Skip to main content

DISCO

Compliance Engineer

Remote (Remote)midAdded 2 days ago

About this role

DISCO, a legal tech software company, is seeking a Compliance Engineer to join its DevOps team and drive implementation of compliance requirements across cloud infrastructure. You'll automate audit evidence collection, establish compliance-as-code practices, and manage access controls while reducing the compliance burden on engineering teams.

What you'll do

  • Automate evidence collection and serve as technical contact for SOX, SOC2 Type II, and ISO-27001 audits
  • Implement 'Compliance as Code' with DevOps engineers and review infrastructure configurations for compliance
  • Manage user access lifecycle, enforce Segregation of Duties, and review deprovisioning workflows
  • Support GRC teams with technical expertise during sales cycles, RFPs, and compliance documentation
  • Build and maintain automated evidence-gathering tools using compliance automation platforms
  • Collaborate with cross-functional engineering teams to enhance system reliability and security

What they're looking for

  • SOX 404, ISO-27001, SOC2, and IT general controls (ITGC)
  • AWS cloud infrastructure (EC2, Lambda, ECS, EKS, CloudFormation, etc.)
  • Infrastructure as Code and containerization (Terraform, Docker, CloudFormation)
  • DevOps and Platform Engineering (2-4 years hands-on experience)
  • Compliance automation platforms and continuous compliance workflows
  • Access and identity management with Segregation of Duties
  • Python, Bash, or other scripting languages
  • CI/CD tools (Jenkins, CodeDeploy, GitHub)
Apply on the employer's site

Opens the official application on the employer’s site. No login required.