Security and Compliance Engineer

📋 Description

• • As the inaugural Security and Compliance Engineer at Syntio, a Datatonic company, you will be instrumental in shaping and fortifying our internal IT security posture. This pivotal role offers a unique opportunity to establish and own critical security operations and compliance controls, directly impacting the organization's resilience and trustworthiness.
• • You will be the primary technical owner responsible for enhancing our security monitoring, detection capabilities, data protection mechanisms, and driving automation across our IT infrastructure. This is a hands-on position focused on safeguarding our own systems and data, ensuring robust protection for our approximately 300 employees and their digital assets.
• • Your responsibilities will span the technical implementation and practical ownership of key compliance frameworks, specifically ISO 27001 and UK Cyber Essentials. Success in this role hinges on ensuring these controls are not merely documented but are actively and effectively implemented, measurable, and continuously improved.
• • This is a foundational role where you will have significant influence in defining how security operates on a day-to-day basis. The scope is intentionally broad, encouraging you to leverage your expertise to identify risks, make informed technical decisions, and prioritize initiatives that deliver the most substantial risk reduction for the business.
• • We champion a pragmatic approach, valuing impactful results over exhaustive activity. You are expected to proactively identify security and compliance gaps, propose well-reasoned improvements, and execute them in a structured, risk-based manner. Your focus will be on driving tangible improvements rather than simply performing tasks.
• • This position is perfectly suited for an individual who thrives on building, automating, and refining systems, while embracing ownership and actively contributing to the evolution of security practices as the company scales.
• • You will be responsible for enhancing and fine-tuning our Security Information and Event Management (SIEM) detection rules and alerting workflows, ensuring timely and accurate identification of potential threats.
• • A key aspect of your role will involve identifying gaps in our current detection coverage and developing pragmatic, effective detection improvements that adapt to evolving risks and changes within our technological environment.
• • You will play a crucial role in enhancing our Data Loss Prevention (DLP) strategies and securing our web gateway controls to prevent unauthorized data exfiltration and protect against web-based threats.
• • Monitoring and remediating findings from our Cloud Access Security Broker (CASB) and Infrastructure Security Posture Management (ISPM) platforms will be essential to maintain a secure cloud environment.
• • You will be on the front lines of investigating security alerts and incidents, performing thorough root cause analysis to understand and address the underlying issues.
• • Supporting vulnerability management across our cloud infrastructure, endpoints, and SaaS platforms will be a core responsibility, including prioritizing identified vulnerabilities and tracking their remediation.
• • You will maintain and improve our incident response procedures, which includes developing playbooks, conducting tabletop exercises, and performing post-incident reviews to learn from and refine our response capabilities.
• • Providing critical security input into internal enterprise technology decisions, such as the integration of new SaaS applications and changes to our cloud architecture, will ensure security is embedded from the outset.
• • A significant focus will be placed on automating repetitive security workflows and reporting mechanisms to increase efficiency and reduce manual effort.
• • You will be tasked with reducing false positives in our security alerts and continuously improving the overall signal quality of our monitoring systems.
• • Leveraging scripting and automation (e.g., Python, Bash) to streamline security operations and enhance efficiency will be a key enabler.
• • You will explore and responsibly utilize AI tools to improve investigation workflows, reporting, and documentation, identifying opportunities for AI to boost efficiency without introducing new risks.
• • Building lightweight automation solutions to minimize manual compliance overhead will be a continuous objective.
• • You will own and maintain specific compliance controls for ISO 27001 and UK Cyber Essentials, ensuring their technical implementation and operational effectiveness.
• • Maintaining comprehensive evidence and supporting internal and external audits will be a regular part of your responsibilities.
• • Tracking and remediating identified control gaps will be crucial for maintaining compliance and security posture.
• • You will contribute to risk assessments and control reviews, providing technical expertise to inform governance decisions.
• • Assisting in the improvement of security policies and standards will help to formalize our security practices.
• • Supporting access reviews and vendor security assessments will ensure third-party risks are managed effectively.
• • Clearly communicating technical risks to non-technical stakeholders will be vital for cross-functional understanding and buy-in.