CrawlJobs Logo

Information Security Process & Compliance Engineer

coherentsolutions.com Logo

Coherent Solutions

Location Icon

Location:
Belarus

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The Information Security Process & Compliance Engineer is responsible for implementing and maintaining the company Information Security Management System (ISMS) in accordance with the requirements of Information Security best practice and standards (primarily ISO 27001), as well as Client requirements. The InfoSec Engineer supports InfoSec processes, including compliance management, risk management, incident management, audits, measurement, and other related activities. To work effectively, the InfoSec Engineer will develop relationships with and collaborate with other functional IT groups, including business units, network/system administrators, and DevOps teams.

Job Responsibility:

  • Implementing and maintaining the company Information Security Management System (ISMS) in accordance with the requirements of Information Security best practice and standards (primarily ISO 27001), as well as Client requirements
  • Supports InfoSec processes, including compliance management, risk management, incident management, audits, measurement, and other related activities
  • Develop relationships with and collaborate with other functional IT groups, including business units, network/system administrators, and DevOps teams

Requirements:

  • 1+ years in the IT industry, specializing in information security or students of relevant universities
  • Experience with core ISMS processes such as risk management, incident management, conducting audits, metrics, compliance reviews, etc.
  • Basic knowledge of modern InfoSec standards, best practices, frameworks such as the ISO 27001 series, NIST, etc.
  • Basic knowledge of system technologies (AD, DHCP, DNS, SMB, etc.), network technologies (LAN/WAN, TCP/IP and other network protocols)
  • Basic understanding of security technologies and concepts such as SIEM, NGFW, patching, vulnerability assessment, antivirus/EDR, etc.
  • Team player with proven ability to work with people - resolving conflicts, willing to engage in constructive discussion
  • Ability to carry out personal daily and weekly planning
  • Willingness to learn and discover new areas in the field of Information Security
  • Level of English - from B1 (spoken/written)

Nice to have:

  • Experience in developing InfoSec policies and procedures
  • Security certifications such as CISA, CISM, CISSP, CompTIA Security +, etc.
What we offer:
  • Technical and non-technical training for professional and personal growth
  • Internal conferences and meetups to learn from industry experts
  • Support and mentorship from an experienced employee to help you professional grow and development
  • Internal startup incubator
  • Health insurance
  • English courses
  • Sports activities to promote a healthy lifestyle
  • Flexible work options, including remote and hybrid opportunities
  • Referral program for bringing in new talent
  • Work anniversary program and additional vacation days

Additional Information:

Job Posted:
January 05, 2026

Work Type:
Remote work
Icon
Coherent Solutions - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Information Security Process & Compliance Engineer

Senior Information Security Compliance Analyst

We're looking for a technically grounded Senior IS Compliance Analyst who speaks...
Location
Location
United States , Chicago
Salary
Salary:
90000.00 - 130000.00 USD / Year
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience in technical security roles such as Security Operations, Incident Response, Security Analysis, penetration testing, or similar
  • Practical knowledge of security tools, SIEM platforms, vulnerability management, and security monitoring
  • and ability to read and understand security logs, configurations, and technical documentation
  • 6+ years of total experience with significant time in GRC
  • Working knowledge of ISO 27001, NIST frameworks, SOC 1/2, and GDPR requirements
  • Experience developing and implementing information security policies and controls
  • ISO 27001:2022 Lead Implementer and Lead Auditor certification
Job Responsibility
Job Responsibility
  • Lead technical security assessments and integration of acquired companies, mapping their security architectures and controls to our GRC frameworks, identifying gaps, and building remediation roadmaps that address both technical security and compliance alignment
  • Bridge technical security and business stakeholders by evaluating risks through a technical lens, working alongside security engineering teams to translate GRC requirements into practical security measures, and communicating effectively across technical and non-technical audiences
  • Develop and harmonize security policies and control frameworks across acquired entities, ensuring they're both audit ready and operationally sound, while translating between technical security requirements and governance documentation
  • Own customer security questionnaire responses by leveraging your hands-on security background to provide detailed, accurate answers and collaborating with infrastructure, application security, and operations teams to gather technical evidence
  • Drive continuous improvement of our GRC program through technical security enhancements, meaningful security and compliance metrics, and process improvements that increase both control effectiveness and operational efficiency
What we offer
What we offer
  • health and welfare benefits
  • tuition assistance
  • 401K savings and other retirement programs
  • employee assistance programs
Read More
Arrow Right

