CrawlJobs Logo

Senior IT Security Compliance Engineer

Egypt, Cairo · Job Posted June 01, 2026
Apply Position
Job Link Share

Job Description

The Senior IT Security Compliance Engineer is responsible for developing, maintaining, and advancing the organization’s security compliance posture. This role leads security audits, manages compliance frameworks, and ensures the effectiveness of security controls across the organization. The position works closely with cross‑functional stakeholders to support regulatory requirements, customer security inquiries, and continuous security improvements in a SaaS/cloud-based environment.

Job Responsibility

  • Develop, review, and maintain IT security policies, standards, procedures, and guidelines in alignment with industry best practices and regulatory requirements
  • Lead and coordinate compliance initiatives for security frameworks and standards, including but not limited to ISO 27001, SOC 2, CMMC, NIST, and internal security assessments
  • Manage audit readiness activities, including documentation preparation, evidence collection, stakeholder coordination, and remediation tracking for internal and external audits
  • Respond to customer and partner security questionnaires, ensuring accurate, consistent, and timely responses
  • Conduct periodic security and risk assessments to evaluate the effectiveness of security controls and identify improvement opportunities
  • Track, manage, and follow up on vulnerability remediation efforts in collaboration with IT, engineering, and operations teams
  • Prepare and deliver security metrics, compliance reports, and executive-level summaries
  • Provide security awareness, training, and education to employees to promote a strong security culture across the organization
  • Support continuous improvement of governance, risk, and compliance (GRC) processes and tooling

Requirements

  • Strong knowledge of information security principles, risk management, and compliance frameworks, with a solid understanding of ISO 27001 requirements and controls
  • Hands-on experience supporting audits and compliance programs for frameworks such as ISO 27001, SOC 2, CMMC, NIST, or similar
  • GRC-related certification (e.g., CISSP, CISA, CRISC, ISO 27001 Lead Implementer/Lead Auditor) is preferred
  • Experience working in SaaS or technology-driven environments is highly desirable
  • Familiarity with cloud computing platforms and cloud security principles
  • Excellent written and verbal communication skills, with proven ability to produce clear, high-quality security documentation and reports
  • Minimum of 5 years of professional experience in cybersecurity, information security, or compliance-related roles
  • Bachelor’s degree in Computer Engineering, Computer Science, Information Security, or a related field

Nice to have

  • GRC-related certification (e.g., CISSP, CISA, CRISC, ISO 27001 Lead Implementer/Lead Auditor)
  • Experience working in SaaS or technology-driven environments

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior IT Security Compliance Engineer

8 matching positions

Senior IT Security Compliance Analyst

The Compliance Analyst is a member of the Nintex Security Team and partners with...
Location
Location
Malaysia , Kuala Lumpur
Salary
Salary:
Not provided
nintex.com Logo
Nintex
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Information Technology, Risk Management, Business, or a related field, or equivalent practical experience.
  • A proven track of at least 5 years working experience with common compliance and assurance frameworks such as SOC 2, ISO/IEC 27001, GDPR, HIPAA, FedRAMP, or similar international regulatory standards.
  • Relevant certifications are preferred but not required, including: CISA, CRISC, CISSP, CCSK, ISO 27001 Lead Implementer/Auditor, or related compliance or risk certifications.
  • Familiarity with common IT infrastructure, SaaS based cloud services, identity and access management concepts, and security tooling sufficient to assess control design and operational effectiveness (hands‑on administration is not required).
Job Responsibility
Job Responsibility
  • Coordinate the full compliance lifecycle, including gap analysis, remediation planning, audit execution, and continuous compliance monitoring.
  • Prepare the organization for new and evolving compliance frameworks by coordinating assessments, audits, self-assessments, and evidence collection and review activities.
  • Develop, maintain, and review compliance related documentation to support training, awareness, and sustained operational effectiveness.
  • Support the Revenue team by answering Security-related questions from customers and prospects.
  • Assist with curating content for ongoing Security training requirements, ensuring completion targets are met.
  • Collaborate with globally distributed stakeholders across Engineering, IT, Product, HR, Legal, and other business functions to support consistent implementation of compliance requirements.
  • Serve as a primary liaison for audit coordination, including facilitating interviews, walkthroughs, and evidence requests.
  • Provide guidance and training to internal teams on compliance initiatives and audit readiness.
  • Support adherence to Nintex governance, risk, and compliance standards by assisting with the creation, review and updates of information security policies and procedures.
  • Ensure compliance activities align with internal guidelines and approved risk management practices.
What we offer
What we offer
  • Global Gratitude and Recharge Days
  • Flexible, paid time off policy
  • Employee wellness programs and counseling resources
  • Meaningful peer recognition and awards
  • Paid parental leave
  • Invention/patenting assistance
  • Community impact, paid volunteer time, and opportunities
  • Intercultural learning and celebration
  • Multiple tools through which to learn and grow, and an incredible global community
  • Fulltime
Read More
Arrow Right

