CrawlJobs Logo

Staff Trust, Risk and Compliance Engineer

Czechia, Prague · Job Posted February 13, 2026
Apply Position
Job Link Share

Job Description

As a Staff Trust, Risk, and Compliance Engineer you will operate at the center of Rapid7’s Information Security organization, and have an opportunity to architect security and compliance systems, improve operations for a public company security program, and elevate how risk and compliance enable the business at scale. In this role you will shape the long-term direction of Rapid7’s global compliance and risk programs. You’ll ensure our Information Security program is not only compliant, but intentionally designed, deeply integrated, and resilient — capable of evolving alongside Rapid7’s technology, products, and growth.

Job Responsibility

  • Design and drive end-to-end Trust, Risk, and Compliance programs across multiple complex regulatory and compliance regimes
  • Architect and evolve Rapid7’s TRC technology ecosystem, connecting applicability, assessment, implementation, operation, and meaningful reporting
  • Improve TRC maturity at scale, reducing uncertainty and friction while strengthening risk management outcomes
  • Operate autonomously across most situations, managing timelines, dependencies, and escalations without being chased
  • Run multiple complex initiatives in parallel with broad, cross-functional scope
  • Partner with senior leaders across Information Security, Engineering, Platform, IT, Enterprise Applications, and the business to shape direction and outcomes
  • Apply deep engineering judgment to navigate and integrate Rapid7’s technical stack, including AWS, Okta, commercial GRC platforms, Tableau, Terraform and Rapid7 products (such as InsightCloudSec, Surface Command, and InsightVM), and other security tooling
  • Leverage APIs, automation, scripting (e.g., Python), data, and AI-driven approaches to modernize how TRC operates
  • Integrate with productivity and collaboration tools (e.g., Slack, Google Workspace, Atlassian Portfolio) to deliver a seamless Trust, Risk, and Compliance experience
  • Influence how Rapid7 employees (“Moose”) think about security and compliance — shifting left, embedding controls early, and avoiding reactive cleanup
  • Resolve ambiguous, cross-functional problems repeatedly, operating with manager-level judgment and systems-level thinking

Requirements

  • Extensive experience (typically 10+ years) building bridge-layers between complex business requirements and technical operations
  • Deep understanding of managing complex lifecycles—whether in Trust, Risk, and Compliance (NIST, ISO) or other highly regulated, high-scale technical fields
  • A proven track record of designing systems that don't just "work" but scale
  • A design-thinking–led microservices architecture that allows the TRC stack to adapt and evolve organically
  • Strong engineering mindset applied to governance, risk, and compliance challenges
  • Advanced technical fluency, including: Cloud environments (AWS)
  • APIs, automation, and scripting (e.g., Python)
  • Commercial GRC platforms and security tooling
  • Ability to influence direction, negotiate outcomes, and shape how peers and leaders approach problems
  • Strong judgment and communication skills
  • Comfortable working in complex, fast-changing environments, balancing multiple priorities
  • Takes ownership and accountability for outcomes, not just inputs
  • Able to translate strategy into action, driving progress across teams
  • Proven experience collaborating cross-functionally to deliver results at scale

Nice to have

  • Experience creating executive-level or operational reporting that drives decision-making
  • Exposure to Federal or US Public Sector compliance environments
  • Experience applying advanced automation, data engineering, or AI to security or GRC programs
  • A portfolio or examples of systems, platforms, or programs you’ve designed, scaled, or transformed

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Staff Trust, Risk and Compliance Engineer