Information Systems Security Engineer

Barbaricum is seeking an Information Systems Security Engineer (ISSE) providing ...
Location
Location
United States , Warren, MI
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Recommend security designs and develop architectures for combat ground platforms
  • Integrate cybersecurity tasks within systems engineering processes during system acquisition
  • Provide expertise in Cybersecurity and Information Assurance for combat vehicles
  • Implement Cross Domain Solution (CDS) designs as part of national cybersecurity initiatives
  • Conduct cyber threat assessments and recommend solutions for identified deficiencies
  • Support cybersecurity testing and certification, ensuring system compliance
  • Facilitate certification processes with Army and national cybersecurity offices
  • Translate security controls into system requirements and verify threat mitigations
  • Participate in technical meetings and provide cybersecurity input on C5ISR integration
  • Prepare and present cybersecurity-related materials and reports
Job Responsibility
Job Responsibility
  • Recommend security designs and develop architectures for combat ground platforms
  • Integrate cybersecurity tasks within systems engineering processes during system acquisition
  • Provide expertise in Cybersecurity and Information Assurance for combat vehicles
  • Implement Cross Domain Solution (CDS) designs as part of national cybersecurity initiatives
  • Conduct cyber threat assessments and recommend solutions for identified deficiencies
  • Support cybersecurity testing and certification, ensuring system compliance
  • Facilitate certification processes with Army and national cybersecurity offices
  • Translate security controls into system requirements and verify threat mitigations
  • Participate in technical meetings and provide cybersecurity input on C5ISR integration
  • Prepare and present cybersecurity-related materials and reports
Read More
Arrow Right

Senior Information Security Engineer

Serve as a technical leader in our Security team reporting to our Information Se...
Location
Location
United States , Boston
Salary
Salary:
150000.00 - 190000.00 USD / Year
whoop.com Logo
Whoop
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, or a related technical field and/or advanced certifications (CISSP, CISM, AWS Security Specialty, SANS, etc.)
  • 8+ years of hands-on experience in Information Security, IT Security, or a related role, including at least 2 years in a senior or lead capacity
  • Proven track record implementing and managing advanced security technologies (e.g., CASB, CNAPP, CSPM, SIEM, SOAR, DLP, SWG)
  • Experience securing AI/ML systems or APIs, including governance of third-party AI integrations and organizational use of AI tools
  • Strong understanding of modern cloud security architecture (AWS, Azure, GCP) and experience performing threat modeling and risk assessments on cloud-based systems
  • Hands-on experience with application security tooling (SAST, SCA, DAST) and embedding secure development practices
  • Demonstrated leadership in security incident response, investigations, and root cause analysis
  • Effective communicator with the ability to influence stakeholders and explain security concepts to technical and non-technical audiences
  • Strong project management skills and the ability to drive initiatives to completion in a fast-paced environment
  • Experience mentoring engineers and setting operational standards
Job Responsibility
Job Responsibility
  • Implement and enhance security controls by leading the deployment, integration, and tuning of solutions such as CNAPP, SIEM, CASB, EDR, DLP, and MDM to maximize effectiveness
  • Support security design decisions by providing subject matter expertise on cloud and SaaS security best practices while influencing architecture led by the Security Architect role
  • Lead incident response and investigations by guiding containment, remediation, root cause analysis, and post-incident improvements
  • Strengthen application security by overseeing secure development practices and managing SAST, SCA, and DAST tooling
  • Advance identity and access management by supporting IAM policy enforcement, SSO, MFA, SCIM, RBAC, and user lifecycle governance
  • Secure AI systems and integrations by assessing and protecting embedded APIs and organizational AI tool usage to ensure resilience, privacy, and compliance
  • Collaborate cross-functionally by working with Engineering, IT, and GRC teams to embed security into systems and workflows
  • Mentor and influence by providing technical guidance, reviewing work, and promoting security-first thinking across the organization
  • Stay ahead of threats and regulations by tracking emerging risks, technologies, and compliance requirements to inform forward-looking strategies
  • Participate in and help improve the on-call rotation by providing guidance, escalation support, and driving improvements in response processes
What we offer
What we offer
  • competitive base salaries
  • meaningful equity
  • generous equity package
  • Fulltime
Read More
Arrow Right

