Key skills
AgenticDatabricksOAuthSSOSaaSJira
About this role
Hatch Pros is seeking a Security Engineer to enhance their enterprise security and GRC capabilities. The role involves managing security reviews, conducting thorough assessments, and ensuring efficient ticket progression within structured workflows.
Responsibilities:
- Ticket queue management — Actively working the EntSec review queue, ensuring tickets don't age past SLA targets
- Due diligence — Thorough security assessments on every review (vendor posture, data flows, access controls, compliance requirements) with documented rationale
- Efficient ticket progression — Moving tickets through the workflow (intake → review → implementation requirements → validation → closure) without unnecessary delays
- Documentation — Capturing review decisions, implementation requirements, and institutional knowledge so nothing is lost when the engagement ends
- Process handoff — By month 6, the review process and any patterns identified should be fully documented and transferable
Requirements:
- Enterprise security and/or GRC experience
- Need LinkedIn Profile (must have viewable headshot)
- Comfortable working in Jira and following structured review workflows
- Ticket queue management — Actively working the EntSec review queue, ensuring tickets don't age past SLA targets
- Due diligence — Thorough security assessments on every review (vendor posture, data flows, access controls, compliance requirements) with documented rationale
- Efficient ticket progression — Moving tickets through the workflow (intake → review → implementation requirements → validation → closure) without unnecessary delays
- Documentation — Capturing review decisions, implementation requirements, and institutional knowledge so nothing is lost when the engagement ends
- Process handoff — By month 6, the review process and any patterns identified should be fully documented and transferable
- Familiar With SaaS security reviews
- OAuth
- Vendor risk assessments
- Trending Agentic AlLLM / agent integration
- Third party tools as part of the dataflow (Databricks and slack)
- Identity/access controls (SSO/SCIM, encryption, RBAC, audit logging)
- BIG PLUS: any solid Databricks/Security experience would be 'the icing on the cake'