Overview: Join Matproof, an innovative SaaS/Fintech startup rapidly expanding its global reach from Berlin. We are in search of a technical engineer who sees compliance not as a tedious requirement but as an integral feature of our product. Here, you will contribute to a collaborative environment where your coding skills will play a crucial role in safeguarding our clients and our company's integrity.
Your mission will be to transition us from traditional audits to an ongoing state of Continuous Compliance, all while ensuring our cloud infrastructure is inherently secure and compliant by default.
Responsibilities : - Compliance-as-Code: Develop and manage automated evidence-collection systems that align with ISO 27001, SOC2 Type II, and the EU AI Act requirements. - Cloud Guardrails: Enforce automated security protocols in AWS/GCP utilizing Terraform or CloudFormation to mitigate compliance drift. - Audit Orchestration: Serve as the technical point of contact for external audits, leveraging automation to minimize manual documentation burdens. - Vulnerability Management: Collaborate with the DevOps team to identify and address technical risks within CI/CD pipelines effectively. - Third-Party Risk Tech: Assess the security measures of our technology vendors through automated tools, moving beyond conventional static questionnaires.
Requirements : - The Tech Stack: A minimum of 3 years in a technical security or DevSecOps role, with proficiency in Python or Go for automation, and a strong grasp of Kubernetes and Cloud Security (AWS/Azure). - The Regulatory Lens: Practical experience with European regulations (GDPR, NIS2) and comprehensive understanding of international standards (ISO/SOC2). - The "Startup" Mindset: You prefer creating solutions to problems over producing lengthy documentation. Adaptability is key in our fast-evolving environment. - Communication: Ability to articulate the rationale behind security measures to Product Managers and the technical aspects to Senior Developers.
Benefits : - Equity: Join our VSOP (Employee Stock Option Plan) to have ownership of your contributions. - Learning Budget: €2,000 annually for certifications (CISA, CISSP, AWS Security) or attending tech conferences. - Berlin Perks: Public transport subsidy (Deutschlandticket), flexible remote work options, and a dog-friendly office in a vibrant part of the city.
Ready to Shape the Future of Compliance? If you are seeking to escape the monotonous spreadsheet routine and want to create the automated future of GRC (Governance, Risk, and Compliance), we are excited to connect with you. We value diverse viewpoints and strongly encourage applications from underrepresented groups in the tech industry.
What to Expect from Our Hiring Process: - The Coffee Chat (30 min): An introductory call with our Talent Lead to explore your background and aspirations. - Technical Deep Dive (60 min): A discussion with our CISO or Lead Engineer focusing on cloud security architecture and your approach to "Compliance-as-Code." - The Practical Challenge: A brief, take-home technical task or collaborative exercise.
Submit your application directly to Matproof.
🔗 Apply on Employer Site →