TableCheck is seeking a Security Operations Engineer. As a member of our Site Security squad as part of the Site Reliability Engineering team you will provide a key supporting role, securing the technology stack and help support our demanding business and developer needs.
Responsibilities
- Lead end-to-end implementation and maintenance of SOC 2, ISO 27001, and related compliance programs through our key partner (Drata).
- Build fully automated vulnerability scanning pipelines integrated with AWS, EKS/Kubernetes, and CI/CD workflows.
- Manage security tooling for cloud-native environments (e.g., IaC security, container runtime protection).
- Conduct risk assessments and audits, aligning with NIST CSF or MITRE ATT&CK frameworks.
- Collaborate with engineering teams to remediate vulnerabilities and implement security controls.
Requirements
- 3+ years in security operations with proven experience achieving SOC 2 or ISO 27001 compliance (full lifecycle).
- Experience with Drata.
- Expertise in AWS security services (GuardDuty, Config, IAM) and Kubernetes/EKS cluster hardening.
- Proficiency in scripting (Python, Bash) for automating security tasks in CI/CD pipelines.
- Hands-on experience with vulnerability management tools (e.g., Nessus, Trivy) and SIEM/XDR platforms.
- Strong knowledge of industry-standard frameworks for incident response and cloud security.
Nice to haves
While not specifically required, tell us if you have any of the following.
- Experience securing containerised workloads and serverless architectures.
- Familiarity with infrastructure-as-code (Terraform, CloudFormation) security practices.
- Ability to thrive in a small, agile team (2 members) with minimal supervision.