CrawlJobs Logo
Coherent Solutions Logo Coherent Solutions · IT - Administration

Information Security Process & Compliance Engineer

Belarus · Job Posted January 05, 2026
Apply Position
Job Link Share

Job Description

The Information Security Process & Compliance Engineer is responsible for implementing and maintaining the company Information Security Management System (ISMS) in accordance with the requirements of Information Security best practice and standards (primarily ISO 27001), as well as Client requirements. The InfoSec Engineer supports InfoSec processes, including compliance management, risk management, incident management, audits, measurement, and other related activities. To work effectively, the InfoSec Engineer will develop relationships with and collaborate with other functional IT groups, including business units, network/system administrators, and DevOps teams.

Job Responsibility

  • Implementing and maintaining the company Information Security Management System (ISMS) in accordance with the requirements of Information Security best practice and standards (primarily ISO 27001), as well as Client requirements
  • Supports InfoSec processes, including compliance management, risk management, incident management, audits, measurement, and other related activities
  • Develop relationships with and collaborate with other functional IT groups, including business units, network/system administrators, and DevOps teams

Requirements

  • 1+ years in the IT industry, specializing in information security or students of relevant universities
  • Experience with core ISMS processes such as risk management, incident management, conducting audits, metrics, compliance reviews, etc.
  • Basic knowledge of modern InfoSec standards, best practices, frameworks such as the ISO 27001 series, NIST, etc.
  • Basic knowledge of system technologies (AD, DHCP, DNS, SMB, etc.), network technologies (LAN/WAN, TCP/IP and other network protocols)
  • Basic understanding of security technologies and concepts such as SIEM, NGFW, patching, vulnerability assessment, antivirus/EDR, etc.
  • Team player with proven ability to work with people - resolving conflicts, willing to engage in constructive discussion
  • Ability to carry out personal daily and weekly planning
  • Willingness to learn and discover new areas in the field of Information Security
  • Level of English - from B1 (spoken/written)

Nice to have

  • Experience in developing InfoSec policies and procedures
  • Security certifications such as CISA, CISM, CISSP, CompTIA Security +, etc.

What we offer

  • Technical and non-technical training for professional and personal growth
  • Internal conferences and meetups to learn from industry experts
  • Support and mentorship from an experienced employee to help you professional grow and development
  • Internal startup incubator
  • Health insurance
  • English courses
  • Sports activities to promote a healthy lifestyle
  • Flexible work options, including remote and hybrid opportunities
  • Referral program for bringing in new talent
  • Work anniversary program and additional vacation days
Coherent Solutions - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Information Security Process & Compliance Engineer

8 matching positions

Information System Security Engineer (ISSE) / Cybersecurity Systems Engineer (TS Cleared)

We are currently seeking a Information System Security Engineer (ISSE) / Cyberse...
Location
Location
United States , Quantico
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in related fields (e.g. Computer Management Information Systems, Computer Science) or six (6) years applicable experience to include four (4) years of specialized experience
  • Minimum 5 years supporting Information Security roles/responsibilities as listed above
  • One or more of the following certications: ISC2 CGRC, ISC2 SSCP, CompTIA CySA+, CompTIA Security+ CE, and/or ISC2 Certified in Cybersecurity
  • Active Top Secret security clearance
Job Responsibility
Job Responsibility
  • Manage, monitor, and maintain IT infrastructure to ensure system uptime and optimal performance
  • Maintain performance to ensure that the throughput of the system does not degrade unexpectedly as the volume of work increases
  • Perform regular system backups, recovery procedures, and data management tasks
  • Provide technical support and assistance to users
  • Develop and maintain system documentation, including configurations, procedures, and troubleshooting guides
  • Plan and implement software updates, hardware upgrades, and migrations with minimal disruption to operations
  • Provide technical support for systems and applications
  • Monitor and optimize the performance of the infrastructure
  • Develop and implement backup and recovery strategies
  • Ensure compliance with security and regulatory standards
  • Fulltime
Read More
Arrow Right
New

