Job Title:
IT Security Engineer
Location:
Remote (Portugal, Spain, Bulgaria, Romania)
Type
: Full-time
About Us
Oraion is your single source of truth for enterprise data. Oraion uses agentic AI to turn structured and unstructured enterprise data into non-obvious insights, instantly.
Oraion helps you make faster, more informed decisions and even automate complex tasks, all through a self-serve, chat-based AI agent embedded in your existing workflow such as Slack, Teams or via our Enterprise Intelligence Platform.
We're looking for an IT Security Engineer to help us build and scale a secure, enterprise-grade platform that customers can trust with their most sensitive data.
About the Role
As an IT Security Engineer at Oraion, you'll play a critical role in safeguarding our infrastructure, systems, and customer data across a cloud-based environment with strong tenant isolation.
You'll work across security operations, cloud security, and compliance, helping us strengthen our security posture as we scale globally. This includes implementing controls aligned with SOC 2 Type II, supporting audits, and ensuring best-in-class security practices across the organization.
In addition to security, this role will also support broader IT and DevOps initiatives, contributing to infrastructure reliability, internal systems, and operational efficiency. As a small and fast-moving team, we value engineers who are comfortable working across domains and taking ownership beyond a single function.
This is a hands-on role where you'll collaborate closely with engineering, product, and operations teams to embed security into everything we build, without slowing down innovation.
Responsibilities
Design, implement, and maintain security controls across cloud infrastructure (AWS and GCP) and internal systems
Own and improve identity and access management (IAM), including role-based access and least privilege enforcement
Monitor, detect, and respond to security incidents and vulnerabilities across systems and endpoints
Manage and improve security tooling (e.g., endpoint protection, vulnerability scanners, SIEM, logging systems)
Support SOC 2 Type II compliance efforts, including control implementation, evidence collection, and audit readiness
Conduct regular security assessments, vulnerability scans, and penetration test follow-ups
Define and enforce security policies, procedures, and best practices across the company
Partner with engineering teams to ensure secure system design, secure coding practices, and infrastructure hardening
Manage third-party risk and vendor security reviews
Drive security awareness and training across the organization
Continuously improve monitoring, alerting, and incident response processes
Support IT and DevOps-related tasks, including infrastructure management, internal tooling, and system reliability as needed
Requirements
3+ years of experience in IT security, cloud security, or security engineering roles
Strong experience securing cloud environments, particularly AWS and/or GCP (IAM, networking, logging, encryption)
Hands-on experience with cloud-native security tools (e.g., AWS Security Hub, GuardDuty, GCP Security Command Center, Cloud Logging)
Solid understanding of security frameworks and standards (SOC 2, ISO *****, GDPR)
Experience with identity and access management (SSO, MFA, RBAC/ABAC)
Hands-on experience with security tools (e.g., vulnerability scanners, EDR, SIEM, monitoring tools)
Familiarity with incident response and security operations workflows
Understanding of network security, application security, and infrastructure security principles
Ability to balance security with speed in a fast-paced startup environment
Strong communication skills and ability to work cross-functionally
Fluent in English
Bonus Points
Experience working in a SOC 2 Type II environment or supporting audits with tools like Vanta
Experience securing single-tenant SaaS platforms
Familiarity with DevSecOps practices and CI/CD security
Experience with compliance automation tools (e.g., Vanta, Drata)
Knowledge of data security and encryption best practices
Exposure to AI/ML systems security or data governance
Startup experience or experience in high-growth environments
What We Offer
Ground-floor opportunity to shape security at a fast-growing AI startup
High-impact role with ownership across security and compliance
Collaborative team across engineering, product, and operations
Competitive compensation
Remote-friendly, flexible working culture
Opportunity to work on cutting-edge AI products handling complex enterprise data