Senior Security & Compliance Engineer - eLxr

We are seeking a highly skilled Security & Compliance Engineer to lead security ...
Location
Location
United States , Greater Austin, TX
Salary
Salary:
Not provided
aptiv.com Logo
Aptiv plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor degree in Computer Science, Cybersecurity, or related field (or equivalent experience)
  • 5+ years of experience in Linux security engineering, preferably with Debian or derivatives
  • Strong knowledge of compliance frameworks (FIPS, STIG, CIS) and SDL practices
  • Hands-on experience with secure boot, encryption tools, and vulnerability management
  • Proficiency in CI/CD security, image generation, and OS installer processes
  • Familiarity with CVE tracking, patching baselines, and audit readiness
  • Excellent problem-solving and communication skills
  • Must reside in Greater Austin, TX area with ability to be present on site
  • United States Citizenship required
Job Responsibility
Job Responsibility
  • Drive adherence to FIPS, STIG, CIS benchmarks, and Secure Development Lifecycle (SDL) practices
  • Manage encryption tools (e.g., OpenSSL and related libraries) and ensure cryptographic compliance
  • Security & Compliance: Implement and maintain segmentation, secrets management, certificate lifecycle processes, and least privilege access controls
  • Ensure audit readiness and compliance with industry standards
  • Image & Installer Management: Oversee generation of OS images (.iso, qcow2, container images) and maintain secure OS installer workflows
  • CI/CD & Backend Systems: Secure CI pipelines and entitlement backend systems, ensuring integrity and compliance throughout build and deployment processes
  • Vulnerability Management: Monitor CVEs, manage vulnerability remediation, and coordinate timely patching and fixes
  • Secure Boot & Encryption: Implement and maintain secure boot processes
  • Security Testing: Develop and execute security testing strategies, including regression and final build validation
  • Web Properties & Portals: Ensure security and compliance across all sites (.org, .pro, .dev) and entitlement portals
What we offer
What we offer
  • Hybrid work model for workplace flexibility
  • Comprehensive health, dental, and life insurance
  • Short and long-term disability coverage
  • RRSP matching for financial security
  • Flexible time-off policies for work-life balance
  • Employee assistance program for mental well-being
  • Learning benefits, including a LinkedIn Learning subscription and seminars
  • Fulltime
Read More
Arrow Right

Senior Backend Engineer (Security Compliance)

Join a high-autonomy team as a senior contractor architecting the next generatio...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 28, 2026
Flip Icon
Requirements
Requirements
  • Java
  • Spring Boot
  • GCP
  • GKE
  • gRPC
  • GraphQL
  • REST
  • PostgreSQL
  • BigQuery
  • Cloud SQL
Job Responsibility
Job Responsibility
  • Architect & Build: Develop Java-based backend services (Spring Boot, Apollo) to enforce compliance controls within a GitHub Enterprise environment.
  • Fulltime
Read More
Arrow Right