Lead Information Security Engineer - Cryptographic Products and Services

Wells Fargo is seeking a motivated Lead Information Security Engineer to join an...
Location
Location
United States , Irving; Charlotte; Columbus
Salary
Salary:
119000.00 - 187000.00 USD / Year
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 21, 2026
Flip Icon
Requirements
Requirements
  • 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 4+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc.
  • 4+ years of Linux and Windows server experience.
Job Responsibility
Job Responsibility
  • Drive design, deployment and automation strategies for encryption, tokenization and key management products and services including Hardware Security Modules, security appliances and security applications deploying in physical, virtual, and containerized environments
  • Provide technical guidance and oversight to teams and team members responsible for product delivery and operational maintenance
  • Develop and maintain documentation including design and build guides, deployment strategies, automation guides and operational processes
  • Participate in research, analysis and evaluation of new cryptographic products and services
  • Participate in Proof of Concept (POC) testing and demonstrations for new cryptographic products and services
  • Support company driven audits, gather evidence of compliance to company policies, and drive product enhancements, when needed, to remediate findings
  • Conduct technical investigation of incidents to identify causes and recommend future mitigation strategies
  • Collaborate across Wells Fargo teams, including compliance, security architecture and security evaluation teams to ensure cryptographic products are compliant to company policies
  • Work with vendors to understand the technology vendor's roadmap, help to influence that roadmap, and ensure requests for technology/product enhancements are meeting the needs of Wells Fargo
  • Work with partner engineering teams on identification and remediation of security vulnerabilities and may also conduct risk assessments of infrastructure to ensure compliance with corporate security policies and adherence to best practices
What we offer
What we offer
  • Health benefits
  • 401(k) Plan
  • Paid time off
  • Disability benefits
  • Life insurance, critical illness insurance, and accident insurance
  • Parental leave
  • Critical caregiving leave
  • Discounts and savings
  • Commuter benefits
  • Tuition reimbursement
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer - CTFC

Wells Fargo is seeking a Senior Information Security Engineer.
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 29, 2026
Flip Icon
Requirements
Requirements
  • 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 4+ years of hands-on experience in Cyber Security, with a strong focus on Security Operations
  • 4+ years of experience working with enterprise SIEM platforms, preferably Splunk, including use case development, log analysis, and alert tuning
  • Solid understanding of cybersecurity frameworks and methodologies, including the Cyber Kill Chain, MITRE ATT&CK, and NIST frameworks
  • Proven experience in Security Incident Response, including detection, investigation, containment, mitigation, and remediation processes
  • Advanced knowledge of networking concepts, protocols, and security standards, along with deep understanding of Linux/Unix and Windows OS internals and system configurations
  • Strong analytical and problem-solving skills, with the ability to correlate events and identify potential threats across diverse environments
  • Bachelor’s and/or Master’s degree in computer science, Information Systems, or a related field
  • Industry-recognized certifications such as CHFI, OSCP, CEH, or equivalent are highly preferred
  • Experience with SOAR platforms (e.g., XSOAR), threat intelligence integration, and automation/orchestration is an added advantage
Job Responsibility
Job Responsibility
  • Lead or participate in computer security incident response activities for moderately complex events
  • Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
  • Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
  • Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
  • Review and correlate security logs
  • Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
  • Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
  • Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
  • Monitor, triage, and investigate security alerts, ensuring timely and effective case handling and resolution
  • Conduct detailed security investigations, performing analysis, correlation, and validation of potential threats
  • Fulltime
Read More
Arrow Right

