Senior Information Security Engineer

Comply is seeking a Senior Information Security Engineer with 7–10 years of combined IT and cybersecurity experience to help protect the organization’s systems and data. The ideal candidate has hands-on experience with securing modern IT, networking, and cloud infrastructure, and implementing controls aligned with frameworks such as SOC 2, ISO 27001, regulatory, and privacy requirements (e.g., GDPR, CCPA, EU DORA.) They are skilled in vulnerability management, SIEM administration, incident response, continuous security monitoring, and supporting audit compliance activities. This role will be pivotal in strengthening our security posture and ensuring compliance with industry standards. The individual must be solutions oriented and a self-starter that can work autonomously in a fully remote environment. Responsibilities include designing, implementing, and maintaining security controls and policies to ensure compliance with SOC 2 and ISO 27001 standards, vulnerability management, SIEM administration, incident response, continuous security monitoring, and supporting audit compliance activities.