8 matching positions

New

Staff Cybersecurity Engineer - Zero Trust

This role is based remotely but if you live within a 50-mile radius of Atlanta, ...
Location
Location
United States , Austin; Mountain View; Warren; Detroit; Atlanta
Salary
Salary:
160200.00 - 246300.00 USD / Year
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, Cybersecurity, Computer Engineering, or a related technical field
  • 7+ years of experience in cybersecurity, network security, security architecture, or security engineering roles, with a strong focus on secure access and zero trust design
  • Equivalent combination of education and relevant experience may be considered
  • Proven experience designing, implementing, and engineering zero trust security architectures and secure access patterns within large, complex hybrid network environments
  • Expert-level proficiency in modern information security and complex network architectures, including zero trust architecture, identity and access management, secure remote access, VPN and mesh VPN solutions, and web and non-web application access patterns
  • Strong expertise in network and connectivity architectures, including routing, firewalls, macro- and micro-segmentation, proxies, DNS, and load balancers
  • Demonstrated ability to analyze complex network and access patterns and translate them into robust, scalable, and supportable secure access designs
  • Experience securing development and enterprise environments and integrating security throughout the software development and service lifecycle
  • Strong understanding of enterprise IT, networking, cloud platforms, information architecture, and relevant security disciplines, theories, and techniques
  • Demonstrated experience conducting qualitative research and technical analysis related to cybersecurity risks, vulnerabilities, and solution design
Job Responsibility
Job Responsibility
  • Design, implement, and maintain scalable and secure access architectures across complex enterprise IT environments
  • Define and evolve the technical roadmap for Secure Access Services, including mesh VPN and identity-aware access patterns across web and non-web applications
  • Conduct deep analysis of user, device, and service network access paths across complex network environments, including routing, firewalls, macro- and micro-segmentation, proxies, DNS, and load balancers
  • Architect end-to-end zero trust access patterns that decouple applications from direct network trust and centralize policy enforcement in Secure Access Services
  • Translate business, risk, and compliance requirements into reusable reference architectures, patterns, and guardrails for secure access
  • Serve as the primary engineer for the solutions you architect, including design, configuration, scripting, integration, and operationalization of mesh VPN and identity-aware proxy capabilities
  • Implement secure access for a broad set of web and non-web applications, including internal and external web applications, APIs, databases, administrative tools, and legacy TCP workloads
  • Drive data governance and secure architecture practices by ensuring access patterns, controls, and supporting documentation align with security policies, standards, and best practices
  • Collaborate with software development, infrastructure, identity, network, and product teams to integrate security considerations throughout the application and service lifecycle
  • Evaluate and recommend security tools, technologies, and processes that enhance the overall security posture and improve scalability, resilience, and operational efficiency
What we offer
What we offer
  • Medical, dental, vision
  • Health Savings Account
  • Flexible Spending Accounts
  • retirement savings plan
  • sickness and accident benefits
  • life insurance
  • paid vacation & holidays
  • tuition assistance programs
  • employee assistance program
  • GM vehicle discounts
  • Fulltime
Read More
Arrow Right

Staff Engineer (Android)

The Staff Engineer (Android) is the senior technical authority for Android engin...
Location
Location
United Kingdom
Salary
Salary:
Not provided
admiralgroup.co.uk Logo
Admiral Group Plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep expert-level knowledge of Android development, Kotlin, Android SDK, and Jetpack libraries
  • Proven experience designing and evolving large-scale, customer-facing mobile applications
  • Strong architectural expertise (Clean Architecture, modularisation, MVVM/MVI)
  • Advanced understanding of mobile performance, security, and reliability
  • Ability to influence senior stakeholders and make strategic technical decisions
  • Comfortable operating in ambiguity with minimal direction
Job Responsibility
Job Responsibility
  • Define and own the Android platform architecture aligned to Admiral’s long-term business and technology strategy
  • Lead the design of scalable, modular, secure Android solutions supporting customer acquisition, onboarding, policy management, and payments
  • Act as the final technical authority for Android-related architectural decisions
  • Identify and manage technical risk, debt, and dependencies across teams
  • Design and implement highly complex Android features with significant customer and business impact
  • Solve ambiguous, systemic problems (performance, reliability, scalability, platform evolution)
  • Lead investigations into major incidents, root causes, and long-term fixes
  • Balance short-term delivery with long-term platform health
  • Define Android engineering standards, best practices, and development guidelines
  • Ensure strong adoption of testing, CI/CD, observability, and performance monitoring
What we offer
What we offer
  • up to £3,600 of free shares each year after one year of service
  • 33 days holiday (including bank holidays) when joining, increasing up to a maximum of 38 days (including bank holidays)
  • option to buy or sell up to an additional five days of annual leave
  • Disability Confident Leader scheme
  • work-life balance support
  • flexible working
  • 24-Hour Ecare
  • Cycle to Work Scheme
  • Simply Health
  • Private Health Cover
  • Fulltime
Read More
Arrow Right