Senior IT Security Compliance Engineer

The Senior IT Security Compliance Engineer is responsible for developing, mainta...
Location
Location
Egypt , Cairo
Salary
Salary:
Not provided
arrow.com Logo
Arrow Electronics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong knowledge of information security principles, risk management, and compliance frameworks, with a solid understanding of ISO 27001 requirements and controls
  • Hands-on experience supporting audits and compliance programs for frameworks such as ISO 27001, SOC 2, CMMC, NIST, or similar
  • GRC-related certification (e.g., CISSP, CISA, CRISC, ISO 27001 Lead Implementer/Lead Auditor) is preferred
  • Experience working in SaaS or technology-driven environments is highly desirable
  • Familiarity with cloud computing platforms and cloud security principles
  • Excellent written and verbal communication skills, with proven ability to produce clear, high-quality security documentation and reports
  • Minimum of 5 years of professional experience in cybersecurity, information security, or compliance-related roles
  • Bachelor’s degree in Computer Engineering, Computer Science, Information Security, or a related field
Job Responsibility
Job Responsibility
  • Develop, review, and maintain IT security policies, standards, procedures, and guidelines in alignment with industry best practices and regulatory requirements
  • Lead and coordinate compliance initiatives for security frameworks and standards, including but not limited to ISO 27001, SOC 2, CMMC, NIST, and internal security assessments
  • Manage audit readiness activities, including documentation preparation, evidence collection, stakeholder coordination, and remediation tracking for internal and external audits
  • Respond to customer and partner security questionnaires, ensuring accurate, consistent, and timely responses
  • Conduct periodic security and risk assessments to evaluate the effectiveness of security controls and identify improvement opportunities
  • Track, manage, and follow up on vulnerability remediation efforts in collaboration with IT, engineering, and operations teams
  • Prepare and deliver security metrics, compliance reports, and executive-level summaries
  • Provide security awareness, training, and education to employees to promote a strong security culture across the organization
  • Support continuous improvement of governance, risk, and compliance (GRC) processes and tooling
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer

Mastercard is seeking candidates to join the Data Protection team with a focus o...
Location
Location
Ireland , Dublin 18
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
October 10, 2026
Flip Icon
Requirements
Requirements
  • Experience operating or designing security governance or enforcement programs in large, complex environments
  • Strong understanding of information security, data protection, and risk management, particularly as applied to SaaS and third party technologies
  • Demonstrated ability to make and defend risk based decisions that balance security, policy, and business impact
  • Experience working cross functionally with Legal, Privacy, Compliance, and Technology teams
  • Ability to clearly document decisions and articulate technical and business impact to diverse audiences
  • Strong verbal and written communication skills, including executive ready summaries
  • Demonstrated technical competency in security engineering through hands on experience or relevant qualifications
  • Design and implement data models and analytics frameworks to support Shadow IT blocking decisions, escalation tracking, and governance reporting
  • Develop automated processes and dashboards to provide visibility into blocking activity, unblock requests, escalation outcomes, and trend analysis
  • Evaluate and integrate data sources (e.g., SaaS discovery tools, cloud telemetry, intake systems) to ensure accurate and timely Shadow IT decisioning data
Job Responsibility
Job Responsibility
  • Contribute to the execution of the Shadow IT and Data Protection roadmap, with primary ownership of enforcement, escalation, and governance processes
  • Develop and maintain a Shadow IT blocking strategy framework for unapproved applications, including: Blocking criteria and decision thresholds, Risk scoring aligned to data sensitivity, access, and exposure, Defined escalation paths for exceptions and high impact cases
  • Document all blocking decisions with clear business justification, technical impact assessment, and alignment to security and data protection policy
  • Establish and maintain communication protocols to notify stakeholders of application blocks, including timelines, approved alternatives, and available support resources
  • Manage unblock requests and escalations and exception processing, coordinating with Security Operations and business stakeholders to evaluate risk and determine outcomes
  • Partner with application, platform, and business teams to define paths to compliance, including remediation, onboarding to approved services, or decommissioning
  • Track and report Shadow IT metrics, including blocking trends, unblock volumes, escalation outcomes, incidents, and stakeholder satisfaction
  • Work side by side with other team members to build and mature the Shadow IT governance process, while taking lead ownership of defined processes such as: Escalations and exception handling, Cross functional coordination, Technical impact assessment, Policy alignment and enforcement
  • Build and operationalize a next generation Shadow IT governance model that provides transparency, consistency, and defensibility across the enterprise
  • Develop a way to automatically tag approved apps
  • Fulltime
Read More
Arrow Right

