Security GRC Engineer
@CWILL
Compliance
|
Salary
$120,000.00 - $..
|
Remote
Location
πΊπΈ
USA Only
|
|
Employment Type
full-time
|
Posted
3d ago
|
[Hiring] Security GRC Engineer @CWILL
3d ago - CWILL is hiring a remote Security GRC Engineer. πΈ Salary: $120,000.00 - $160,000.00 per year πLocation: USA
Role Description
We are looking for a Security GRC (Governance, Risk, and Compliance) Engineer to drive data compliance governance and audit execution. This role focuses on building practical, enforceable, and auditable controls around data access, data lifecycle, product data usage, and cross-border data flows. This is a hands-on, execution-focused role working directly with data systems and audit processes (not a policy-only role).
Responsibilities
-
Data Compliance Governance
- Support US data compliance requirements (e.g., CCPA, EO 14117)
- Perform gap analysis and define remediation plans
- Design and implement controls for: sensitive data classification, access governance, data lifecycle management
- Build processes for data subject rights (deletion, access, portability)
- Participate in product and engineering reviews (e.g., DPIA)
- Support compliance for new features, data use cases, and vendor/cross-border scenarios
-
Compliance & Audit Execution
- Support SOC 2 readiness and audit execution
- Conduct access reviews, log validation, and anomaly detection
- Maintain audit records and generate compliance reports
- Build or improve automated evidence collection (e.g., scripting)
- Work with internal teams and external auditors to provide audit evidence
Qualifications
- Authorized to work in the United States
- Mandarin preferred for day-to-day collaboration
- Bachelorβs degree or above in Computer Science, Information Security, or a related technical field
- 3β5 years of experience in Security, GRC, Data Security, or Data Compliance
- Hands-on experience with at least one compliance framework (e.g., SOC 2, CCPA, GDPR, 14117), beyond policy or documentation
- Practical experience in data compliance governance, including: sensitive data identification and classification, access control and access governance, data lifecycle management (storage, usage, deletion, portability)
- Ability to work with data systems (e.g., databases, data flows, APIs) and translate compliance requirements into technical implementations
- Basic technical capability (e.g., Python, Golang, or scripting) to support audit automation, data validation, or tooling
- Strong cross-functional communication skills, with the ability to work closely with engineering, product, data, and infra teams
Requirements
- Relevant certifications such as CISSP, CISM, or CIPP/US
- Experience in SaaS / e-commerce platforms (e.g., Shopify ecosystem) or third-party integrations
- Background in data governance, data platforms, or analytics
- Familiarity with cross-border data transfer compliance
- Understanding of web accessibility standards (e.g., WCAG, ADA) and related privacy/security considerations
Benefits
- Pay: $120,000.00 - $160,000.00 per year
- 401(k) matching
- Flexible schedule
- Health insurance
- Paid time off
- Vision insurance
Kickstart Your Job Search
| πΊπΈ | Be aware of the location restriction for this remote position: USA Only |
| βΌ | Beware of scams! When applying for jobs, you should NEVER have to pay anything. Learn more. | οΈ
Compliance
|
Salary
$120,000.00 - $..
|
Remote
Location
πΊπΈ
USA Only
|
|
Employment Type
full-time
|
Posted
3d ago
|
Did not apply
β
Applied
β
Sent Follow-Up
β
Interview Scheduled
β
Interview Completed
β
Offer Accepted
β
Offer Declined
β
Application Denied
β
| πΊπΈ | Be aware of the location restriction for this remote position: USA Only |
| βΌ | Beware of scams! When applying for jobs, you should NEVER have to pay anything. Learn more. | οΈ
Apply for this position
Unlock 160,000+ Remote Jobs
Did not apply
β
Applied
β
Sent Follow-Up
β
Interview Scheduled
β
Interview Completed
β
Offer Accepted
β
Offer Declined
β
Application Denied
β