Senior Staff Engineer, Software

Our Senior Staff Software Engineer works with our Managers, Distinguished and Sr...
Location
Location
United States , Chevy Chase; Palo Alto; Dallas; Seattle
Salary
Salary:
120000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Fluency in at least one modern language (Go/Python preferred)
  • Understanding of compression algorithms, deduplication, encryption, and error correction
  • Understanding of SQL and NoSQL databases, including stateful services management and storage
  • Understanding of networking, caches, key/value stores, load balancing, global load balancing, queues, DNS and CDN
  • Deep knowledge of SRE practices, methodologies, and principles, along with a solid understanding of on prem and public cloud-based network, compute, and storage technologies
  • In-depth knowledge of hybrid cloud architecture, IaaS and PaaS technologies, container orchestration platforms (e.g., Kubernetes), cloud efficiency and observability etc.
  • Strong background in incident management
  • Ability to create incident response playbooks, runbooks, incident triaging strategies, and post-incident analysis to drive continuous improvement in system reliability and availability
  • Experience with open-source management and monitoring tools
  • Experience with infrastructure automation, tooling, and configuration management frameworks (e.g., Puppet, Chef, Ansible, Pulumi, Terraform, etc.)
Job Responsibility
Job Responsibility
  • Develop and drive the overall strategy for the Business Continuity and Disaster Recovery (BCDR) organization, aligning it with the organization's business goals and objectives
  • Provide thought leadership in BCDR, staying ahead of industry trends and emerging technologies to enhance our backup/restore posture
  • Conduct comprehensive risk assessments to identify potential threats and vulnerabilities
  • Design and implement robust strategies to ensure data safety, integrity and correctness
  • Lead the design and architecture of resilient and scalable systems, considering both on-premises and cloud-based solutions
  • Collaborate with cross-functional teams to integrate data safeguard best practices into the development and deployment processes
  • Develop and maintain comprehensive incident response plans to address various disaster scenarios on our orchestration and backup/restore systems
  • Conduct regular simulations and drills to ensure the readiness of the organization in the event of a disaster
  • Hands-on software engineering and SDLC best practices (Technical Review Documents, Architecture, Software Development, Software Reviews, Testing, Production Readiness Reviews, among others)
  • Evaluate, select, and implement cutting-edge technologies and tools to enhance our data safeguard capabilities including but not limited to processes, compliance, and visibility
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Director of Security and Compliance

The Director of Security & Compliance will lead Tripleseat’s security vision and...
Location
Location
United States , Concord
Salary
Salary:
170000.00 - 185000.00 USD / Year
tripleseat.com Logo
Tripleseat
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Oversee team, vendors, and tools used to deliver the company's security strategy
  • Familiarity with tools like Drata, Tenable, and Deepwatch
  • Deep expertise in PCI DSS v4.0 (preferably SAQ D for service providers)
  • Familiarity with SOC 2 Trust Services Criteria
  • Strong command of global privacy regulations, including GDPR, UK DPA, CCPA, and CPRA
  • Experience drafting privacy policies, data processing agreements, and records of processing activities
  • Proven success in managing data subject access requests and other privacy rights workflows
  • Working knowledge of secure cloud architectures (e.g., AWS, encryption practices)
  • Understanding of relevant standards such as ISO 27001 and NIST SP 800-53/92
  • Excellent documentation and stakeholder communication skills
Job Responsibility
Job Responsibility
  • Set, build, and maintain the overall security strategy for the company
  • Review and implement the tools needed to deploy the strategy
  • Build a security-aware culture
  • Communicate on security and compliance initiatives to Executive Management
  • Develop and Maintain a Strategic Compliance Roadmap
  • Oversee Regulatory Audit Readiness
  • Establish Compliance Metrics and KPIs
  • Policy and Framework Oversight
  • Risk Assessment Leadership
  • Third-Party and Sub-Processor Governance
What we offer
What we offer
  • Competitive Medical, Dental, and Vision Insurance
  • Company Paid Life Insurance, Short- and Long-Term Disability Plans
  • 401(k) with Company Match
  • Parental Leave
  • Flexible Paid Time Off
  • Pet Insurance
  • Fulltime
Read More
Arrow Right

