Security Engineer

Remote Full-time
About HighLevel: HighLevel is an AI powered, all-in-one white-label sales & marketing platform that empowers agencies, entrepreneurs, and businesses to elevate their digital presence and drive growth. We are proud to support a global and growing community of over 1 million businesses, comprised of agencies, consultants, and businesses of all sizes and industries. HighLevel empowers users with all the tools needed to capture, nurture, and close new leads into repeat customers. As of mid 2025, HighLevel processes over 4 billion API hits and handles more than 2.5 billion message events every day. Our platform manages over 470 terabytes of data distributed across five databases, operates with a network of over 250 microservices, and supports over 1 million hostnames. Our People With over 1,500 team members across 15+ countries, we operate in a global, remote-first environment. We are building more than software; we are building a global community rooted in creativity, collaboration, and impact. We take pride in cultivating a culture where innovation thrives, ideas are celebrated, and people come first, no matter where they call home. Our Impact As of mid 2025, our platform powers over 1.5 billion messages, helps generate over 200 million leads, and facilitates over 20 million conversations for the more than 1 million businesses we serve each month. Behind those numbers are real people growing their companies, connecting with customers, and making their mark - and we get to help make that happen. About HighLevel: HighLevel is an AI powered, all-in-one white-label sales & marketing platform that empowers agencies, entrepreneurs, and businesses to elevate their digital presence and drive growth. We are proud to support a global and growing community of over 1 million businesses, comprised of agencies, consultants, and businesses of all sizes and industries. HighLevel empowers users with all the tools needed to capture, nurture, and close new leads into repeat customers. As of mid 2025, HighLevel processes over 4 billion API hits and handles more than 2.5 billion message events every day. Our platform manages over 470 terabytes of data distributed across five databases, operates with a network of over 250 microservices, and supports over 1 million hostnames. Our People With over 1,500 team members across 15+ countries, we operate in a global, remote-first environment. We are building more than software; we are building a global community rooted in creativity, collaboration, and impact. We take pride in cultivating a culture where innovation thrives, ideas are celebrated, and people come first, no matter where they call home. Our Impact As of mid 2025, our platform powers over 1.5 billion messages, helps generate over 200 million leads, and facilitates over 20 million conversations for the more than 1 million businesses we serve each month. Behind those numbers are real people growing their companies, connecting with customers, and making their mark - and we get to help make that happen. Responsibilities Develop, maintain, and continuously improve GRC policies, standards, procedures, and control frameworks . Lead and support SOC 2 Type II, ISO 27001, PCI DSS and other compliance initiatives , including evidence collection, control validation, and remediation tracking. Partner with Security and Platform teams to ensure controls are technically implemented , not just documented. Collaborate with Security Architecture and Engineering to validate whether exceptions meet security and compliance expectations. Track, review, and periodically reassess approved exceptions to prevent long-term risk accumulation. Partner with Procurement, Legal, and Application Security teams to assess vendor risk posture and define remediation or contractual security requirements Design scalable workflows for:Risk assessments, Vendor reviews, Evidence management,Control testing and reporting Deliver targeted GRC and security awareness training , including guidance on risk ownership, exception handling, and vendor security responsibilities. Prepare risk, compliance, and third-party security posture reports for senior leadership. Translate technical risks into business-impact language to support informed decision-making. Perform business impact analysis and facilitate BCDR table top tests Qualifications Bachelor’s degree in Information Systems, Computer Science, Cybersecurity, or a related field. 4.5+ years of experience in GRC, risk management, or compliance , with exposure to technical security controls . Strong understanding of security frameworks and standards (SOC 2, ISO 27001, NIST). Hands-on experience with technical risk assessments, exception management, and third-party security reviews . Ability to interpret technical security data (architecture diagrams, cloud controls, access models). Strong analytical, documentation, and stakeholder communication skills. Preferred Qualifications Master’s degree in a relevant field. Certifications such as CISA, CRISC, CGEIT, CISSP , or equivalent. Experience working with cloud-native or SaaS environments . Familiarity with TPRM tooling, GRC automation platforms, and risk engineering workflows . Knowledge of data protection and privacy regulations (GDPR, CCPA).
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Shopify Expert - Shopify Store Designer

Remote

Experienced Part-Time Customer Service Representative – Remote Work Opportunity with arenaflex

Remote

Experienced Data Entry Clerk and Focus Group Panelist – Remote Work from Home Opportunity with Flexible Hours and Competitive Compensation

Remote

Senior Legal Counsel, US – East Coast (Remote) (933-SLS)

Remote

Nursing Assistant Encore

Remote

**Experienced Remote Live Chat Representative – Customer Support Specialist | No Experience Needed | Earn $25-$35/hr from Home**

Remote

[Remote] Junior 3D Artist (Props, Structures, Set Dressing)

Remote

Apply Now: Analyst, Case Management (Care Coordinator)

Remote

Regional Manager | NorCal North

Remote

Technical Project Manager

Remote
← Back