{"schemaVersion":"jobsearcher.job.v1","id":"fca6e0ec1e0fecb87788accb","url":"https://jobsearcher.com/jobs/fca6e0ec1e0fecb87788accb","canonicalUrl":"https://jobsearcher.com/jobs/fca6e0ec1e0fecb87788accb","title":"DevOps and Security Engineer","description":"Security & Compliance Engineer for Cloud Product and Internal Systems\nAt Vouched, we are building an identity verification platform for developers. Companies use Vouched to verify identity while onboarding and authenticating users. We make identity verification easy with a combination of machine learning and data checks. Our customers leverage our APIs, integrations, and no-code solution to onboard customers to their systems. At Vouched, your work provides people with frictionless and fair access to healthcare, financial services, and work opportunities.\nWhat We Do\nWe automate identity verification at scale and are growing fast\nWe service early-stage startups, unicorns, and large enterprises, with a focus on the developer experience. Check out our docs here to learn how our customers use our platform\nWe run on a modern cloud infrastructure powered by automated integration and unit testing, provisioning, deployments, monitoring, and notifications\nWe prioritize our work using light weight methodologies and collaborative communications\nWhat You'll Do\nWe need someone who can drive security & compliance engineering across the organization. This includes ensuring our Google Cloud Platform (GCP) infrastructure, applications and IT processes are secure and compliant with ISO 27001 and SOC 2 Type II and are following best security practices.\nWe already have a great foundation - we’re compliant with ISO 27001 and SOC 2 Type II and we have Vanta, Rippling in place and integrated with our systems to ensure policies and controls are implemented. We need someone to manage this and continue to automate and implement it as we scale our product infrastructure.\nWork closely with our engineering team ensures we’re building and operating the product in a secure and compliant way\nPerform and automate security and compliance processes (managed via Vanta)\nFacilitate annual audits with proof that our controls are in place for audits both for internal process reviews and for auditors\nHelp our customer-support team answer questions related to security and privacy questionnaires\nHelp our engineering team automate everything from commit to production such that things are tested, reliable, and secure and moving fast\nEnsure that our cloud applications from Google Workspaces/GSuite to Salesforce to Slack to Snowflake are all integrated with our SSO\nHandle provisioning or deprovisioning employees or contractors through our systems (all managed via Rippling)\nAssist engineering debugging and troubleshooting issues in our production infrastructure\nParticipate in infrastructure on-call rotations\nRequirements\nInfrastructure and/or DevOps engineering experience, including security\nExperience automating ISO 27001 and SOC 2 Type 2 (or similar) technical requirements\nExperience managing the lifecycle of compliance processes\nExperience with scripting languages (e.g., Python, Bash) and infrastructure as code (IaC) principles\nExpertise in cloud infrastructure (e.g., AWS, Azure, GCP) and automation tools (e.g., Terraform, Ansible)\nExperience with deploying and supporting containerize applications (e.g., Kubernetes, ECS)\nCI/CD processes on production cloud infrastructure, i.e. AWS or GCP\nUnderstanding of asynchronous and distributed microservices architectures\nBenefits\nFlexible paid time off\nHealthcare\nVision\nEquity compensation\nFlexible remote, work-from-home arrangements\nParental leave\n$150,000 to $200,000 OTE\nThis is a remote role - however, you must be based in the US (US work authorization required)","company":"Vouched","rawCompany":"vouched","city":"Remote","state":"OR","isRemote":false,"isActive":false,"createdAt":"2026-04-12T20:27:08.140Z","occupations":[{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"},{"code":"15-1299.08","title":"Computer Systems Engineers/Architects","slug":"computer-systems-engineers-architects"},{"code":"15-1252.00","title":"Software Developers","slug":"software-developers"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"513210","title":"Software Publishers","slug":"software-publishers"},{"code":"541511","title":"Custom Computer Programming Services","slug":"custom-computer-programming-services"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"DevOps and Security Engineer","description":"Security & Compliance Engineer for Cloud Product and Internal Systems\nAt Vouched, we are building an identity verification platform for developers. Companies use Vouched to verify identity while onboarding and authenticating users. We make identity verification easy with a combination of machine learning and data checks. Our customers leverage our APIs, integrations, and no-code solution to onboard customers to their systems. At Vouched, your work provides people with frictionless and fair access to healthcare, financial services, and work opportunities.\nWhat We Do\nWe automate identity verification at scale and are growing fast\nWe service early-stage startups, unicorns, and large enterprises, with a focus on the developer experience. Check out our docs here to learn how our customers use our platform\nWe run on a modern cloud infrastructure powered by automated integration and unit testing, provisioning, deployments, monitoring, and notifications\nWe prioritize our work using light weight methodologies and collaborative communications\nWhat You'll Do\nWe need someone who can drive security & compliance engineering across the organization. This includes ensuring our Google Cloud Platform (GCP) infrastructure, applications and IT processes are secure and compliant with ISO 27001 and SOC 2 Type II and are following best security practices.\nWe already have a great foundation - we’re compliant with ISO 27001 and SOC 2 Type II and we have Vanta, Rippling in place and integrated with our systems to ensure policies and controls are implemented. We need someone to manage this and continue to automate and implement it as we scale our product infrastructure.\nWork closely with our engineering team ensures we’re building and operating the product in a secure and compliant way\nPerform and automate security and compliance processes (managed via Vanta)\nFacilitate annual audits with proof that our controls are in place for audits both for internal process reviews and for auditors\nHelp our customer-support team answer questions related to security and privacy questionnaires\nHelp our engineering team automate everything from commit to production such that things are tested, reliable, and secure and moving fast\nEnsure that our cloud applications from Google Workspaces/GSuite to Salesforce to Slack to Snowflake are all integrated with our SSO\nHandle provisioning or deprovisioning employees or contractors through our systems (all managed via Rippling)\nAssist engineering debugging and troubleshooting issues in our production infrastructure\nParticipate in infrastructure on-call rotations\nRequirements\nInfrastructure and/or DevOps engineering experience, including security\nExperience automating ISO 27001 and SOC 2 Type 2 (or similar) technical requirements\nExperience managing the lifecycle of compliance processes\nExperience with scripting languages (e.g., Python, Bash) and infrastructure as code (IaC) principles\nExpertise in cloud infrastructure (e.g., AWS, Azure, GCP) and automation tools (e.g., Terraform, Ansible)\nExperience with deploying and supporting containerize applications (e.g., Kubernetes, ECS)\nCI/CD processes on production cloud infrastructure, i.e. AWS or GCP\nUnderstanding of asynchronous and distributed microservices architectures\nBenefits\nFlexible paid time off\nHealthcare\nVision\nEquity compensation\nFlexible remote, work-from-home arrangements\nParental leave\n$150,000 to $200,000 OTE\nThis is a remote role - however, you must be based in the US (US work authorization required)","datePosted":"2026-04-12T20:27:08.140Z","dateModified":"2026-04-12T20:27:08.140Z","hiringOrganization":{"@type":"Organization","name":"Vouched","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Remote","addressRegion":"OR","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"fca6e0ec1e0fecb87788accb"},"url":"https://jobsearcher.com/jobs/fca6e0ec1e0fecb87788accb"}}