Staff Cybersecurity Engineer - PKI/Secrets Management

The Role: We’re looking for a senior, self-driven Cyber Security Engineer to ow...
Location
Location
United States , Austin; Warren
Salary
Salary:
Not provided
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Mathematics, Physics, or equivalent senior-level industry experience
  • 7+ years experience in enterprise security engineering or Site Reliability Engineering (SRE), with direct responsibility for high-availability security or cryptographic services
  • 7+ years experience with enterprise secrets management platforms (e.g., HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, BeyondTrust), including architecture, operations, and integration at scale
  • Strong understanding of public-key cryptography, PKI, and modern cryptographic protocols, with the ability to make pragmatic, risk-informed design decisions
  • Demonstrated experience designing, operating, and evolving production PKI systems (root and issuing CAs, CRL/OCSP, certificate lifecycle, and policy governance)
  • Proficiency with infrastructure-as-code (e.g., Terraform) and engineering practices that enable repeatable, auditable, and secure deployments
  • Working knowledge of major cloud platforms (AWS, GCP, Azure) and how to integrate PKI and secrets management with cloud-native services
  • Experience with containerization, orchestration (e.g., Kubernetes), and CI/CD workflows, including secure delivery patterns and secrets handling
  • Excellent communication skills, with a track record of presenting complex technical concepts, trade-offs, and recommendations to engineering and executive audiences
  • Strong threat modeling and security architecture skills, with the ability to anticipate abuse cases and design for resilience
Job Responsibility
Job Responsibility
  • Setting the technical vision and architecting, implementing, and operating scalable, highly available PKI and secrets management services for the enterprise
  • Owning design decisions that shape internal trust models, cryptographic architectures, and access patterns for the most sensitive data and systems
  • Defining, implementing, and continuously improving policies, processes, and controls for the full lifecycle of keys, certificates, and secrets across diverse platforms
  • Influencing and aligning engineering, infrastructure, and leadership teams to deliver robust, observable, and compliant cryptographic systems
  • Mentoring and developing engineers, raising the bar for technical excellence, and driving consistent best practices for cryptographic and secrets management across the organization
  • Advising senior leadership on long-term security architecture strategy, trade-offs, and investment priorities related to identity, PKI, and secrets management
  • Providing operational leadership, including participation in on-call rotations for global, mission-critical services and driving post-incident improvements
  • Leading HSM strategy, including architecture, platform selection, appliance consolidation, and multi-year roadmap planning in alignment with enterprise security and compliance goals
  • Fulltime
Read More
Arrow Right

Staff AI/ML Engineer

The Staff AI/ML Engineer role at Crocs Inc. is a technical leadership position w...
Location
Location
United States , Broomfield
Salary
Salary:
180000.00 - 190000.00 USD / Year
crocs.com Logo
Crocs
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or graduate (master’s or PhD) degree in a quantitative discipline (e.g., Computer Science, Engineering, Physics, Operations Research, etc.)
  • 7+ years of experience with a bachelor’s OR 5+ years of experience with a master’s OR 2+ years of experience with a PhD
  • Professional experience in AI or machine learning roles, which may include AI/ML software engineering roles
  • Proven experience in designing, implementing and deploying scaled AI/ML enterprise applications
  • Expertise in AI/ML algorithms including deep learning frameworks (TensorFlow, PyTorch, etc.)
  • Deep expertise in Python
  • Strong knowledge of large language models, GenAI, and RAG frameworks
  • Excellent problem-solving skills with a strategic attitude
  • Ability to work in a fast-paced, dynamic environment with multiple priorities
  • Exposure to AI ethics and compliant use of data
Job Responsibility
Job Responsibility
  • Thought Leadership: Operate as a trusted technical expert within Crocs Inc. on AI/ML technology and applications
  • Architectural Leadership: Lead the architecture and design of AI/ML applications and AI/ML components integrated into other enterprise applications
  • Application Development: Hands-on development of rapid prototypes, as well as scaled AI/ML applications
  • Collaboration: Work closely with multi-functional teams to identify, refine and prioritize high impact AI/ML use cases across the enterprise
  • Communicate to Multiple Levels: Develop architecture and process diagrams and communicate in ways that can be consumed by different levels of the organization
  • Documentation: Develop and maintain solution architectural documentation
  • International Outlook: Design and implement scalable solutions that support both US and international operations
  • Global Compliance and Standards: Ensure all systems and processes adhere to global industry standards and regulatory requirements
  • Mentorship: Provide guidance and mentorship to junior team members
  • Risk Mitigation: Identify and mitigate risks across the end-to-end solution
What we offer
What we offer
  • medical, dental, and vision coverage
  • life and AD&D
  • short and long-term disability coverage
  • paid time off
  • employee assistance
  • participation in a 401k program that includes company match
  • many other additional voluntary benefits
  • eligibility to participate in a company incentive program
  • Fulltime
Read More
Arrow Right

