← Back to jobs
Overstory
Overstory

Senior Security Engineer

otherfull-timeRemote: United States | Canada
SALARY
Not listed
WORK TYPE
remote
JOB TYPE
full-time
INDUSTRY
climate
Apply for this position
✦ AutoApply Let us apply to roles like this on your behalf.
Learn more

About the role

Role & Team

As our inaugural Senior Security Engineer, you will play a critical role in safeguarding Overstory’s systems, data, and reputation. Partnering closely with your manager - the Director of Information Security and Compliance - you will take ownership of our security and compliance posture, and define, implement, and continuously improve our security program.

You will lead initiatives across vulnerability management, compliance, and security operations, while acting as a trusted partner to engineering, product, and business teams. This role is ideal for someone who combines hands-on technical expertise with a strategic mindset and enjoys building scalable security practices in a growing company.

Time Zone Requirement: Eastern North America (NST, AST, EST)

What You’ll Do

  • Own and evolve Overstory’s compliance program, ensuring ongoing alignment with SOC 2, ISO 27001, and other relevant frameworks
  • Drive vulnerability management end-to-end, from detection to remediation, working closely with engineering teams to prioritize and resolve risks efficiently
  • Design and improve security processes and controls across infrastructure, applications, and internal systems
  • Lead security input in architecture and engineering decisions, helping teams build secure-by-design systems
  • Oversee and improve identity and access management, endpoint security, and core IT security practices
  • Own vendor security and third-party risk management, including assessments, risk evaluation, and mitigation strategies
  • Lead audit readiness and execution for SOC 2 and ISO 27001, including control design, evidence collection, and auditor coordination
  • Partner with customer-facing teams to handle security questionnaires and build scalable, high-quality response processes
  • Contribute to security awareness and culture, mentoring others and raising the security bar across the organization

Skills & Experience

  • 5+ years of experience in security engineering, security operations, or a related field
  • Direct experience with security and compliance frameworks such as SOC 2 and/or ISO 27001, including audit processes
  • Deep experience with vulnerability management, including tooling,
✦ Let us apply for you
We find roles like this and apply on your behalf. Cover letter written for each one. Plans from $14.99/mo. Cancel anytime.
Join waitlist
Apply now
Senior Security Engineer at Overstory — Remote