GRC Engineer, Security Compliance (Remote) | Career Opportunities | Brex
Open an account

Careers

GRC Engineer, Security Compliance (Remote)

GRC Engineer, Security Compliance (Remote)

Why join us

Brex is reimagining financial systems so every growing company can realize their full potential. As the financial OS, we’re building software and services in one place — disrupting long-entrenched institutions with products and experiences that better serve the ambitions of our customers.

Working at Brex allows you to push your limits, challenge the status quo, and collaborate with some of the brightest minds in the industry. We’re committed to building a diverse team and inclusive culture and believe your potential should only be limited by how big you can dream. We make this a reality by empowering you with the tools, resources, and support you need to grow your career.

Engineering at Brex

The Engineering team includes Data, IT, Security, and Software, and is responsible for building innovative products and infrastructure for Brex and our customers. We believe that engineers should accelerate the business through technology, and collaborate across multiple teams to accomplish that. 

Teams are autonomous, value inclusivity, eager to learn, teach and constantly improve how things work. The software we build today is the foundation for dozens of Brex systems in the future, so engineers have a strong sense of ownership and accountability and take pride in their craft. 

What you’ll do

Building world-class financial services requires world-class security. As a GRC Engineer on the Trust team, you will drive high-impact cross-organization governance, risk, and compliance initiatives. You’d advocate for security and privacy across the company, lead and scale Trust efforts while executing hands-on yourself.

GRC’s mission is to instill trust in Brex from our customers, regulators, partners, and workforce in order to enable the company’s continued growth by maturing our security posture, maintaining compliance, optimizing security practices, and mitigating enterprise risk. We serve as the business side of Trust, and of Compliance as the what, Governance as the how, and Risk as the why, of Trust. 

Responsibilities

The GRC team handles a wide range of cross-functional activities from security compliance certifications and audits to risk management, vendor reviews, inbound due diligence, security education, access control, policy and procedures, and many more. 

Each of these ongoing parallel activities entails interpreting and setting requirements, assessing the effectiveness of security controls, risk-based decision making, cross-functional collaboration and communication, and staying up-to-date on security best practices and how changes in the evolving threat landscape need to inform our strategy. We are seeking a colleague who strives to go above and beyond industry standards in every aspect of GRC. 

Responsibilities

  • Provide day-to-day compliance support for Security Audits such as SOC 2 Type II and PCI DSS as well as customer and partner due diligence. 
  • Help plan, manage, and execute existing control activities such as access reviews, penetration testing, and control mapping. 
  • Participate in planning new controls and improving on existing controls. 
  • Support engineering product design to ensure systems comply with the existing or future standards. 
  • Partner with the broader GRC and Security team to plan and execute on new initiatives.

Requirements

  • 1+ years of experience at technology, security, or risk focused companies
  • Familiarity with compliance or risk frameworks (SOC 1, SOC 2, PCI DSS, ISO 27001, NIST, FedRAMPetc)
  • Ability to work in a fast-paced environment and address difficult situations in a professional manner
  • Strong interpersonal skills and comfortable working across various functions
  • Being innovative and providing “outside of the box” solutions

Bonus Points

  • Participated in a SOC 2 or PCI DSS audit. 
  • Strong public speaking skills
  • Passion for having an owner’s mentality towards responsibilities
  • Curious about technology and driven to learn more about it
See Life @ Brex->
Open an account

Careers

GRC Engineer, Security Compliance (Remote)

GRC Engineer, Security Compliance (Remote)

Why join us

Brex is reimagining financial systems so every growing company can realize their full potential. As the financial OS, we’re building software and services in one place — disrupting long-entrenched institutions with products and experiences that better serve the ambitions of our customers.

Working at Brex allows you to push your limits, challenge the status quo, and collaborate with some of the brightest minds in the industry. We’re committed to building a diverse team and inclusive culture and believe your potential should only be limited by how big you can dream. We make this a reality by empowering you with the tools, resources, and support you need to grow your career.

Engineering at Brex

The Engineering team includes Data, IT, Security, and Software, and is responsible for building innovative products and infrastructure for Brex and our customers. We believe that engineers should accelerate the business through technology, and collaborate across multiple teams to accomplish that. 

Teams are autonomous, value inclusivity, eager to learn, teach and constantly improve how things work. The software we build today is the foundation for dozens of Brex systems in the future, so engineers have a strong sense of ownership and accountability and take pride in their craft. 

What you’ll do

Building world-class financial services requires world-class security. As a GRC Engineer on the Trust team, you will drive high-impact cross-organization governance, risk, and compliance initiatives. You’d advocate for security and privacy across the company, lead and scale Trust efforts while executing hands-on yourself.

GRC’s mission is to instill trust in Brex from our customers, regulators, partners, and workforce in order to enable the company’s continued growth by maturing our security posture, maintaining compliance, optimizing security practices, and mitigating enterprise risk. We serve as the business side of Trust, and of Compliance as the what, Governance as the how, and Risk as the why, of Trust. 

