
Search by job, company or skills

About Bureau
Bureau is a unified risk decisioning platform for Compliance, Fraud, and Transaction risks. Our platform is a single decision-making engine, powered by a 1 billion+ identity knowledge graph. Over 150 Banks, fintechs, retailers, and digital platforms use Bureau to verify identities faster and stop fraud earlier globally.
Bureau has raised $50M+ from renowned Silicon Valley and global investors including Sorenson Capital and PayPal Ventures and is expanding rapidly from APAC to Americas, Europe, and beyond.
Why Bureau
Bureau is building the infrastructure that makes digital identities and transactions safe and trustworthy for billions of people. The mission is big, the problems are complex, and the impact is real.
We hire people who want that level of responsibility. People who move fast, build systems from scratch, and care deeply about turning strategy into execution. If you want predictability or narrow scope, this won't be your place. If you want to shape how a scaling global company operates—keep reading.
About the Role
We are looking for a Security Engineer who can own both the hands-on technical security stack and our governance/compliance programs.
What you'll be doing
In this role, you will:
This is ideal for someone who doesn't want to be only checklist GRC or only pure blue-team, but wants a blended role across security engineering + GRC.Key Responsibilities
1. Cloud & Infrastructure Security (Hands-on)
2. Vulnerability Management & Security Operations
3. Governance, Risk & Compliance (ISMS, Audits, DPDP)
4. Access, Asset & Control Assurance
What You'll Bring
Preferred (Good to Have) / Willing to Learn
Who You Are
Our Culture
Compensation
Job ID: 150954617
Skills:
cloud security, Apis, network security, Terraform, Vulnerability Management, Linux System Administration, Iam, Scripting, infrastructure-as-code, SASE
Skills:
Google Cloud, Owasp Top 10, Java Script, Azure Cloud, Python, Secure Development Lifecycle Management, SANS top 25, Security Requirements Application Threat Modeling, Security Design requirements, Application Security Risk Assessments, CWE, Application security tools and systems, Static Analysis
Skills:
Splunk Administration, Onboarding new data sources, Splunk Cloud Administration, Experience writing in Python, Indexer Clustering, Jira Service Desk, Splunk SOAR, ServiceNow for issue tracking and resolution, Using GitHub repositories, Search Head Clustering, Splunk Enterprise Security configuration and tuning, Patching configuration and maintenance
Skills:
information security engineering , secure sdlc , Google Cloud, Owasp Top 10, Azure Cloud, Python, Secure Development Lifecycle Management, SANS top 25, Security Requirements Application Threat Modeling, Security Design requirements, Application Security Risk Assessments, CWE, Application security tools and systems, Static Analysis
Skills:
, Iso 27001, Penetration Testing, Jira, Microsoft 365, Vulnerability Assessments, AWS, Grc, Azure, customer assurance, IT risk compliance, Third-Party Risk Management, Audit Support, security policies and procedures, SOC 2 Type 2
We don’t charge any money for job offers