Security Compliance Engineer



La superapp Yassir propose des services de transport, de livraison et de paiement pour vous simplifier la vie

View company page

About Yassir

Yassir is the leading super App for on demand, ride-hailing, last-mile delivery, payment services and more, set to change the way daily services are provided. It currently operates in 45 cities across multiple countries. It has raised $150 million in Series B funding, five times what it raised in its previous priced round last November with world class investors such as BOND and Y Combinator, which is the precursor of the likes of Airbnb, Stripe, Dropbox, Doordash, among others. 

We’re not just about serving people - we’re about creating a marketplace to bring people what they need while infusing social values.

About The Role

We are seeking a highly skilled and experienced Security Compliance Engineer to join us. Having experience with financial and payment services is a plus. The ideal candidate will have in-depth understanding of security principles, knowledge of compliance frameworks, and the technical expertise to implement security measures across the organization. You will be responsible for ensuring that our organization’s systems, processes, and policies adhere to established security standards and regulations. You will be part of the Financial services team so relevant industry experience will be a major advantage.

About your role as Security Compliance Engineer

-Security Compliance Frameworks: Familiarize and stay updated with national and international security standards and regulations such as ISO 27001, GDPR, PCI DSS, NIST, SOC 2, etc.
-Conduct routine security compliance audits and risk assessments to detect vulnerabilities and ensure alignment with security best practices and relevant regulations.
-Create, maintain, and review security policies, procedures, and compliance documentation. This includes System Security Plans (SSPs), Risk Assessment Reports, and Plans of Action & Milestones (POA&Ms).
-Work with IT and development teams to ensure that technical controls are implemented in accordance with compliance requirements.
-Participate in security incident response activities, ensuring that incidents are handled in compliance with established policies and that all required reporting is accurate and timely.
-Collaborate with other departments and stakeholders to promote security awareness and ensure that security and compliance considerations are integrated into all business processes.
-Stay abreast of the latest security trends and emerging threats, and recommend improvements to the organization’s security posture and compliance programs.
-Deliver security and compliance training programs to employees, ensuring everyone is aware of and understands their responsibilities.
-Review third-party vendors for compliance with the organization’s security standards and collaborate with procurement to ensure security clauses are present in contracts.
-Provide regular reports to senior management on the status of security compliance initiatives, vulnerabilities, and mitigation strategies. 

About your experience

Bachelor’s or master’s degree in Information Security, Computer Science, or a related field or proven experience on the field
Relevant security certifications such as CISSP, CISA, CISM, or equivalent are highly desirable.
Minimum of 3-5 years of experience in security compliance, information security, or a related role.
Strong knowledge of security compliance standards and regulations.
Demonstrable experience in risk management and audit processes.
Excellent verbal and written communication skills.
Strong analytical and problem-solving capabilities.
Proficiency in security tools and technologies.
Work experience in international finance company will be an advantage.

Personal Attributes:
1. A proactive, self-starter with the ability to work independently.
2. Detail-oriented with a strong commitment to quality.
3. Ability to handle sensitive information with discretion and integrity.
4. Strong interpersonal skills with the ability to work collaboratively in a team environment. 

Why you should join Yassir

😎 You will be part of one of the first Algerian startups to go through the Y Combinator program and one of the fastest-growing tech companies in North Africa. We are current in +30 cities (Algeria, Tunisia, Morocco, Senegal, France and Germany)
💸 Attractive salary and you even get a stake in the company
🤙🏽Have a lasting impact on our company's culture
🚀 Perfect timing with renowned investors to build something great
📈 Extremely steep learning curve with own responsibility and intensive guidance
💯 Make a real impact on the world by helping us bring affordable financial and on-demand services to millions of Africans
Research shows that women do not apply to jobs if they do not meet all of the requirements. We would like to hear from you if you feel you would be a good fit for us!
Do you want to become part of our first-class team? Then you absolutely have to send us your application. 🚀
PS: And if you want to stand out in your application, just let us know in your cover letter why we should have in our team
Do you want to become part of our first-class team? You should definitely send us your application. 🚀

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Audits CISA CISM CISSP Compliance Computer Science Finance GDPR Incident response ISO 27001 NIST PCI DSS Risk assessment Risk Assessment Report Risk management SOC SOC 2 System Security Plan Vulnerabilities

Perks/benefits: Career development

Region: Remote/Anywhere
Job stats:  64  9  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.