Compliance Software Engineer

We are seeking a talented and detail-oriented Compliance Software Engineer to join our growing team. As a key member of our organization, you will bridge the gap between software development and regulatory compliance, ensuring our products meet industry standards while maintaining technical excellence.

Role Overview

In this position, you will work closely with both development and product teams to implement, maintain, and validate compliance controls across our PHP and JavaScript/TypeScript-based applications. You will be instrumental in guiding our compliance strategy while actively contributing to our codebase.

Key Responsibilities

  • Develop and enhance security controls in our PHP and JS/TS applications to meet requirements across multiple compliance frameworks such as SOC2, HIPAA, CASA, and more.
  • Work alongside development teams to implement compliant code solutions and integrate security best practices into the development lifecycle
  • Create and maintain automated tools and scripts to validate compliance controls and generate evidence for audits
  • Participate in technical discussions with third-party auditors and assessors, representing our engineering perspective
  • Prepare comprehensive technical documentation and reports for compliance assessments
  • Conduct code reviews with a focus on security and compliance requirements
  • Stay current on evolving compliance standards and translate them into actionable development tasks

Qualifications

  • 3+ years of software development experience with PHP and JavaScript/TypeScript
  • Demonstrable experience implementing technical controls for at least one major compliance framework (SOC2, HIPAA, HITRUST CSF, PCI, ISO27001, et al.)
  • Strong understanding of secure coding practices and common security vulnerabilities (OWASP)
  • Familiarity with automated testing and continuous integration/deployment workflows
  • Knowledge of cloud security principles and practices (AWS)
  • Strong communication skills with the ability to translate technical concepts for both technical and non-technical stakeholders

Preferred Qualifications

  • Experience with security automation tools and compliance monitoring solutions
  • Background in healthcare technology or financial services compliance
  • Familiarity with frameworks like Laravel
  • Security certifications (CISSP, CISA, CEH) or compliance certifications
  • Experience participating in formal security audits or assessments

What We Offer

  • Opportunity to shape compliance strategy in a growing organization
  • Collaborative environment where your input directly impacts product security
  • Professional development support for continuing education in compliance and security
  • Competitive salary and benefits package
  • Remote work flexibility

Position

This is a full-time remote position. We’re used to working as a dispersed team so you must be cool with collaborating online and a lot over text. We’re flexible on schedules, but at least 4 hours of overlap with a core of your team is mandatory.

How to Apply

Apply here!

Check OutMore Work

Seen enough? Get An Estimate