Senior Security Engineer – Medical Device Cybersecurity & Compliance

Job Description: Senior Security Engineer – Medical Device Cybersecurity & Compl...
Location
Location
India , Ahmedabad
Salary
Salary:
Not provided
arrow.com Logo
Arrow Electronics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 6 years of experience in cybersecurity
  • At least 3 years focused on medical devices, embedded systems, or IoT security
  • Proven track record in authoring security design, defining technical requirements, and documenting security architectures aligned with regulatory needs
  • Hands-on experience in embedded system security including secure boot, firmware security, threat modeling techniques (e.g., STRIDE, DREAD), and product-level risk assessments
  • Strong understanding of IEC 81001-5-1, IEC 60601-4-5, AAMI TIR 57, and AAMI TIR 97
  • Working knowledge of the medical device product development lifecycle and quality standards like ISO 14971
  • Demonstrated expertise in vulnerability management and penetration testing of connected products across device and cloud ecosystems
  • Excellent problem-solving skills, critical thinking, and ability to lead gap analysis and remediation activities in regulated environments
  • Strong collaboration skills with the ability to influence cross-functional teams including R&D, compliance, and product management
Job Responsibility
Job Responsibility
  • Drive end-to-end cybersecurity integration across the medical device product development life cycle
  • Develop and maintain cybersecurity for medical products, including security requirements specifications, risk assessments, threat models, and product security architecture documentation
  • Conduct thorough gap assessments to evaluate compliance with IEC 81001-5-1, IEC 60601-4-5, AAMI TIR 57, and AAMI TIR 97 standards, and implement remediation measures
  • Perform hands-on vulnerability assessments, penetration testing, and secure code reviews of embedded devices, IoMT components, and connected systems
  • Collaborate closely with development, compliance, and regulatory teams to ensure product security measures meet both internal security policies and external regulatory expectations
  • Support SBOM management, software supply chain risk evaluations, and third-party component analysis
  • Provide expert input on secure communication protocols, encryption standards, data protection for both at-rest and in-transit data, and cloud-based connectivity of medical systems
  • Assist in developing incident response strategies
  • Contribute to the continuous enhancement of internal secure development processes, tools, and methodologies, while championing security best practices within product teams
  • Fulltime
Read More
Arrow Right

Senior Software Engineer – C#/.NET, Angular, Security & Compliance

We are seeking a seasoned Senior Software Engineer with deep expertise in C#/.NE...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
Codvo AI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands-on experience in C#/.NET (Framework and Core) and Angular (v8+)
  • Exposure to SOA and microservices architecture in recent implementations
  • Familiarity with OWASP Top 10 and secure coding practices
  • Experience working with legacy codebases and refactoring strategies
  • Knowledge of Black Duck or similar software composition analysis tools
  • Experience integrating third-party connectors in enterprise environments
  • Understanding of secure data processing, input validation, output encoding, and JWT management
  • Excellent debugging and problem-solving skills
Job Responsibility
Job Responsibility
  • Maintain and enhance legacy applications built on C#/.NET with Angular front-end components
  • Implement bug fixes and security patches identified through compliance testing and tools like Black Duck
  • Apply OWASP best practices to secure service-oriented architectures (SOA) and modern microservices
  • Collaborate with external vendors to integrate and maintain third-party connectors
  • Conduct code reviews and ensure adherence to secure coding standards
  • Participate in secure SDLC activities including threat modeling, static analysis, and test-driven security
  • Document technical changes and maintain traceability for compliance audits
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Application Security

Application Security enables 1Password to build and deliver secure products with...
Location
Location
United States; Canada
Salary
Salary:
156000.00 - 210000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of career experience in IT or Engineering with a security focus
  • Passion for and strong experience with any of: bug bounty programs, vulnerability research, validation, remediation or pentesting
  • Experience with internal tool development and engineering enablement
  • Strong foundational understanding of software development principles, and are comfortable reading and writing code
  • Work well in a team environment with positive communications amongst a variety of technical and non-technical stakeholders
  • Comfortable owning and setting technical direction for small to medium sized initiatives
  • Adaptable and resilient, thriving in fast-paced environments with shifting priorities
Job Responsibility
Job Responsibility
  • Design, build, integrate and scale new security solutions to power our vulnerability management program
  • Develop and maintain tools that correlate, enrich, and prioritize security vulnerability findings from multiple data sources
  • Develop and maintain comprehensive dashboards and reporting metrics around our vulnerability management program, tailored to different audiences (technical, non-technical, compliance, senior leadership, etc.)
  • Conduct detailed analysis used to inform security development teams to eliminate classes of vulnerabilities
  • Partner with product and development teams to improve vulnerability triage workflows, validate findings, and come up with remediation strategies consistent with good user experiences
  • Contribute to the design of risk-scoring and SLA models that align with business priorities
  • Mentor other engineers and help shape the evolution of our vulnerability management strategy
What we offer
What we offer
  • Health benefits
  • Dental benefits
  • 401k/RRSP
  • Generous PTO policy
  • Equity grant
  • Incentive programs
  • Maternity and parental leave top-up programs
  • Retirement matching program
  • Free 1Password account
  • Paid volunteer days
  • Fulltime
Read More
Arrow Right

