Senior Security Engineer – SOC2 Compliance

About the Company

Tabs is an AI-powered revenue intelligence platform for B2B businesses. Using the power of AI, Tabs is able to understand and extract elements from even the most complex B2B contracts and then power automated billing, revenue recognition and reporting workflows. Our customers use Tabs to eliminate manual work, collect cash faster, streamline operations, and increase business model flexibility. Tabs is a Series A hyper growth company based in New York that has raised $35m to date from top-tier VCs like Lightspeed and Primary Ventures.

How We Work

• We work hard. One-week sprints, weekly ship goals, and short feedback cycles. Built around intra-month product releases.

• We work smart. Get in front of the customer, use both data and customer feedback to drive decisions, while keeping the bigger picture in the back of our minds.

• We work together. In-office culture with people that you want to work with. Lots of whiteboard space. Expense coffee, lunch and dinner when in the office.

What You’ll Do

• Implement and maintain real-time monitoring systems across infrastructure and applications. Investigate alerts, lead incident response, and continually refine playbooks.

• Help lead daily management of security controls, transitioning responsibilities from the CTO and engineering team to establish stronger day-to-day accountability.

• Own our compliance operations in Thoropass, maintaining our certifications, and scaling automated workflows for audits and evidence collection.

• Define and enforce identity and access policies, including onboarding, deprovisioning, MFA, and endpoint protections.

• Evaluate and monitor third-party vendor risks, and lead internal security reviews across tools and services.

• Maintain and evolve company-wide security policies and procedures, ensuring documentation is up-to-date and actionable.

• Automate reporting and policy enforcement through scripting and integrations (e.g. Python, Bash, API-based tooling).

About You

• 4+ years in security engineering, infrastructure security, or compliance automation.

• Experience operating within SOC environments (SOC 1 and 2 Type 2)

• Familiarity with tools like Thoropass, Vanta, or Drata.

• Experience with cloud monitoring tools (e.g., AWS GuardDuty, Security Hub, Datadog Security).

• Proficiency in scripting or automation (Python, Bash, etc.).

• Strong written communication and ability to write clear, auditable policies.

• Bonus: experience with ISO 27001, HIPAA, or GDPR frameworks.

Why This Role

Security is already foundational at Tabs. We are SOC 2 certified, use Thoropass, and have strong engagement from the CTO and engineering team. This role is not starting from scratch. It is about taking over a well-structured, audited foundation and scaling it into a modern, automated, and resilient security program. You will define how Tabs secures its infrastructure, customer data, and internal systems as we grow. This is an opportunity to shape the roadmap, choose the tools, and build a culture of trust around security and compliance from a position of influence.

Perks and Benefits

• Competitive compensation and equity

• 100% coverage for healthcare (Medical, Dental and Vision)

• 401(k) plan

• Daily meal and coffee stipend for in-office days

• Tax free contribution to commuter benefits