Security Engineer Compliance

Overview

BRG, operating through Second Sight Solutions, is a health technology company reimagining drug discount data exchange with innovative, reliable solutions. They treasure collaboration, creativity, and growth.

Role: Security Engineer Compliance

The candidate will be a key part of the Security team, with a strong background in cyber security and deep experience in Governance, Risk, and Compliance (GRC) programs.

Responsibilities

• Manage and support compliance frameworks (SOC 1 and 2, ISO 27001, CSA STAR, NIST CSF, etc).
• Develop and maintain organizational policies, procedures and guides for audits.
• Assist in building an internal audit program to evaluate process effectiveness.
• Support Risk Management through identification, mitigation, and reporting activities.
• Collaborate with the Security Operations team for operational compliance and audit standards.
• Support Quarterly Access Reviews as part of the access request process.

Qualifications

• 5+ years in Information/Security/Compliance/Risk Engineering.
• Strong technical knowledge of compliance frameworks and their implementation.
• Experience with web technologies and cloud services (Microsoft 365, Azure, AWS, etc).
• Operational understanding of security systems like firewalls, IDS, anti-virus, etc.
• Ability to work under pressure and solve complex problems.
• Legal right to work in the U.S. without sponsorship.

Work Arrangement & Salary

This position is primarily remote with occasional on‑site travel required for onboarding and team events. Salary Range: $125,000 - $170,000 per year.

About BRG

BRG combines world-leading academic credentials with proven business expertise to deliver market-changing solutions. Their team includes specialist consultants, industry experts, and data scientists who leverage interdisciplinary relationships to solve complex challenges globally.

Key skills/competency

SOC, ISO27001, NIST, Compliance, Risk, Audit, Cybersecurity, Cloud, GRC, Policies