Senior Security Engineer - Application Security

This is an opportunity to join K's critical InfoSec team as a Senior Security En...
Location
Location
United States , New York
Salary
Salary:
150000.00 - 185000.00 USD / Year
khealth.com Logo
K Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Information Security, Cloud Security, IT Security, and/or Application Security
  • Strong expertise in cloud technology (AWS, GCP, or Azure), modern programming languages, utilization of generative coding utilities, and the security implications of utilizing AI code development utilities
  • Demonstrated experience researching, establishing, and successfully rolling out enterprise-wide security policies and guidelines
  • Proven experience establishing a cutting-edge security posture, particularly within the regulated healthcare technology field
  • Excellent communication skills, capable of translating complex security risks into clear, actionable advice for technical and non-technical stakeholders
  • Expertise in compliance, security, and regulatory areas such as
  • HIPAA, PHI, AKS, SOC 2, ISO, GDPR, etc.
  • Flexibility in covering a rotation for critical on-call support responsibilities
Job Responsibility
Job Responsibility
  • Lead the development and implementation of robust application security protocols throughout the entire Software Development Lifecycle (SDLC)
  • Design, deploy, and continuously monitor cloud security architecture across our cloud environments, ensuring performance and resilience
  • Manage the security posture of K’s core IT infrastructure, internal networks, and perimeter defenses, mitigating threats before they impact operations
  • Ensure adherence to relevant healthcare regulatory and compliance requirements (e.g., HIPAA, GDPR, etc.) across all product lines and systems
  • Conduct proactive vulnerability assessments, penetration tests, and security reviews to identify and remediate potential weaknesses in our platforms
  • Collaborate with engineering teams to integrate security tools and practices into continuous integration/continuous deployment (CI/CD) pipelines
What we offer
What we offer
  • Hybrid work schedule with weekly lunches and stocked fridges
  • Monthly social committees for company events
  • 18 vacation days, 9 company holidays, 5 sick days, and 2 personal days
  • Stock options for every full-time employee
  • Paid parental leave
  • 401k benefit
  • Commuter Benefits
  • Competitive health, dental, and vision insurance options
  • Fulltime
Read More
Arrow Right

Senior Cyber Security Engineer – Security Services

The Role: At General Motors, our Cyber Security organization protects the compa...
Location
Location
United States , Austin, Texas; Warren, Michigan
Salary
Salary:
Not provided
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cyber Security, Computer Science, Information Technology, Engineering, or a related field
  • 6+ years of experience in Cyber Security, Information Security, or Identity and Access Management
  • Strong experience with enterprise IAM integrations in a complex environment
  • Hands-on experience with SAML, OAuth 2.0, OpenID Connect, and related authentication technologies
  • Strong development or automation background, including scripting or programming with Python, PowerShell, JavaScript, Java, or similar
  • Experience with cloud identity platforms such as Microsoft Entra ID, AWS, GCP, or similar
  • Strong understanding of access control, encryption, and secure application architecture
  • Demonstrated ability to lead technical initiatives across cross-functional teams
Job Responsibility
Job Responsibility
  • Lead secure application onboarding design and implementation across the enterprise
  • Define and support authentication and authorization patterns including SAML, OAuth 2.0, and OpenID Connect
  • Establish scalable standards for identity integration, access management, and application onboarding
  • Design and build automation to streamline onboarding, validation, configuration, and support processes
  • Develop reusable tools, scripts, APIs, and workflows to reduce manual effort and improve consistency
  • Expand self-service capabilities for application teams while maintaining security guardrails
  • Partner with application owners, developers, architects, and business stakeholders to gather requirements and guide secure onboarding
  • Advise teams on secure integration patterns and control requirements
  • Drive onboarding strategy aligned to cybersecurity, IAM, and enterprise architecture goals
  • Support deployment and user adoption of enterprise security tools and systems across application teams and stakeholders
What we offer
What we offer
  • This job may be eligible for relocation benefits
  • Fulltime
Read More
Arrow Right