DISCO
Compliance Engineer
Austin, TXmidAdded 2 days ago
About this role
DISCO, a legal tech software company, seeks a Compliance Engineer to drive compliance automation and governance across their cloud infrastructure. You'll bridge technical and regulatory requirements by automating audit evidence collection, implementing infrastructure compliance controls, and managing access governance for SOX, SOC2, and ISO-27001 standards.
What you'll do
- Automate evidence collection and serve as engineering contact for SOX, SOC2 Type II, and ISO-27001 audits
- Implement 'Compliance as Code' practices with DevOps teams to establish automated guardrails
- Manage user access lifecycle, enforce segregation of duties, and review deprovisioning workflows
- Provide technical expertise to GRC teams during sales cycles and RFP responses
- Maintain Security Trust Center and compliance documentation
- Perform internal reviews of infrastructure configurations for compliance alignment
What they're looking for
- SOX 404, ISO-27001, SOC2, and ITGC frameworks
- AWS cloud services (EC2, Lambda, ECS, EKS, CloudFormation, etc.)
- Infrastructure as Code (Terraform, CloudFormation)
- DevOps and CI/CD tools (Jenkins, Docker, CodeDeploy, GitHub)
- Compliance automation platforms (e.g., Anecdotes)
- Python or Bash scripting
- Access and identity management
- Cloud security and governance practices
Opens the official application on the employer’s site. No login required.