PbJob Title: /b IT Security Engineer /ppbLocation: /b Remote (Portugal, Spain, Bulgaria, Romania) /ppbType /b: Full-time /ppbr/ppbAbout Us /b /ppOraion is your single source of truth for enterprise data.
Oraion uses agentic AI to turn structured and unstructured enterprise data into non-obvious insights, instantly.
/ppOraion helps you make faster, more informed decisions and even automate complex tasks, all through a self-serve, chat-based AI agent embedded in your existing workflow such as Slack, Teams or via our Enterprise Intelligence Platform.
/ppWe're looking for an IT Security Engineer to help us build and scale a secure, enterprise-grade platform that customers can trust with their most sensitive data.
/ppbr/ppbAbout the Role /b /ppAs an IT Security Engineer at Oraion, you'll play a critical role in safeguarding our infrastructure, systems, and customer data across a cloud-based environment with strong tenant isolation.
/ppYou'll work across security operations, cloud security, and compliance, helping us strengthen our security posture as we scale globally.
This includes implementing controls aligned with SOC 2 Type II, supporting audits, and ensuring best-in-class security practices across the organization.
/ppbr/ppIn addition to security, this role will also support broader IT and DevOps initiatives, contributing to infrastructure reliability, internal systems, and operational efficiency.
As a small and fast-moving team, we value engineers who are comfortable working across domains and taking ownership beyond a single function.
/ppThis is a hands-on role where you'll collaborate closely with engineering, product, and operations teams to embed security into everything we build, without slowing down innovation.
/ppbr/ppbResponsibilities /b /pulliDesign, implement, and maintain security controls across cloud infrastructure (AWS and GCP) and internal systems /liliOwn and improve identity and access management (IAM), including role-based access and least privilege enforcement /liliMonitor, detect, and respond to security incidents and vulnerabilities across systems and endpoints /liliManage and improve security tooling (e.g., endpoint protection, vulnerability scanners, SIEM, logging systems) /liliSupport SOC 2 Type II compliance efforts, including control implementation, evidence collection, and audit readiness /liliConduct regular security assessments, vulnerability scans, and penetration test follow-ups /liliDefine and enforce security policies, procedures, and best practices across the company /liliPartner with engineering teams to ensure secure system design, secure coding practices, and infrastructure hardening /liliManage third-party risk and vendor security reviews /liliDrive security awareness and training across the organization /liliContinuously improve monitoring, alerting, and incident response processes /liliSupport IT and DevOps-related tasks, including infrastructure management, internal tooling, and system reliability as needed /li /ulpbr/ppbRequirements /b /pulli3+ years of experience in IT security, cloud security, or security engineering roles /liliStrong experience securing cloud environments, particularly AWS and/or GCP (IAM, networking, logging, encryption) /liliHands-on experience with cloud-native security tools (e.g., AWS Security Hub, GuardDuty, GCP Security Command Center, Cloud Logging) /liliSolid understanding of security frameworks and standards (SOC 2, ISO *****, GDPR) /liliExperience with identity and access management (SSO, MFA, RBAC/ABAC) /liliHands-on experience with security tools (e.g., vulnerability scanners, EDR, SIEM, monitoring tools) /liliFamiliarity with incident response and security operations workflows /liliUnderstanding of network security, application security, and infrastructure security principles /liliAbility to balance security with speed in a fast-paced startup environment /liliStrong communication skills and ability to work cross-functionally /liliFluent in English /li /ulp /ppbBonus Points /b /pulliExperience working in a SOC 2 Type II environment or supporting audits with tools like Vanta /liliExperience securing single-tenant SaaS platforms /liliFamiliarity with DevSecOps practices and CI/CD security /liliExperience with compliance automation tools (e.g., Vanta, Drata) /liliKnowledge of data security and encryption best practices /liliExposure to AI/ML systems security or data governance /liliStartup experience or experience in high-growth environments /li /ulpbr/ppbWhat We Offer /b /pulliGround-floor opportunity to shape security at a fast-growing AI startup /liliHigh-impact role with ownership across security and compliance /liliCollaborative team across engineering, product, and operations /liliCompetitive compensation /liliRemote-friendly, flexible working culture /liliOpportunity to work on cutting-edge AI products handling complex enterprise data /li /ulpbr/ppbr/p