Senior Security & Compliance Engineer

ZooLATECH

Central EuropeOn-siteCompetitiveAdded 8 days ago

English Required

ZooLATECH·Central Europe

Apply Now

Senior Security & Compliance Engineer

ZooLATECH

Original Advert

Our client is a purpose-driven software company focused on the social impact sector, building innovative SaaS solutions that empower nonprofits, donors, and communities to operate more efficiently and maximize their impact.

We're hiring an experienced Senior Security & Compliance Engineer who drives security hardening and compliance certification readiness for a CSR platform. The work spans SOC certification preparation, GDPR compliance implementation, data residency architecture, and Auth0-based authentication and authorization patterns. This is hands-on engineering, not advisory - you write code, configure infrastructure, and build security controls.

What You Will Build

SOC 1 Type II and SOC 2 Type II certification readiness (controls implementation, evidence collection automation)
GDPR cross-border data transfer safeguards and data subject rights APIs

Data residency controls for multi-region expansion

Auth0 tenant federation and SSO configuration (SAML 2.0, OIDC)

SCIM-based user lifecycle provisioning

Role-based and attribute-based access control enforcement in API middleware

Audit logging with tamper protection and 7-year retention compliance

PCI DSS compliance validation (SAQ-A level, Stripe integration)

Security monitoring: CloudWatch-based alerting, log export for customer-facing compliance

Required Skills

Expert use of AI-assisted development tools (Copilot, Claude, Cursor, or equivalent)
Auth0 administration and integration (tenant configuration, federation, token validation)
OAuth2 / OIDC / SAML 2.0 implementation
RBAC and ABAC modeling for multi-tenant SaaS
SOC 2 Type II controls - practical implementation, not just audit familiarity
GDPR technical compliance (deletion APIs, consent tracking, cross-border safeguards)
AWS security services: IAM, KMS, Secrets Manager, CloudWatch, VPC security groups
TypeScript / Node.js (for security middleware and API enforcement)
Aurora PostgreSQL (field-level encryption, row-level security)

Nice to Have

SOC 1 Type II experience

PCI DSS (SAQ-A or higher)

Data residency architecture for multi-region SaaS

ISO 27001 familiarity

More jobs from ZooLATECH

ZooLATECH

Senior Security & Compliance Engineer

Senior Security & Compliance Engineer

Original Advert

More jobs from ZooLATECH

Senior Web Developer

Java Engineer with Claude

Project Manager

Senior Salesforce Engineer

Senior Backend Engineer

Senior Frontend Engineer

Salesforce Integration Engineer

Senior Manual QA Engineer for Mobile App

Software Engineer – Web Applications

Senior Salesforce Integration Engineer

Senior/Staff Salesforce Engineer

Java Engineer

More jobs in Legal & Compliance

CIB Legal Manager

Beca Compliance

Regulatory Database & Ingredient Compliance Specialist

Legal Counsel - Assistant Director - EY GDS Spain

Global Supply Compliance Manager

Compliance Iberia Manager - Temporary

Associate Legal Counsel

Head of People Advisory - Employment Law

Head of People Advisory - Employment Law

Legal Internship

Regulatory Affairs Director - Oncology

Senior Product Counsel | Ireland | Remote

More jobs in Central

Consulting Architect

Senior Manual QA Engineer for Mobile App

People Programs Assistant (HR Team)

Manual QA Engineer for IOS Application

Senior Frontend Engineer

Senior Backend Engineer

SDET for Android (Kotlin)

Senior Data Engineer

Senior Data & Analytics Engineer

Senior/Lead QA Manager

Strong Junior Java Engineer

Swift / IOS Engineer