Platform Security Engineer - SOC2 Certification Maintenance

Skills

Job Specifications

Title: Platform Security Engineer - SOC2 Certification Maintenance

Location: Labège, Toulouse, France (Hybrid – 3 days in a week)

Long-Term Contract.

Job Description:

we are looking for a Security Engineer to ensure maintenance of our SOC2 certification within the new scope. You will be responsible for adapting our security controls, documenting infrastructure changes related to the merger, and ensuring continuous compliance during and after the transition period.

Responsibilities

SOC2 Certification Maintenance (Primary Focus):

• Analyze the impact of the merger on current SOC2 certification scope

• Identify infrastructure, process, and control changes related to our integration

• Adapt and update existing SOC2 controls to reflect the new environment

• Document all system, process, and policy changes within the SOC2 framework

• Collaborate with integration Product teams to align security and compliance practices

• Organize evidence necessary for SOC2 Type 2 audit

• Identify and address compliance gaps discovered during transition

• Implement or adapt automated controls to maintain continuous compliance

• Train teams on new security and compliance procedures

• Prepare compliance reports and presentations for stakeholders

• Coordinate with IT, DevOps, and Engineering teams for control implementation

Profile Requirements:

• Bachelor’s degree in computer engineering or related field

• Minimum 5 years of experience in information security and compliance

• Expertise in SOC2 frameworks (Trust Services Criteria) and compliance audits

• Hands-on experience in preparing and maintaining SOC2 Type 1 and Type 2 certifications

• Deep understanding of security controls (access control, change management, monitoring, incident response)

• Experience in documentation and evidence collection for external audits

• Knowledge of complementary security standards (ISO 27001, NIST, CIS Controls)

• Experience with GRC tools (ServiceNow GRC, Vanta, Drata, Secureframe)

• Skills in risk assessment and impact analysis

• Ability to work with external auditors and respond to compliance questionnaires

• Excellent documentation and communication skills

• Ability to explain security concepts to non-technical audiences

• Proficiency in Engslish (oral and written)

About the Company

Ampstek supplies thousands of tech and digital professionals annually to a range of clients through its offices which spread across in 42 countries. From simple beginnings in 2014, Ampstek has always been on a journey to reinvent the world of recruitment through creating amazing customer and candidate experiences driven by a genuine desire to build long term relationships and outcomes. This motivation to break from the pack is stronger than ever as we roll out Ampstek Power globally, an innovative life hub platform for freel... Know more

Related Jobs

Company Name

STATION F

Job Title

DIRECTOR OF IT & INFORMATION SECURITY

Paris, France

On site

Freelance

22-01-2026

Company Name

DOCAPOSTE

Job Title

Ingénieur Cybersécurité - SOC Builder F/H

Ivry-sur-seine, France

On site

Full Time

06-01-2026

Company Name

sunday

Job Title

Head of Security

Paris, France

Remote

Full Time

03-12-2025