The Security Engineer (Compliance) position at Second Sight Solutions, a health technology company under Berkeley Research Group, involves managing key compliance frameworks such as SOC 1 and 2, ISO 27001, CSA STAR, and NIST CSF. The role entails developing policies, conducting internal audits, identifying risks, and ensuring operational controls meet audit standards. Ideal candidates have over five years of experience in system or information security engineering with expertise in compliance frameworks and cloud services like Microsoft Azure and AWS. They should possess strong problem-solving skills and a deep understanding of security principles, protocols, and systems such as firewalls and intrusion detection systems. The role requires collaboration with the Security Operations team to maintain robust security functions and support annual audits, ensuring comprehensive risk management is integrated into organizational culture.
Skills
SOC 2
ISO 27001
CSA STAR
NIST CSF
Microsoft Azure
Amazon Web Services
firewalls
intrusion detection systems
anti-virus software
authentication systems
log management
Web applications
Service Oriented Architectures
CI/CD
What you'll do
Own and manage key compliance frameworks such as SOC 1 and 2, ISO 27001, CSA STAR, NIST CSF.
Develop and maintain organizational policies and procedures for compliance requirements.
Assist in the development of an internal audit program to measure process effectiveness and identify improvements.
Support risk management by identifying, mitigating, monitoring, reporting, and documenting risks.
Ensure security functions meet operational compliance standards set by independent annual audits.
What we're looking for
5+ years of experience as a System or Information Security Engineer, Compliance Engineer, or Risk Engineer.
Proven expertise in compliance frameworks such as SOC 1 and 2, ISO 27001, CSA STAR, NIST CSF.
Strong understanding of security principles, techniques, and protocols.
Experience with cloud services including Microsoft Azure, Amazon Web Services, and Microsoft 365.
Operational knowledge of security systems like firewalls, intrusion detection systems, and log management.
Ability to develop and maintain internal audit programs for process effectiveness and adherence.
Market check
Salary context
Competitive pay
How this pay compares to similar roles
Similar $164k
This role $148k
$106k
most similar roles pay here
$213k
This role pays less than
65%
of similar roles. Most pay
$142,400–$185,500
— the shaded band above.
At the midpoint, this role pays about
$148k
versus about
$164k
for comparable roles.
Based on 240 similar postings.
Employer
About Berkeley Research Group
Berkeley Research Group is a global consulting firm specializing in expert testimony, disputes and investigations, corporate finance, and performance improvement.
Berkeley Research Group currently has
5 open roles
on FindRole.
Listed pay typically runs
$125,000–$175,000
across 5 roles with salary data.
NIST SP 800-53
RMF
RHEL
Red Hat Enterprise Linux
Rocky
Git
SCAP
ACAS
Tenable
Splunk
Linux firewalls
Linux RPMs
networking configuration
DNS
TCP/IP
firewalls
VLANs
routing
VPN