Brightwell · 1 day ago
Cybersecurity Engineer
Atlanta, GA
Full-time
Hybrid
Senior Level
7+ years expBrightwell is a pioneering payments company dedicated to providing innovative solutions and technology for global money transfers. They are seeking a senior Cybersecurity Engineer to lead SOC2 Type II and PCI DSS program execution while conducting security assessments and vulnerability management across applications and Azure infrastructure.
Enterprise SoftwareFinancial ServicesFinTechPayments
Responsibilities
Own SOC2 Type II program execution, including control design, audit preparation, and evidence collection in partnership with our Chief Compliance Officer
Develop and maintain information security policies, procedures, and control narratives aligned with SOC2 Trust Services Criteria and PCI DSS requirements
Lead risk assessments and security audits, ensuring documentation meets industry and regulatory requirements
Create and maintain technical documentation (network diagrams, system architecture, data flows) and conduct internal control testing
Serve as primary technical liaison with external auditors and manage PCI vulnerability scans and penetration testing
Conduct threat modeling, security assessments, and penetration testing of Azure-based applications and APIs, including code reviews focused on authentication, authorization, and data protection
Review, validate, and design security controls across Azure infrastructure, including Network Security Groups, firewalls, Azure AD/Entra ID, and Key Vault
Manage and optimize security tools (endpoint protection, SIEM, vulnerability scanners, automated testing platforms) and coordinate continuous vulnerability scanning and remediation with development and infrastructure teams
Investigate and respond to security incidents with root cause analysis and implement preventive measures
Partner with DevOps to integrate security into CI/CD pipelines
Evaluate and implement new security and automation technologies
Provide security training and guidance to promote a strong security culture
Qualification
Required
Bachelor's degree in Information Security, Computer Science, or related field (or equivalent experience)
7+ years of hands-on information security experience, preferably in financial services or highly regulated environments
Proven experience managing SOC2 Type II and PCI DSS compliance programs, including control design, policy development, and audit coordination
Strong technical skills in penetration testing, vulnerability assessments, and security code reviews
Experience with Azure security (Network Security Groups, Azure AD, Key Vault, Security Center) and security tooling (SIEM, vulnerability scanners, endpoint protection)
Experience investigating and responding to security incidents with strong analytical and problem-solving skills
Excellent communication skills with the ability to explain technical security concepts to both technical and non-technical stakeholders
Proven ability to work independently as a security subject matter expert
Preferred
Security certifications (CISSP, OSCP, CEH, GIAC, or Azure Security) are preferred but not required
Benefits
Medical
Dental
Vision
Disability
401(k)
Paid parental leave
PTO
And more
Company
Brightwell
Cross-border payments and financial services for businesses with globally dispersed employees
51-200 employees
H1B Sponsorship
Brightwell has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2021 (1)
Funding
Current Stage
Growth StageTotal Funding
unknown2009-12-10Acquired
Leadership Team
Larry Hipp
Chief Executive Officer
Recent News
The Journal Record
2025-12-19
2025-09-06
Company data provided by crunchbase