Information Security Engineer

The Information Security Engineer is responsible for designing, implementing, an...
Location
Location
Türkiye , Istanbul
Salary
Salary:
Not provided
5CA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience in information security engineering, cloud security, or infrastructure security roles
  • Hands-on experience implementing security controls in Azure and Microsoft 365 ecosystems
  • Experience with Defender for Endpoint, Defender for Cloud, Defender for Identity, and Sentinel
  • Experience with secure cloud networking, identity governance, and Zero Trust principles
  • Experience supporting complex incident response investigations
  • Familiarity with ITIL processes (incident, change, problem)
  • Understanding of security frameworks (i.e. ISO 27001:2022) and data privacy regulations (i.e. GDPR)
  • Azure security architecture, governance, and configuration
  • Advanced Entra ID identity governance and access control
  • Endpoint and cloud threat detection (Defender suite)
Job Responsibility
Job Responsibility
  • Design, implement, and maintain security controls across Azure, Entra ID, Microsoft 365, network, and endpoint environments
  • Develop and maintain secure configurations, baselines, and policy frameworks using Azure Policy, Intune compliance, and conditional access
  • Integrate and optimize security tools including Microsoft Defender suite, SIEM/SOAR platforms, cloud security posture management, and identity governance systems
  • Support the design and review of cloud architectures, including secure VNet design, firewalls/NSGs, Private Link, and hybrid connectivity
  • Implement key cloud security protections such as encryption, identity governance, privileged access control, and secure automation frameworks
  • Partner with Cloud Engineers to codify security controls using Infrastructure-as-Code (IaC)
  • Implement and manage identity governance: MFA, Conditional Access, PIM, RBAC, role lifecycle automation
  • Review, assess, and refine authentication and access control configurations
  • Conduct periodic privileged access audits and align identity practices with Zero Trust principles
  • Tune and enhance SIEM/Sentinel detections, automation, and response playbooks
What we offer
What we offer
  • Flexibility to work 100% remotely with no wasted commute time and travel costs
  • Position at a fast-paced international company with ambitious gaming, e-commerce, and tech clients
  • Diverse and inclusive culture with people from 80+ countries, speaking 25+ languages
  • Innovative digital tools, and continuous opportunities for learning and development
  • Access to Udemy Business for learning and development
  • Fun employee engagement activities and participation in 5CA employee-lead communities such as 5CA Connect, Pride, 5CA Gamers, Women of 5CA
  • Fulltime
Read More
Arrow Right

