Security Engineer

About Glean:

Founded in 2019, Glean is an innovative AI-powered knowledge management platform designed to help organizations quickly find, organize, and share information across their teams. By integrating seamlessly with tools like Google Drive, Slack, and Microsoft Teams, Glean ensures employees can access the right knowledge at the right time, boosting productivity and collaboration. The company’s cutting-edge AI technology simplifies knowledge discovery, making it faster and more efficient for teams to leverage their collective intelligence.

Glean was born from Founder & CEO Arvind Jain’s deep understanding of the challenges employees face in finding and understanding information at work. Seeing firsthand how fragmented knowledge and sprawling SaaS tools made it difficult to stay productive, he set out to build a better way - an AI-powered enterprise search platform that helps people quickly and intuitively access the information they need. Since then, Glean has evolved into the leading Work AI platform, combining enterprise-grade search, an AI assistant, and powerful application- and agent-building capabilities to fundamentally redefine how employees work.

Role:

Glean is looking for a highly skilled Corporate Security (IT) and Compliance Engineer who will be working towards securing an overall cloud-native IT environment and maintaining our ongoing compliance with security standards and frameworks. The successful candidate will possess a strong background in IT security best practices, be well-versed in implementing and managing compliance towards frameworks such as SOC2, HIPAA, GDPR, CCPA etc., and have the ability to handle complex challenges in a dynamic environment. 

What you will do and achieve

• Develop and maintain the organization's IT security policies, procedures, and standards.
• Maintain compliance with industry standards like SOC2 and HIPAA, leveraging tools to automate workflows and reduce manual effort.
• Prepare for external audits by maintaining compliance documentation.
• Work towards the implementation of a comprehensive third-party vendor review program. 
• Identify areas of highest risk within the organization and collaborate with teams to mitigate these risks through technical and administrative controls.
• Collaborate with business teams to assess and implement appropriate security settings and access controls in SaaS applications.

Who you are

• Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent work experience).
• 5+ experience in managing security compliance, IT security, with a focus on cloud-native environments.
• Strong understanding of modern endpoint security solutions and securing remote employees' devices.
• Experience in implementing and managing compliance frameworks such as SOC2, HIPAA, GDPR, etc.
• Excellent analytical and problem-solving skills with the ability to handle complex technical challenges.
• Relevant certifications such as CISSP, CISM, CompTIA Security+, or equivalent, are a plus.

Key knowledge and skills

• Thrive in a customer-focused, tight-nit and cross-functional environment - being a team player and willing to take on whatever is most impactful for the company is a must
• A proactive and positive attitude to lead, learn, troubleshoot and take ownership of both small tasks and large features
• Familiarity with cloud native security practices in GCP/AWS/Azure is a plus

We are a diverse bunch of people and we want to continue to attract and retain a diverse range of people into our organization. We're committed to an inclusive and diverse company. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race.