Security Compliance Specialist

Founded in 2000, JetBrains is a global software vendor that provides some of the most effective and trusted developer tools. Our products help make many of the world's most dynamic companies and individuals more creative and productive, and over 11.4 million developers already use our products. At JetBrains, we are passionate about creating tools that help individuals and teams grow, discover, and create.

Our Security team is responsible for several domains, such as the security of JetBrains products, infrastructure security, and ensuring ongoing compliance with industry best practices, including the SOC 2 Type II framework. We are currently looking for a Security Compliance Specialist to help improve our processes.

As part of our team, you will: 

• Handle customer requests related to vendor due diligence processes.
• Evaluate third parties (vendors, suppliers, etc.) to make sure they comply with JetBrains' security requirements.
• Improve security checks of suppliers during the procurement process.
• Help our Legal team review contract sections related to security.
• Collaborate with internal teams to address security compliance gaps and remediate issues.
• Take part in projects related to security compliance certifications, including external audits and internal self-assessments.
• Draft and maintain security compliance documentation.
• Implement and monitor security compliance procedures, following the SOC 2 requirements and industry best practices.
• Execute a robust information security risk management program, including by conducting risk assessments in accordance with SOC 2, the NIST RMF, and industry best practices.
• Provide guidance to remediate identified risks and ensure ongoing compliance.

We’d love for you to join our team if you have: 

• Proven experience in security compliance.
• Knowledge of various security and privacy standards and regulations (SOC 2, ISO 27001, NIS 2, DORA, the NIST CSF, the NIST SSDF, etc.).
• A degree in computer science, information technology, or a relevant discipline.
• Fluent level of English with good writing skills.
• Analytical and problem-solving skills, as well as a results-oriented approach.

We’d be particularly thrilled if you have: 

• Experience passing security compliance audits (SOC 2, ISO 27001).
• Skills and experience in web, network, and infrastructure security approaches.
• Experience in process automation.
• Experience with JetBrains products.
• Relevant security certifications (CRISC, CISA, CISSP, etc.).

#LI-DNI

We process the data provided in your job application in accordance with the Recruitment Privacy Policy.