Information Security Engineer

Cogoport is on a mission to bridge the $3.4 trillion Trade Knowledge and Executi...
Location
Location
India , Mumbai; Bangalore
Salary
Salary:
Not provided
https://cogoport.com/ Logo
Cogoport
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience in information security, cybersecurity, or security engineering
  • Strong knowledge of application security, cloud security (AWS/GCP/Azure), and network security
  • Experience with SIEM solutions, log analysis, and intrusion detection/prevention systems
  • Hands-on experience with secure coding practices in programming languages like Java, Python, or Go
  • Proficiency in security testing tools such as Burp Suite, Metasploit, OWASP ZAP, Nessus, and Wireshark
  • Understanding of encryption, authentication protocols, and PKI
  • Experience in DevSecOps and securing CI/CD pipelines
  • Strong knowledge of firewalls, VPNs, IDS/IPS, and endpoint security solutions
  • Hands-on experience with security automation and scripting
  • Excellent problem-solving skills and the ability to work in a fast-paced environment
Job Responsibility
Job Responsibility
  • Design, implement, and maintain robust security controls for applications, networks, and cloud infrastructure
  • Conduct vulnerability assessments, penetration testing, and risk analysis to identify security gaps
  • Develop and enforce secure coding practices for software development teams
  • Implement IAM (Identity & Access Management) policies and security monitoring solutions
  • Ensure compliance with security frameworks such as ISO 27001, SOC 2, GDPR, and NIST
  • Work closely with DevOps teams to integrate security into CI/CD pipelines
  • Monitor, analyze, and respond to security incidents and threats
  • Conduct threat modeling and security awareness training for engineering teams
  • Automate security processes using scripting (Python, Bash, etc.)
  • Collaborate with cross-functional teams to ensure secure architecture design
What we offer
What we offer
  • Entrepreneurial culture
  • Working with brightest minds in the industry
  • Driving digital transformation in logistics
  • Career growth
  • Fulltime
Read More
Arrow Right

Information Systems Security Engineer

Hoplite Solutions is seeking Information Systems Security Engineers (ISSE) to jo...
Location
Location
United States , Fort Meade
Salary
Salary:
185000.00 - 225000.00 USD / Year
hoplitesolutions.com Logo
Hoplite Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI with Polygraph
  • Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required
  • 12 years' experience as an ISSE on programs and contracts of similar scope, type, and complexity to include recent experience within the 5 years with Cybersecurity principles and technology, including access/control, authorization, identification and authentication, PKI, network and enterprise security architecture
  • DoD 8570 compliance
  • Both Information Systems Security Engineering Professional (ISSEP) and CISSP Certifications are required
Job Responsibility
Job Responsibility
  • Perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Cybersecurity standards and regulations, and recommend mitigation strategies
  • Validate and verifies system security requirements definitions and analysis and establishes system security designs
  • Design, develop, implement and/or integrate Cybersecurity and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements
  • Review certification and accreditation (C&A) documentation, provide feedback on completeness and compliance of its content
  • Support security authorization activities in compliance with CSS Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed CSS business processes for security engineering
  • Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environments
  • Apply knowledge of Cybersecurity policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments
  • Interact with the customer and other project team members
  • Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of Cybersecurity architectures, systems, or system components
  • Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures
What we offer
What we offer
  • 7% employer 401k contribution
  • fully paid healthcare for our employees
  • outstanding training benefits
  • company funded life insurance and short-term disability insurance
  • Fulltime
Read More
Arrow Right

Information Systems Security Engineer

STR has an exciting opportunity for a well-rounded cybersecurity professional to...
Location
Location
United States , Woburn
Salary
Salary:
136000.00 - 170000.00 USD / Year
str.us Logo
STR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active Top Secret security clearance with the ability to obtain SAP and SCI access (U.S. citizenship required)
  • 3-5 years of technical (hands-on) experience in Information Assurance/Cyber Engineering, including requirements development and implementation
  • DoD 8570 IAM Level III certification (CISA, CISM, CISSP, etc.) or the ability to obtain within 6 months of hire
  • Knowledge of the DCSA Authorization and Assessment Process Manual (DAAPM) and the Joint Special Access Implementation Guide (JSIG)
  • Configuration, certification, and auditing/analysis of Windows/Linux operating systems and system virtualization in peer-to-peer, LAN & WAN networks
  • Managing and implementing DISA STIGs and benchmarks in various operating systems (Windows, RHEL, Ubuntu)
  • Using IA vulnerability/compliance scanning tools (e.g., NMap, ACAS, Nessus, Security Content Automation Protocol (SCAP))
  • Maintaining/managing Security Incident and Event Management (SIEM) and centralized auditing tools (e.g., Splunk, PowerStrux)
  • Familiarity with Microsoft Deployment Toolkit (MDT)
  • Supporting the hardening of new builds of Information Systems (IS) and ensuring full functionality before deployment
Job Responsibility
Job Responsibility
  • Conduct both vulnerability and compliance scans of Information Systems
  • Support the development of Risk Management Framework (RMF) documentation and control validation testing for Authority to Operate (ATO) accreditations
  • Develop cybersecurity requirements, design, and architecture for current and emerging program needs
  • Implement Information Assurance and Information Security protections and requirements in program development and execution environments
  • Apply required security controls to networking devices, databases, operating systems, and hardware/software components
  • Assist ISSMs and ISSOs in monitoring and resolving Plan of Action and Milestones (POA&M) to mitigate system vulnerabilities
  • Conduct reviews and technical inspections to identify and mitigate potential security weaknesses, ensuring all security features are implemented and functional
  • Support the completion of Continuous Monitoring requirements in accordance with RMF and NIST SP800-53 standards
  • Perform other tasks as assigned by the manager
  • Fulltime
Read More
Arrow Right

