Full-Time Staff Security Engineer

CloudQuery is seeking a talented and experienced Staff Security Engineer to join our core team. You'll shape our security strategy and ensure infrastructure/operations adhere to industry standards.

This high-impact, hands-on role leads SOC2 attestation, manages risk, and ensures CloudQuery's security, compliance, and efficiency.

Responsibilities:

• Collaborate with engineering, product, and executive teams to design/implement security initiatives.
• Lead end-to-end SOC2 and relevant certification efforts.
• Manage Mobile Device Management (MDM) and security software to enforce company-wide policies.
• Oversee security tool/practice implementation across DevOps, engineering, and corporate systems.
• Develop and maintain security policies, standards, and procedures that meet compliance requirements.
• Conduct regular risk assessments, audits, and reviews to mitigate threats.
• Drive security awareness/training to ensure team understanding.
• Stay current on security trends/technologies to improve CloudQuery's posture.
• Lead incident response planning, simulation, and handling of incidents.
• Prepare and maintain documentation for security measures, processes, and risk management.

Requirements:

• 6+ years IT security experience with strong risk management skills.
• Experience leading SOC2 and similar certification processes, with hands-on experience in compliance, audits, and security frameworks.
• Solid understanding of MDM solutions, endpoint security, and IT management.
• Familiarity with cloud platforms, security best practices, and DevOps processes.
• Experience in security incident management, threat detection, and vulnerability assessments.
• Excellent communication to document/present security processes to technical/non-technical stakeholders.
• Self-driven, resourceful, and thrive in a remote-first environment.
• Passion for security, automation, and ensuring development velocity without compromising safety.

Benefits:

• Remote-first company!
• Competitive pay with significant options.
• Remote-friendly environment with events for connection.
• High-impact role with career advancement opportunities.

What is the last date for applying to the job?

Which countries are accepted for this remote job?