GRC Security Engineer (P4) - Santa Clara, CA

Santa Clara, CA

Aviatrix

Aviatrix secure cloud networking software is purpose-built for your business, delivering enterprise-grade networking with security, agility, and cost-optimization in mind.

View all jobs at Aviatrix

Apply now Apply later

GRC Security Engineer  (P4)  - Santa Clara, CA

About the role: Aviatrix is a leader in multi-cloud networking, enabling enterprises to simplify operations, enhance security, and optimize costs. As a GRC Security Engineer  (P4)  at Aviatrix, you will play a key role in maturing our Governance, Risk, and Compliance (GRC) program. You will work closely with cross-functional teams to enhance security controls, automate evidence gathering, and ensure continuous compliance monitoring. Your expertise will contribute to the development of scalable security solutions that align with industry standards, mitigate risk, and support Aviatrix's mission to simplify and secure multi-cloud networking for enterprises worldwide. This is a mid-to-senior-level role requiring both technical proficiency and strategic vision. Preferred location is Santa Clara, CA - hybrid work model. 

Responsibilities:

  • Expand automated evidence gathering and continuous control testing by integrating with Aviatrix's GRC platform.
  • Develop and mature Aviatrix’s security controls program, aligning with frameworks like NIST SP800-53, SOC 2, ISO 27001/27002, CIS Critical Controls, and FedRAMP.
  • Collaborate with software engineers, DevOps, SRE, IT teams, product owners, Legal stakeholders, and security teams to implement and refine security requirements and controls.
  • Evaluate, document, and communicate business risks related to control designs and gaps in partnership with the Security Assurance Management team.
  • Maintain and optimize security compliance monitoring and alerting systems; aggregate compliance alerts and provide actionable insights to control owners.
  • Support the administration and implementation of GRC tooling, ensuring alignment with organizational goals and compliance requirements.
  • Integrate and maintain security compliance tools, including those for AWS native security features, SIEM, PAM, vulnerability scanning, and infrastructure security solutions.

Requirements:

  • Strong experience with implementing and administering GRC platforms, as well as setting up APIs and Webhooks for integrations.
  • Proficiency in at least one scripting language (e.g., Python, Bash) and familiarity with at least one public cloud architecture and associated control tools (e.g., AWS, Azure, GCP).
  • Comprehensive knowledge of security compliance frameworks such as SOC 2, ISO 27001/27002, NIST SP800-53, FedRAMP, and CIS Critical Controls.
  • Experience with security compliance monitoring solutions, including native cloud compliance tools, SIEM platforms, and vulnerability scanning tools.
  • Proven ability to design, implement, and test scalable security controls and programs. Strong understanding of risk management methodologies, including business risk evaluation and gap analysis.
  • Excellent written and verbal communication skills to convey complex technical concepts to diverse audiences

 

US Pay Range

The US National annual base salary range for this full-time position is $161,000-$180,000 + benefits + 401(k) match + equity. The pay range is determined by the role, work location, job-related skills, level, experience and relevant education. [Certain roles are eligible to earn sales commission, depending on the terms of the applicable plan.] The range displayed is the minimum and maximum target base salary and is applicable only for new hires for the listed position located in the US. Your Talent Advisor can share more details regarding salary ranges, benefits, and equity for your location during the hiring process.

 #LI-LD1

 

BENEFITS

US: We cover 100% of employee premiums and 88% of dependent(s) premiums for medical, dental and vision coverage, 401(k) match, short and long-term disability, life/AD&D insurance, $1,000/year education reimbursement, and a flexible vacation policy. 

Outside the US: We offer a comprehensive benefits package which, (subect to regional variations) could include pension, private medical for you and dependents, generous holiday allowance, life assurance, long-term disability, annual wellbeing stipend

Your total compensation package will be based on job-related knowledge, education, certifications and location, per our aligned ranges.

About Aviatrix
Aviatrix is the cloud networking expert. We’re on a mission to make cloud networking simple so companies stay agile. Trusted by more than 500 of the world’s leading enterprises, our cloud networking platform creates the visibility, security, and control needed to adapt with ease and move ahead at speed. Combined with the Aviatrix Certified Engineer (ACE) Program, the industry's leading multicloud networking and security certification, Aviatrix empowers the cloud networking community to stay at the forefront of digital transformation.

WE WANT TO INCLUDE YOU

We embrace the fact that not everyone’s journey took the same route or started at the same place. If your experience doesn’t quite meet the requirements but the opportunity excites you and you believe you could be great, don’t let that hold you back from applying. Tell us what you CAN bring and what makes you special.

Aviatrix is a community where everyone's career can grow and we want to help you achieve your goals and be “your best YOU,” however that looks. If you're seeking an opportunity where you can be excited to start work every morning with enthusiastic people, make a real difference and be part of something amazing then let’s talk. We want to get to know you and how we could grow together.

Aviatrix, Inc. is an equal opportunity employer and does not make hiring decisions based on race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

CPRA - California Applicant Privacy Notice

 

Apply now Apply later
Job stats:  0  0  0

Tags: Agile APIs AWS Azure Bash Cloud Compliance DevOps FedRAMP GCP Governance ISO 27001 Monitoring NIST Privacy Python Risk management Scripting SIEM SOC SOC 2

Perks/benefits: 401(k) matching Career development Equity / stock options Flex vacation Health care Insurance

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.