Hello, we are Atlan! 👋
A home for data teams around the world. 🏠 Atlan makes it easier for diverse data users – business users, product managers, analysts, and engineers – to collaborate effectively. (Think of what Salesforce is for sales teams or GitHub for engineering teams). (Check out our
website,
product tour, and
docs.)
Built for the humans of data, by the humans of data
At Atlan, we started as a data team ourselves tackling problems like national healthcare and poverty alleviation with data science. (Check out our
TEDx talk and
case studies.)
The problem: After working on 200+ data projects, we learned how tough it was to scale data teams. Data teams are one of the most interdisciplinary teams ever created. They're made up of analysts, data scientists, engineers, business users – diverse people with their own tooling preferences, skill sets, and "DNA" that need to come together. This leads to collaboration chaos.
We were awoken with crisis calls every second day for the minutest of issues — from troubleshooting why a number on a dashboard was incorrect to difficulties in getting access to the right data set! Atlan started with us building tools to make our own data team more agile.
These tools made our team 6x more agile, helping us take on amazing projects like building India's National Data Platform used by India's Prime Minister. The best part — this was built by an eight-member team, the fastest project of its kind to go live, in a record twelve months instead of the projected three years.
💡 We asked, could the tooling we built for ourselves help data teams around the world? That's how Atlan was born. We're on a mission to help data teams around the world do their lives' best work.
🚀 We're growing fast
In the last few months, we have onboarded some dream customers, started working with some amazing partners, and watched as our team spread across 10+ countries.
Atlan was named a Gartner Cool Vendor in DataOps, one of the top three companies globally (and one of the fastest companies to make the list 🌏). We were also named in Gartner’s inaugural Market Guide for Active Metadata and as a Top 5 Global Innovator in DataOps by IDC.
We're backed by top investors (like Insight Partners, Sequoia, and Waterbridge) and the shapers of the modern data stack (including the founders and CEOs of Snowflake, Looker, Stitch, and DataRobot) as our early investors. 🏅
We build with all our ❤️
We believe that data teams deserve fundamentally better software experiences. Data is chaos, but that doesn't mean that work should be! 🌟
Love what Superhuman, Slack, Notion, Quip, and Figma have done for the modern workplace? Come build the future for data teams with Atlan!
What will you do?
- As a Senior GRC Engineer you will play a critical role in fortifying our security infrastructure, ensuring compliance with industry standards such as SOC 2, HIPAA, GDPR, and ISO27001, and implementing cutting-edge security practices like Policy as Code and Shift Left Security.
- Compliance and Standards:
- Lead efforts to maintain and enhance compliance with industry standards, including SOC2 Type2, HIPAA, GDPR, ISO27001, and USDPI.
- Stay updated with current regulatory changes and ensure our security practices align with evolving requirements.
- Build a unified compliance framework (UCF) that captures cybersecurity, data protection, and business continuity risks.
- Create policies and processes in collaboration with security engineers to comply with the UCF, covering cloud security, application security, endpoint security, and data privacy.
- Set up a review of all policies in practice to ensure all policies are always adhered to. Review and validate that the appropriate approach and solution is taken to address the security and privacy risks/policies.
-
Data Privacy:
- guide various teams on data protection practices. Review legal documents related to security/privacy as and when required.
- Be the subject matter expert (SME) for security and privacy compliance and address queries/scenarios that might arise from different departments.
- Stay up to date with security compliance frameworks and best practices to contribute towards the overall security posture of Atlan.
- Policy as a Code
- Identify the opportunities for implementing Policy as a Code, to minimise manual intervention.
- Partner with security engineers to drive the implementation of Policy as Code methodologies to automate and enforce security policies throughout the organization.
- Shift Left Security
- Advocate and identify Shift Left Security practices to embed security into the early stages of the development lifecycle.
- Partner with security engineers across Cloud Infra and IT team in driving implementation of shift left security practices, such as :Embedding security practices in SDLC & Cloud infrastructure.
- Embedding the GRC team approvals/reviews in day-to-day processes to enable better governance.
- GRC Tools
- Utilise GRC tools such as Vanta, to streamline security processes and enhance efficiency.
- Maintain a good security score on VANTA by coordinating with different stakeholders.
- Evaluate and implement additional tools to support the automation of security tasks and assessments.
- Training / Awareness
- Create security and privacy training and awareness content and deliver training through creative and innovative means to create maximum impact.
-
Vendor and Client Security Assessment - Carry out assessments as and when required.
- ARR Improvement
- Collaborate with stakeholders to enhance Annual Recurring Revenue (ARR) through improved security measures.
- Implement security strategies that align with organizational goals and customer expectations.
What makes you a great match for us? 😍
- Overall 8-12 years of experience.
- .B.E / B.Tech or equivalent.
- High flexibility to adopt start-up culture and be ready to solve every problem that comes your way and not limit your learning and potential to thrive.
- Of the overall experience, 4-5 years of working with a startup will be a plus point.
- Proven experience demonstrating a deep understanding of security frameworks (SOC 2, HIPAA, GDPR, ISO27001, USDPI) and Policy as Code
- Experience identifying and driving the "Shift Left Security" culture
- Proficiency with GRC automation tools (Vanta) and a strong understanding of ISO Security Standards
- Excellent communication and collaboration skills – you'll be working closely with various teams across the organization
- Adaptability to a flexible work environment with global stakeholders across different geos
- Prior experience creating and implementing a Unified Compliance Framework (UCF) with a heavy focus on improving cyber security posture for SaaS organizations
- High Ownership and ability to run multiple security projects simultaneously
- Ability to go the extra mile being flexible to drive measurable improvements to Atlan's security posture keeping business objectives in mind.