Information Security Engineer

The Information Security Engineer is responsible for designing, implementing, an...
Location
Location
Poland
Salary
Salary:
Not provided
5CA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience in information security engineering, cloud security, or infrastructure security roles
  • Hands-on experience implementing security controls in Azure and Microsoft 365 ecosystems
  • Experience with Defender for Endpoint, Defender for Cloud, Defender for Identity, and Sentinel
  • Experience with secure cloud networking, identity governance, and Zero Trust principles
  • Experience supporting complex incident response investigations
  • Familiarity with ITIL processes (incident, change, problem)
  • Understanding of security frameworks (i.e. ISO 27001:2022) and data privacy regulations (i.e. GDPR)
  • Azure security architecture, governance, and configuration
  • Advanced Entra ID identity governance and access control
  • Endpoint and cloud threat detection (Defender suite)
Job Responsibility
Job Responsibility
  • Security Engineering & Control Implementation: Design, implement, and maintain security controls across Azure, Entra ID, Microsoft 365, network, and endpoint environments
  • Cloud & Infrastructure Security Architecture: Support the design and review of cloud architectures
  • Identity & Access Security (Entra ID & M365): Implement and manage identity governance
  • Security Monitoring & Threat Engineering: Tune and enhance SIEM/Sentinel detections, automation, and response playbooks
  • Incident Response & Digital Forensics Support: Serve as technical escalation during high-severity incidents
  • Vulnerability & Risk Management: Support vulnerability assessment programs across cloud, endpoints, and SaaS platforms
  • Compliance, Governance & ISO 27001 Alignment: Implement and maintain controls aligned with ISO 27001:2022 requirements
  • Automation, Scripting & Continuous Improvement: Build and maintain automation using PowerShell, Azure CLI, Logic Apps, and Functions
  • Collaboration & Knowledge Leadership: Work closely with Cloud, IT Support, Development, and Compliance teams
  • Ticket Resolution & Request Fulfilment: Respond to and resolve incidents and requests within the agreed SLAs
What we offer
What we offer
  • The flexibility to work 100% remotely with no wasted commute time and travel costs
  • A position at a fast-paced international company with ambitious gaming, e-commerce, and tech clients
  • A diverse and inclusive culture with people from 80+ countries, speaking 25+ languages
  • Innovative digital tools, and continuous opportunities for learning and development
  • Access to Udemy Business for learning and development
  • Fun employee engagement activities and participation in 5CA employee-lead communities
Read More
Arrow Right

Information Security Engineer

The Information Security Engineer is responsible for designing, implementing, an...
Location
Location
South Africa
Salary
Salary:
Not provided
5CA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience in information security engineering, cloud security, or infrastructure security roles
  • Hands-on experience implementing security controls in Azure and Microsoft 365 ecosystems
  • Experience with Defender for Endpoint, Defender for Cloud, Defender for Identity, and Sentinel
  • Experience with secure cloud networking, identity governance, and Zero Trust principles
  • Experience supporting complex incident response investigations
  • Familiarity with ITIL processes (incident, change, problem)
  • Understanding of security frameworks (i.e. ISO 27001:2022) and data privacy regulations (i.e. GDPR)
  • Azure security architecture, governance, and configuration
  • Advanced Entra ID identity governance and access control
  • Endpoint and cloud threat detection (Defender suite)
Job Responsibility
Job Responsibility
  • Design, implement, and maintain security controls across Azure, Entra ID, Microsoft 365, network, and endpoint environments
  • Develop and maintain secure configurations, baselines, and policy frameworks using Azure Policy, Intune compliance, and conditional access
  • Integrate and optimize security tools including Microsoft Defender suite, SIEM/SOAR platforms, cloud security posture management, and identity governance systems
  • Support the design and review of cloud architectures, including secure VNet design, firewalls/NSGs, Private Link, and hybrid connectivity
  • Implement key cloud security protections such as encryption, identity governance, privileged access control, and secure automation frameworks
  • Partner with Cloud Engineers to codify security controls using Infrastructure-as-Code (IaC)
  • Implement and manage identity governance: MFA, Conditional Access, PIM, RBAC, role lifecycle automation
  • Review, assess, and refine authentication and access control configurations
  • Conduct periodic privileged access audits and align identity practices with Zero Trust principles
  • Tune and enhance SIEM/Sentinel detections, automation, and response playbooks
What we offer
What we offer
  • The flexibility to work 100% remotely with no wasted commute time and travel costs
  • A position at a fast-paced international company with ambitious gaming, e-commerce, and tech clients
  • A diverse and inclusive culture with people from 80+ countries, speaking 25+ languages
  • Innovative digital tools, and continuous opportunities for learning and development
  • Access to Udemy Business for learning and development
  • Fun employee engagement activities and participation in 5CA employee-lead communities
  • Fulltime
Read More
Arrow Right