Senior Information Security Engineer
SardineFull Time
Senior (5 to 8 years), Expert & Leadership (9+ years)
Candidates should possess a Bachelor's degree in Information Security, Computer Science, or a related field, or equivalent experience, with 5-8 years of experience in information security, risk management, or compliance. A strong understanding of security frameworks such as NIST CSF, ISO 27001, CIS Controls, and SOC 2 is required, along with experience in regulatory compliance for HIPAA, GDPR, CCPA, and HITRUST. Hands-on experience with security tools like SIEM, DLP, IAM, and CASB is also necessary.
The Senior Security and Compliance Analyst will drive security initiatives, manage risk assessments, and ensure compliance with regulatory frameworks, supporting both internal and external audits for SOC 2, ISO 27001, HIPAA, HITRUST, GDPR, and CCPA. Responsibilities include developing and enforcing security policies, conducting vendor due diligence, performing control gap analysis, maintaining evidence repositories, tracking compliance gaps, and conducting security awareness training. The role also involves implementing and validating security controls across AWS, Azure, and GCP, monitoring IAM, DLP, and SIEM systems, and managing security workflows and remediation tasks using tools like Drata and Jira.
Prevents wire fraud in real estate transactions
CertifID focuses on preventing wire fraud in real estate transactions by providing a digital platform that ensures secure fund transfers. The platform validates the identities of all parties involved in a transaction and securely shares wiring information, which helps reduce the risk of fraud and streamline operations for real estate professionals. Unlike its competitors, CertifID emphasizes user-friendliness and integration into existing workflows, allowing clients to regain confidence in their transactions. The company's goal is to protect all parties in real estate deals from wire fraud, ensuring that their funds are safe and secure.