Security and Compliance Engineer

About the Role

We are looking for a Security & Compliance Engineer to help ensure security across our internal digital landscape. Reporting to Tacton’s Security & Compliance Manager, you will play a key role in ensuring that our systems, integrations, data flows, and vendor ecosystem are secure by design and in operation.

This role focuses on internal systems and corporate security architecture, including infrastructure, integrations, and third-party services. You will combine architectural thinking with hands-on expertise and act as a trusted partner to IT, Engineering, and business stakeholders.

You will have a direct impact on how we design, connect, and secure our systems as we continue to grow globally. This is a high-impact role for someone who understands modern digital environments and how to secure them end-to-end.

What You Will Do Internal Security & Risk

Lead security assessments of systems, integrations, and data flows

Conduct technical risk analyses for system implementations and vendor onboarding

Perform threat modelling and security reviews

Define and implement security requirements for infrastructure and cloud environments

Help establish and maintain security guardrails across identity, access, encryption, and integrations

Proficiency in risk management

Knowledge of emerging cybersecurity threats and trends

Vendor & Third-Party Security

Define and enforce security requirements in procurement processes

Conduct supplier security assessments and due diligence

Evaluate third-party risks from a cybersecurity perspective

Governance & Compliance

Maintain alignment with ISO 27001 and SOC 2 Type II

Contribute to policies, standards, and security guidelines

Support incident investigations

Act as a subject matter expert in audits and internal forums

What Will Help You Thrive

5+ years of experience in cybersecurity, information security, or a related field

Strong technical foundation in cloud, networking, identity & access man