Staff Software Engineer

GEICO is seeking an experienced software engineer with a passion for building hi...
Location
Location
United States , San Francisco
Salary
Salary:
115000.00 - 230000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Fluency in at least one modern language (Go/Python preferred)
  • Understanding compression algorithms, deduplication, encryption, and error correction
  • Understanding of SQL and NoSQL databases, including stateful services management and storage
  • Understanding of networking, caches, key/value stores, load balancing, global load balancing, queues, DNS and CDN
  • Deep knowledge of SRE practices, methodologies, and principles, along with a solid understanding of on prem and public cloud-based network, compute, and storage technologies
  • In-depth knowledge of hybrid cloud architecture, IaaS and PaaS technologies, container orchestration platforms (e.g., Kubernetes), cloud efficiency and observability, etc.
  • Strong background in incident management
  • Ability to create incident response playbooks, runbooks, incident triaging strategies, and post-incident analysis to drive continuous improvement in system reliability and availability
  • Experience with open-source management and monitoring tools
  • Experience with infrastructure automation, tooling, and configuration management frameworks (e.g., Puppet, Chef, Ansible, Pulumi, Terraform, etc.)
Job Responsibility
Job Responsibility
  • Develop and drive the overall strategy for the Data Safeguard organization, aligning it with the organization's business goals and objectives
  • Provide thought leadership in Data Safeguard, staying ahead of industry trends and emerging technologies to enhance our backup/restore posture
  • Conduct comprehensive risk assessments to identify potential threats and vulnerabilities
  • Design and implement robust strategies to ensure data safety, integrity and correctness
  • Lead the design and architecture of resilient and scalable systems, considering both on-premises and cloud-based solutions
  • Collaborate with cross-functional teams to integrate data safeguard best practices into the development and deployment processes
  • Develop and maintain comprehensive incident response plans to address various disaster scenarios on our backup/restore systems
  • Conduct regular simulations and drills to ensure the readiness of the organization in the event of a disaster
  • Hands-on software engineering and SDLC best practices (Technical Review Documents, Architecture, Software Development, Software Reviews, Testing, Production Readiness Reviews, among others)
  • Evaluate, select, and implement cutting-edge technologies and tools to enhance our data safeguard capabilities including but not limited to processes, compliance, and visibility
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Staff Application Security Engineer

The Application Security Engineer at Sunrun plays a pivotal role in protecting t...
Location
Location
United States
Salary
Salary:
150290.60 - 180348.72 USD / Year
sunrun.com Logo
Sunrun
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of combined experience in application security and identity & access management (IAM), with a proven track record of supporting application development teams
  • Deep knowledge of application security principles, secure coding practices, common vulnerabilities (e.g., OWASP Top 10), and zero-trust architecture
  • Hands-on experience with security testing tools (SAST, DAST), Web Application Firewalls (WAF), and IAM platforms (e.g., Okta, AWS IAM)
  • Proficiency in programming languages such as Java, Python, or JavaScript
  • Strong familiarity with cloud environments (AWS, GCP) and their native security and identity controls
  • Demonstrated expertise in threat modeling and designing defense-in-depth strategies for complex applications
  • Solid understanding of modern identity standards and technologies, including MFA, SSO, and WebAuthn
  • Excellent communication and collaboration skills, with the ability to articulate technical findings and security risks to diverse audiences
  • Strong critical thinking and creative problem-solving skills, with the ability to analyze systems from an attacker's perspective and devise effective countermeasures
Job Responsibility
Job Responsibility
  • Threat Modeling & Security Design: Assess potential attack vectors and design defense-in-depth strategies that address gaps across infrastructure, 1st and 3rd party applications, and identity management
  • Secure Software Development Life Cycle (SSDLC): Partner with application development teams to integrate security into every stage of the development lifecycle. Champion secure coding standards, conduct security code reviews, and provide expert guidance to minimize vulnerabilities before production
  • Identity & Access Management (IAM): Design, implement, and manage identity security solutions across 1st and 3rd party applications. Showcase hands-on experience in implementing strategies like Zero Trust architecture and modern authentication standards like WebAuthn
  • Implement & Manage Security Controls: Design, implement, and fine-tune application security controls like SAST/DAST vulnerability scanning andand standardizing secure coding practices. Establish and improve operational processes to ensure their continued effectiveness
  • Guidance, Training & Compliance: Develop and maintain security policies and standards for both application and identity security. Provide ongoing training to developers to elevate secure coding practices
  • Stakeholder Collaboration: Use strong critical thinking and communication skills to present complex technical concepts to business stakeholders, gain alignment, and independently drive security initiatives forward
What we offer
What we offer
  • Medical/Dental/Vision Insurance
  • Life Insurance
  • Disability Insurance
  • 401k Plan + Company Match
  • Stock Purchase Plan
  • Paid Vacations/Holidays
  • Paid Baby Bonding Leave
  • Employee Discounts
  • PowerU - 100% Funded Education Programs
  • Employee Donation Matching
  • Fulltime
Read More
Arrow Right