Engineering Process Administrator

Silvus is seeking an Engineering Process Administrator who will report to the Vi...
Location
Location
United States , Los Angeles
Salary
Salary:
75000.00 - 115000.00 USD / Year
silvustechnologies.com Logo
Silvus Technologies (International)
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree plus 4 years of experience in engineering process management or implementation work
  • OR High School diploma (or GED) and 8 years of experience in engineering process management or implementation work
  • Demonstrated effective reporting and presentation skills
  • Familiarity with contractual requirements on engineering projects, particularly documentation and deliverables
  • Working knowledge of Microsoft Office tools (Word, PowerPoint, Excel), PDF tools, and equivalent Google tools
  • Current active clearance at SECRET level
  • OR the ability to obtain a SECRET US Government security clearance within 12 months of the start date
  • Must be a U.S. Citizen due to clients under U.S. government contracts
  • Employment is contingent upon the successful clearance of a background check
Job Responsibility
Job Responsibility
  • Work with the Human Resources (HR), Legal, Finance, and Information Technology (IT) teams to ensure that engineering processes meet requirements
  • Draft and regularly update engineering process guidelines
  • Maintain up to date physical and digital access controls in collaboration with the IT department
  • Collaborate with other process managers responsible for CMMC, ISO, and other compliance services
  • Compile monthly summary of schedules, budget, and other relevant status for Engineering and R&D departments
  • Oversee the delivery of contractual requirements on funded engineering/R&D projects
  • Oversee steps towards obtaining or maintaining various certifications with associated documentation
  • Oversee the implementation and enforcement of documentation within the Engineering and R&D departments
  • Manage the labeling and distribution approval process of controlled/uncontrolled documents and other materials
  • Fulltime
Read More
Arrow Right

Information Security Risk Lead

The Information Security Risk Lead is responsible for driving efforts to support...
Location
Location
Thailand , Bangkok
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s/Bachelor’s/University degree or equivalent experience in Computer Science, Cyber Security, Computer/Information Engineering, Information Technology or a related discipline is preferred
  • One or more industry-recognized cybersecurity-related certifications such as CISSP, CISA, CISM, CRISC, ISO 27001
  • 6 - 10 years or above of relevant experience in Cyber Security Management / Cyber Security Operations / Technology Risk Management / Third-party Risk Management or IT Audit, preferably with experience gained from banking / finance services industry / consultancy / control compliance or legal disciplines
  • Experience in assessing cyber regulatory compliance from BOT, SEC etc.
  • Strong understanding of International Standards/Frameworks such as: NIST, ISO 27001series, COBIT, CIS, GDPR, DORA, etc.
  • Proficient in interpreting and applying policies, standards and procedures
  • Excellent project management and organizational skills (PMP, PRINCE2, etc. is a plus)
  • Strong consultation, reporting writing and communication skills with highly proficiency in both spoken and written English and Thai
  • Thai language fluency is a must.
Job Responsibility
Job Responsibility
  • Manage and validate deliverables of all Information Security (IS) programs, ensuring closure per agreed timelines and goals
  • Engagement with local regulators BOT, SEC, TB-CERT, Thai-CERT, MDES, NCSA, etc. on IS related matters
  • Manage regulatory exams and internal & external audits
  • Work closely with Global & Regional Information Security teams to improve processes and reduce risk, and support the IS regulatory related activities for Thailand
  • Manage internal/external resources to organize cyber-attack simulations exercise, coordinating and overseeing vulnerability, mitigation/remediation/correction action plans, and issues management process
  • Accountable for delivery of the associated remediation from regulatory assessments
  • Proficiency in preparing periodic updates / reports / presentation deck for both internal stakeholders and regulators
  • Provide timely and appropriate updates to regional and global stakeholders
  • escalate issues in a timely manner to senior management
  • Build and develop partnerships with business, IT, risk, compliance, IS, senior management staff and stakeholders
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy