Serve as the primary contact for customer security questionnaires, contract redlining, and Trust Center management using AI tools. Requires 2-4 years in GRC/Security Operations, knowledge of SOC2/ISO/NIST/GDPR/CCPA, and strong communication skills.
Salary not listed
Remote2+ YOESecurity Engineering
About the role
What You’ll Do
Act as the primary point of contact for responding to complex security and privacy questionnaires from prospective and existing clients.
Review and redline security and privacy exhibits within customer contracts, ensuring commitments align with internal controls and global regulations (GDPR, CCPA, etc.).
Own and optimize the trust.navan.com portal (hosted on SafeBase), ensuring all security documentation, certifications (SOC2, ISO), and sub-processor lists are evergreen.
Utilize and train AI questionnaire assistance tools to automate repetitive inquiries.
Partner closely with the Privacy and Legal teams to stay ahead of regulatory changes and provide unified responses to sensitive data-handling inquiries.
Empower the Sales and Account Management teams by updating internal knowledge bases and the public-facing website with the latest security and trust information.
What We’re Looking For
2–4 years of experience in Security Operations, IT Audit, Customer Trust, or a related GRC (Governance, Risk, and Compliance) role, preferably within a SaaS environment.
Understanding of security frameworks (SOC 2, ISO 27001, NIST) and privacy regulations (GDPR, CCPA).
Experience with Trust Center platforms (SafeBase or similar) and AI-assisted questionnaire tools is a major plus.
Exceptional written and verbal communication skills; ability to translate "security-speak" into clear, professional language for clients.
Meticulous attention to detail with redlines and security audits.
Builder mindset excited to optimize workflows and make the Trust function a competitive advantage.
Develop containerized microservices in Go for a multi-tenant cloud security platform that processes real-time cloud telemetry to deliver insights and risk recommendations. Own full SDLC, design, operations, and mentoring while partnering with Product on requirements.
141k – 162k
On-site2+ YOESecurity Engineering
IAM Engineer
KrakenUnited States
IAM Engineer responsible for implementing and improving identity and access management tooling (Okta, ConductorOne, Terraform) with RBAC/ABAC/JIT controls. Requires 2+ years experience in IAM infrastructure, scripting, and IGA platforms in a fast-paced crypto environment.
96k – 192k
Remote2+ YOESecurity Engineering
Enterprise Security Engineer
Applied IntuitionSunnyvale, CA
Lead enterprise security operations at Applied Intuition, managing device security, IAM, vulnerability management, third-party services, compliance, and risk across global workforce. Requires 2+ years cybersecurity experience, platform and network security expertise, and risk evaluation skills.
133k – 180k
On-site2+ YOESecurity Engineering
Cyber Security Intern
LabelboxSan Francisco, CA
Security Engineering Intern supporting vulnerability management, IAM, cloud access controls, SIEM optimization, and CI/CD security at an AI data platform company. Requires pursuit of a CS/Cybersecurity degree, interest in cloud/data security, and basic cloud platform knowledge.
40 – 55
HybridEntry levelSecurity Engineering
Threat Detection Engineer
IdmeMountain View, CA
Develop and optimize high-fidelity threat detections across SIEM/SOAR platforms using Python, SQL, and AI/ML techniques. Focus on LLM-assisted workflows, AI-specific threat detection, and infrastructure-as-code for scalable security operations.