Security Consultant / Compliance Engineer

We are looking for a technically strong Information Security Consultant / Security Compliance Engineer to support and improve our security and compliance posture across ISO 27001, HIPAA, and AICPA SOC (1/2).
You will work closely with engineering, delivery, and compliance teams — translating security requirements into technical actions.

Does this relate to you?

• Technical background required — previous experience in IT infrastructure, systems engineering, cloud (AWS/Azure/GCP), networks, or software development.
• 4–7 years in information security, IT risk, or security compliance.
• Solid understanding of:
  - ISO 27001 ISMS and Annex A controls
  - HIPAA Privacy & Security Rules
  - SOC 2 Trust Services Criteria
• Experience translating regulatory/security requirements into technical tasks for engineers.
• Strong documentation, analytical, and communication skills.
• Nice-to-Have Certifications: ISO 27001 Lead Implementer/Auditor, CISA, CISM, CRISC, HCISPP, or similar.
• English is Upper-Intermediate.

A new team member will be in charge of:

• Advise teams on implementing security controls aligned with ISO 27001, HIPAA, and SOC 2.
• Conduct technical risk assessments, identify control gaps, and define remediation steps.
• Support internal/external security audits, evidence collection, and certification readiness.
• Collaborate with engineering teams to validate logging, access controls, encryption, backups, and other security measures.
• Maintain security policies, risk register, and security awareness activities.
• Assist with incident response, root cause analysis, and vendor security evaluations.

Already looks interesting? Awesome! Check out the benefits prepared for you:

• Regular performance reviews, including remuneration.
• Up to 25 paid days off per year for well-being.
• Flexible cooperation hours with work-from-home.
• Fully paid English classes with an in-house teacher.
• Perks on special occasions such as birthdays, marriage, childbirth.
• Referral program implying attractive bonuses.
• External & internal training and IT certifications.

Ready to try your hand? Send your CV without a doubt!