Compliance Engineer

DISCO

Completely RemoteFull TimeEngineering & Architecture
Posted Today

Job description

Responsibilities

  • Serve as the engineering technical contact for annual SOX, SOC2 Type II, and ISO-27001 audits.
  • Automate evidence collection into "Continuous Compliance" workflows to minimize disruption to engineering velocity.
  • Implement "Compliance as Code" by working with DevOps Engineers to establish automated guardrails and perform infrastructure configuration reviews.
  • Manage the technical lifecycle of user access, enforce Segregation of Duties (SoD), and review deprovisioning workflows.
  • Support GRC teams by providing technical expertise during sales cycles and responding to RFPs.

Requirements

  • Minimum of 5 years in a technical compliance, security, or DevOps-adjacent role, preferably within a SaaS environment.
  • 2-4 years of hands-on experience in DevOps or Platform Engineering.
  • Proficiency with AWS and Infrastructure as Code (Terraform, CloudFormation).
  • Strong understanding of SOX 404, ISO-27001, SOC2, and IT general controls (ITGC).
  • Experience leveraging compliance automation platforms to build automated evidence-gathering tools.
  • Legal authorization to work in the United States without current or future sponsorship.

Preferred Qualifications

  • Exposure to security frameworks such as FedRAMP or NIST 800-53.
  • Experience building and managing PaaS for internal development teams.
  • Experience with Cloud Networking (VLAN, routing) or other cloud platforms like Azure and GCP.
  • Familiarity with Windows Server administration and ASP.NET deployments.
  • General experience with software development and various tech stacks.

Benefits

  • Competitive salary plus RSUs.
  • Comprehensive medical, dental, and vision insurance.
  • 401(k) retirement plan.
  • Flexible PTO.
  • An open, inclusive, and fun remote work environment.

About the Company

DISCO is a legal tech software company providing a cloud-native, AI-powered solution that simplifies eDiscovery, legal document review, and case management. Our mission is to provide a unified technology platform for the practice of law, automating manual processes so that legal professionals can focus on high-value tasks.

Skills & tools

AWSTerraformDockerPythonCompliance

What the team is looking for

Use this list as a quick fit check before you apply.

  1. 015+ years technical compliance or security experience
  2. 022-4 years DevOps or Platform Engineering experience
  3. 03Proficiency with AWS and Infrastructure as Code
  4. 04Understanding of SOX, ISO-27001, and SOC2 frameworks
  5. 05Experience with compliance automation platforms
ScoutJobsAd

Wake up to a shortlist, not a search results page.

ScoutJobs scores every new listing against your CV, salary floor and visa. A handful of real matches by morning.

Get your daily matches