Responsibilities

The GRC team handles a wide range of cross-functional activities from security compliance certifications and audits to risk management, vendor reviews, inbound due diligence, security education, access control, policy and procedures, and many more. 

Each of these ongoing parallel activities entails interpreting and setting requirements, assessing the effectiveness of security controls, risk-based decision making, cross-functional collaboration and communication, and staying up-to-date on security best practices and how changes in the evolving threat landscape need to inform our strategy. We are seeking a colleague who strives to go above and beyond industry standards in every aspect of GRC. 

Responsibilities

  • Provide day-to-day compliance support for Security Audits such as SOC 2 Type II and PCI DSS as well as customer and partner due diligence. 
  • Help plan, manage, and execute existing control activities such as access reviews, penetration testing, and control mapping. 
  • Participate in planning new controls and improving on existing controls. 
  • Support engineering product design to ensure systems comply with the existing or future standards. 
  • Partner with the broader GRC and Security team to plan and execute on new initiatives.

Requirements

  • 1+ years of experience at technology, security, or risk focused companies
  • Familiarity with compliance or risk frameworks (SOC 1, SOC 2, PCI DSS, ISO 27001, NIST, FedRAMPetc)
  • Ability to work in a fast-paced environment and address difficult situations in a professional manner
  • Strong interpersonal skills and comfortable working across various functions
  • Being innovative and providing “outside of the box” solutions

Bonus Points

  • Participated in a SOC 2 or PCI DSS audit. 
  • Strong public speaking skills
  • Passion for having an owner’s mentality towards responsibilities
  • Curious about technology and driven to learn more about it
See Life @ Brex->

Careers

GRC Engineer, Security Compliance (Remote)

GRC Engineer, Security Compliance (Remote)

Why join us

Brex is reimagining financial systems so every growing company can realize their full potential. As the financial OS, we’re building software and services in one place — disrupting long-entrenched institutions with products and experiences that better serve the ambitions of our customers.

Working at Brex allows you to push your limits, challenge the status quo, and collaborate with some of the brightest minds in the industry. We’re committed to building a diverse team and inclusive culture and believe your potential should only be limited by how big you can dream. We make this a reality by empowering you with the tools, resources, and support you need to grow your career.

Engineering at Brex

The Engineering team includes Data, IT, Security, and Software, and is responsible for building innovative products and infrastructure for Brex and our customers. We believe that engineers should accelerate the business through technology, and collaborate across multiple teams to accomplish that. 

Teams are autonomous, value inclusivity, eager to learn, teach and constantly improve how things work. The software we build today is the foundation for dozens of Brex systems in the future, so engineers have a strong sense of ownership and accountability and take pride in their craft. 

What you’ll do

Building world-class financial services requires world-class security. As a GRC Engineer on the Trust team, you will drive high-impact cross-organization governance, risk, and compliance initiatives. You’d advocate for security and privacy across the company, lead and scale Trust efforts while executing hands-on yourself.

GRC’s mission is to instill trust in Brex from our customers, regulators, partners, and workforce in order to enable the company’s continued growth by maturing our security posture, maintaining compliance, optimizing security practices, and mitigating enterprise risk. We serve as the business side of Trust, and of Compliance as the what, Governance as the how, and Risk as the why, of Trust. 

Responsibilities

The GRC team handles a wide range of cross-functional activities from security compliance certifications and audits to risk management, vendor reviews, inbound due diligence, security education, access control, policy and procedures, and many more. 

Each of these ongoing parallel activities entails interpreting and setting requirements, assessing the effectiveness of security controls, risk-based decision making, cross-functional collaboration and communication, and staying up-to-date on security best practices and how changes in the evolving threat landscape need to inform our strategy. We are seeking a colleague who strives to go above and beyond industry standards in every aspect of GRC. 

Responsibilities

  • Provide day-to-day compliance support for Security Audits such as SOC 2 Type II and PCI DSS as well as customer and partner due diligence. 
  • Help plan, manage, and execute existing control activities such as access reviews, penetration testing, and control mapping. 
  • Participate in planning new controls and improving on existing controls. 
  • Support engineering product design to ensure systems comply with the existing or future standards. 
  • Partner with the broader GRC and Security team to plan and execute on new initiatives.

Requirements

  • 1+ years of experience at technology, security, or risk focused companies
  • Familiarity with compliance or risk frameworks (SOC 1, SOC 2, PCI DSS, ISO 27001, NIST, FedRAMPetc)
  • Ability to work in a fast-paced environment and address difficult situations in a professional manner
  • Strong interpersonal skills and comfortable working across various functions
  • Being innovative and providing “outside of the box” solutions

Bonus Points

  • Participated in a SOC 2 or PCI DSS audit. 
  • Strong public speaking skills
  • Passion for having an owner’s mentality towards responsibilities
  • Curious about technology and driven to learn more about it
See Life @ Brex->