P Job Title: IT Security Engineer p Location: Remote (Portugal, Spain, Bulgaria, Romania) /pp Type: Full-time /pp About Us /pp Oraion is your single source of truth for enterprise data.
Oraion uses agentic AI to turn structured and unstructured enterprise data into non-obvious insights, instantly.
/pp Oraion helps you make faster, more informed decisions and even automate complex tasks, all through a self-serve, chat-based AI agent embedded in your existing workflow such as Slack, Teams or via our Enterprise Intelligence Platform.
/pp We#39;re looking for an IT Security Engineer to help us build and scale a secure, enterprise-grade platform that customers can trust with their most sensitive data.
/pp About the Role /pp As an IT Security Engineer at Oraion, you#39;ll play a critical role in safeguarding our infrastructure, systems, and customer data across a cloud-based environment with strong tenant isolation.
/pp You#39;ll work across security operations, cloud security, and compliance, helping us strengthen our security posture as we scale globally.
This includes implementing controls aligned with SOC 2 Type II, supporting audits, and ensuring best-in-class security practices across the organization.
/pp In addition to security, this role will also support broader IT and DevOps initiatives, contributing to infrastructure reliability, internal systems, and operational efficiency.
As a small and fast-moving team, we value engineers who are comfortable working across domains and taking ownership beyond a single function.
/pp This is a hands-on role where you#39;ll collaborate closely with engineering, product, and operations teams to embed security into everything we build, without slowing down innovation.
/pp Responsibilities /pulli Design, implement, and maintain security controls across cloud infrastructure (AWS and GCP) and internal systems /lili Own and improve identity and access management (IAM), including role-based access and least privilege enforcement /lili Monitor, detect, and respond to security incidents and vulnerabilities across systems and endpoints /lili Manage and improve security tooling (e.g., endpoint protection, vulnerability scanners, SIEM, logging systems) /lili Support SOC 2 Type II compliance efforts, including control implementation, evidence collection, and audit readiness /lili Conduct regular security assessments, vulnerability scans, and penetration test follow-ups /lili Define and enforce security policies, procedures, and best practices across the company /lili Partner with engineering teams to ensure secure system design, secure coding practices, and infrastructure hardening /lili Manage third-party risk and vendor security reviews /lili Drive security awareness and training across the organization /lili Continuously improve monitoring, alerting, and incident response processes /lili Support IT and DevOps-related tasks, including infrastructure management, internal tooling, and system reliability as needed /li /ulp Requirements /pulli3+ years of experience in IT security, cloud security, or security engineering roles /lili Strong experience securing cloud environments, particularly AWS and/or GCP (IAM, networking, logging, encryption) /lili Hands-on experience with cloud-native security tools (e.g., AWS Security Hub, GuardDuty, GCP Security Command Center, Cloud Logging) /lili Solid understanding of security frameworks and standards (SOC 2, ISO *****, GDPR) /lili Experience with identity and access management (SSO, MFA, RBAC/ABAC) /lili Hands-on experience with security tools (e.g., vulnerability scanners, EDR, SIEM, monitoring tools) /lili Familiarity with incident response and security operations workflows /lili Understanding of network security, application security, and infrastructure security principles /lili Ability to balance security with speed in a fast-paced startup environment /lili Strong communication skills and ability to work cross-functionally /lili Fluent in English /li /ulp Bonus Points /pulli Experience working in a SOC 2 Type II environment or supporting audits with tools like Vanta /lili Experience securing single-tenant SaaS platforms /lili Familiarity with DevSecOps practices and CI/CD security /lili Experience with compliance automation tools (e.g., Vanta, Drata) /lili Knowledge of data security and encryption best practices /lili Exposure to AI/ML systems security or data governance /lili Startup experience or experience in high-growth environments /li /ulp What We Offer /pulli Ground-floor opportunity to shape security at a fast-growing AI startup /lili High-impact role with ownership across security and compliance /lili Collaborative team across engineering, product, and operations /lili Competitive compensation /lili Remote-friendly, flexible working culture /lili Opportunity to work on cutting-edge AI products handling complex enterprise data /li /ul /p