI. The position involves designing and implementing security solutions, monitoring for vulnerabilities, and enforcing compliance with industry regulations. The role requires effective communication with both technical and non-technical stakeholders to maintain a strong security posture and manage security incidents.
Responsibilities
- Design, implement, and manage cloud security solutions and processes across multi-cloud (AWS, Azure, OCI) and hybrid cloud platforms.
- Continuously monitor and assess cloud infrastructure for vulnerabilities, misconfigurations, and suspicious activity.
- Implement and maintain cloud security tools for threat detection, incident response, and access control.
- Develop and enforce cloud security policies and procedures aligned with industry best practices and regulatory requirements.
- Collaborate with development, engineering, and operations teams to integrate security best practices into the DevSecOps lifecycle (CI/CD).
- Lead and participate in cloud security audits and penetration testing to ensure compliance and identify areas for improvement.
- Manage and respond to security incidents according to established procedures.
- Stay up to date on emerging cloud security threats, vulnerabilities, and compliance regulations.
- Communicate effectively with technical and non-technical stakeholders regarding cloud security posture and compliance requirements.
- Work with external auditors to ensure successful completion of security and compliance audits.
Requirements
- Bachelor's degree or higher in Computer Science, Information Security, or a related technical field.
- Minimum of 5 years of experience in cloud security and/or compliance engineering role.
- Proven experience in implementing and maintaining security and compliance programs.
- Working knowledge of relevant security compliance regulations (e.g., ISO 27001, SOC 2, PCI DSS, GDPR).
- Strong understanding of security best practices, including penetration testing methodologies and risk management.
- Experience working with security tools and technologies (e.g., vulnerability scanners, SIEM, IDS/IPS).
- Outstanding communication, collaboration, and problem-solving skills.
- Ability to work independently and manage multiple priorities.
Nice-to-haves
- Experience in cloud security on AWS, Azure, OCI.
- Experience operating and maintaining Palo Alto Networks VM-Series NGFW.
- Experience in security policy development and management.
Benefits
- Relocation services available
- Sponsorship available if needed
- Bonus opportunities based on experience level
