Back to Careers

Security Engineer

Engineering
Remote
Full-time

Overview

As a Security Engineer at EvidaraIQ, you'll be responsible for ensuring the security and compliance of our platform that handles sensitive digital evidence. You'll work on security architecture, compliance certifications (including SOC 2 Type II), and protecting data that may be used in legal proceedings. This role is critical to maintaining the trust of law enforcement and legal professionals who rely on our platform.

Key Responsibilities

  • Design and implement security controls and infrastructure
  • Conduct security assessments, vulnerability testing, and penetration testing
  • Maintain and improve SOC 2 Type II compliance and other certifications
  • Develop and enforce security policies, procedures, and best practices
  • Implement and manage security monitoring, logging, and incident response
  • Ensure compliance with CJIS, HIPAA, and other regulatory requirements
  • Conduct security reviews of code, infrastructure, and third-party integrations
  • Respond to security incidents and conduct post-incident analysis
  • Collaborate with engineering teams on secure development practices
  • Stay current with security threats, vulnerabilities, and industry best practices

Requirements

  • Bachelor's degree in Computer Science, Cybersecurity, or related field
  • 5+ years of experience in information security or cybersecurity
  • Strong knowledge of security frameworks (NIST, ISO 27001, SOC 2)
  • Experience with cloud security (AWS, GCP, or Azure)
  • Proficiency in security tools and technologies (SIEM, IDS/IPS, vulnerability scanners)
  • Understanding of network security, encryption, and authentication systems
  • Experience with security compliance and audit processes
  • Strong problem-solving and analytical skills
  • Excellent written and verbal communication skills
  • Relevant security certifications (CISSP, CISM, CEH, or similar)

Preferred Qualifications

  • Experience with CJIS compliance and law enforcement security requirements
  • Knowledge of legal technology and evidence handling security
  • Experience with SOC 2 Type II audits and compliance
  • Understanding of chain of custody and audit logging requirements
  • Experience with secure software development lifecycle (SSDLC)
  • Knowledge of zero-trust architecture and modern security practices
  • Experience with container security and Kubernetes
  • Active security clearance or ability to obtain one

Ready to Apply?

If you're excited about this role and believe you'd be a great fit, we'd love to hear from you. Please send your resume and a brief note about why you're interested in this position.

Apply NowView Other Positions