DISCO
Compliance Engineer
Remote (Remote)midAdded 2 days ago
About this role
DISCO, a legal tech software company, is seeking a Compliance Engineer to join its DevOps team and drive implementation of compliance requirements across cloud infrastructure. You'll automate audit evidence collection, establish compliance-as-code practices, and manage access controls while reducing the compliance burden on engineering teams.
What you'll do
- Automate evidence collection and serve as technical contact for SOX, SOC2 Type II, and ISO-27001 audits
- Implement 'Compliance as Code' with DevOps engineers and review infrastructure configurations for compliance
- Manage user access lifecycle, enforce Segregation of Duties, and review deprovisioning workflows
- Support GRC teams with technical expertise during sales cycles, RFPs, and compliance documentation
- Build and maintain automated evidence-gathering tools using compliance automation platforms
- Collaborate with cross-functional engineering teams to enhance system reliability and security
What they're looking for
- SOX 404, ISO-27001, SOC2, and IT general controls (ITGC)
- AWS cloud infrastructure (EC2, Lambda, ECS, EKS, CloudFormation, etc.)
- Infrastructure as Code and containerization (Terraform, Docker, CloudFormation)
- DevOps and Platform Engineering (2-4 years hands-on experience)
- Compliance automation platforms and continuous compliance workflows
- Access and identity management with Segregation of Duties
- Python, Bash, or other scripting languages
- CI/CD tools (Jenkins, CodeDeploy, GitHub)
Opens the official application on the employer’s site. No login required.