Security & Compliance Engineer

Job not on LinkedIn

🔥 2 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Grant Street Group

WebsiteLinkedInAll Job Openings

201 - 500 employees

Grant Street Group specializes in cloud-based government solutions for tax collection, e-payments, and auctions. Our applications handle the billing, collection, and distribution of taxes, payment processing, and online auctions of financial and legal instruments. Nearly two-thirds of all property taxes in Florida ($21 billion) are collected using TaxSys®, our fully hosted tax billing and collection solution. One-third of the state's online vehicle and vessel registration renewals are processed using RenewExpress®.PaymentExpress®, our secure e-payments service, processes over $20 billion in credit card and e-check transactions annually.Grant Street is also the world’s largest internet auctioneer. To date, we’ve conducted online auctions of bonds, notes, tax certificates, and other financial and legal instruments for more than 6,800 government and financial entities, with a value exceeding $13 trillion.From Miami-Dade County to the State of New Mexico to the City of San Francisco, government entities from coast to coast rely on Grant Street to deliver technological solutions that truly work.

📋 Description

• Support the day-to-day security posture of systems and services across cloud and on-prem environments. • Review vulnerability findings from scanners, penetration tests, and other assessments, and help drive remediation to closure. • Partner with infrastructure, platform, and engineering teams on secure configuration, access control, logging, monitoring, and incident readiness. • Support compliance and assessment activities related to GovRAMP/FedRAMP, PCI DSS, internal reviews, and third-party examinations. • Use AWS security tooling effectively, support day-to-day security processes, and help translate security and compliance requirements into practical, durable operational outcomes. • Maintain documentation, procedures, and other operational artifacts so they stay aligned with the environment and current control expectations.

🎯 Requirements

• 3+ years of experience in security engineering, security operations, infrastructure security, or security compliance. • Hands-on experience working in Linux-based production environments and securing Linux systems. • Experience securing AWS environments and using services such as IAM, CloudTrail, GuardDuty, Security Hub, Config, Inspector, and KMS. • Working knowledge of vulnerability management, configuration management, logging, monitoring, access control, and incident response practices. • Scripting experience in Python, Bash, PowerShell, or similar for automation, security operations, and reporting tasks. • Strong written and verbal communication skills, with the ability to move issues from discovery through remediation across multiple teams. • Experience supporting regulated or highly audited environments is a plus. • Familiarity with GovRAMP, FedRAMP, PCI DSS, SOC examinations, or similar frameworks is a plus. • Experience reviewing scanner output, penetration test findings, or security monitoring alerts and helping drive remediation is a plus. • Familiarity with POA&M tracking, exception handling, and remediation coordination is a plus. • Experience working across both cloud and legacy infrastructure is a plus.

🏖️ Benefits

• minimal travel: typically 2-3 weeks per year for on-site meetings • technology-rich work environment