Logo for TableCheck

Security & Compliance Engineer

Role overview

Qualifications

  • 3+ years in security compliance, risk, or governance roles
  • Hands-on experience with compliance automation platforms
  • Deep understanding of security frameworks and standards
  • Strong written and verbal communication skills

Responsibilities

  • Own and lead end-to-end implementation, maintenance, and renewal of compliance programs
  • Develop, maintain, and enforce security policies and procedures
  • Conduct regular risk assessments and internal audits
  • Manage third-party risk assessments and vendor security reviews

Key facts

Other skills

  • Security Policies
  • Communication
  • Collaboration
  • Problem Solving

About the company

TableCheck logo

TableCheck

TableCheck empowers worldwide hospitality. Our restaurant booking and guest experience platform helps restaurants and hospitality operators drive long-term success for their businesses. Today, we are proudly serving more than 9000+ clients in over 35 countries including 280+ Michelin-starred restaurants.Founded in 2011, our company has now become the standard solution for restaurants and hospitality businesses around the world to drive guest loyalty and revenue. Our roster of global clients includes Hilton Hotels & Resorts, Intercontinental Hotels & Resorts, Minor Hotels Hyatt, Andaz, Fogo, Pizza 4P's, Tony Roma's, Bills and etc.Whether it is a large-scale hotel, an enterprise, or a small-scale restaurant, we have all the right tools to help bring their business to the next level. Email: info@tablecheck.com

Company details

Company typeSME
Company size51 - 200

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

TableCheck, Japan's leading restaurant reservation management platform, is seeking a Security & Compliance Engineer. As a member of our Site Security squad as part of the Site Reliability Engineering team, you will lead our security posture, compliance programs, and risk governance — ensuring TableCheck meets the highest standards of data protection and regulatory compliance.

We run a robust and fault-tolerant infrastructure built on Amazon Web Services (AWS). TableCheck has embraced remote work, and as such, communication and documentation are in our blood. We look for and write about signals in the noise which enables us to constantly learn from mistakes and adapt, and we expect members of our teams to constantly follow up with questions and updates to keep everyone in the loop.

Key Responsibilities:

  • Own and lead end-to-end implementation, maintenance, and renewal of SOC 2 Type II, ISO 27001, PCI DSS, and related compliance programs through our compliance platform (Drata).

  • Develop, maintain, and enforce security policies, procedures, and documentation aligned with industry frameworks (NIST CSF, ISO 27001 Annex A, MITRE ATT&CK).

  • Conduct regular risk assessments, internal audits, and control effectiveness reviews; identify gaps and drive remediation through coordination with engineering and operations teams.

  • Manage third-party risk assessments and vendor security reviews, including security questionnaires and due diligence.

  • Serve as the primary point of contact for external audits and certification bodies — preparing evidence, coordinating interviews, and managing the audit lifecycle.

  • Partner with legal, privacy, and engineering teams on data protection matters, including privacy impact assessments and incident response planning.

  • Monitor regulatory changes in Japan and other operating markets (e.g., APPI, GDPR) and advise the business on compliance obligations.

  • Build and maintain relationships with engineering teams to embed security and compliance requirements into development workflows — working collaboratively rather than as a bottleneck.

Required Skills:

  • 3+ years in security compliance, risk, or governance roles with proven experience achieving and maintaining SOC 2 Type II and/or ISO 27001 certification (full lifecycle — from gap analysis through audit).

  • Hands-on experience with compliance automation platforms, ideally Drata.

  • Deep understanding of security frameworks and standards: SOC 2 Trust Services Criteria, ISO 27001/27002, NIST CSF, and data privacy regulations (APPI, GDPR a plus).

  • Strong written and verbal communication skills — you can translate technical security requirements into clear policies and explain business risk to non-technical stakeholders.

  • Experience coordinating with external auditors and managing the audit process end-to-end.

  • Ability to collaborate with engineering teams to remediate findings and implement controls without deep hands-on coding.

  • Familiarity with AWS security services (IAM, GuardDuty, Config) at an operational level — enough to understand cloud security controls and ask the right questions of engineering teams.

Preferred Qualifications:

  • Japanese language proficiency (business level or higher) — this is a significant plus given our Japan-first operations.

  • Experience in the SaaS / technology industry.

  • Familiarity with cloud-native security concepts (containers, Kubernetes, serverless) at an architectural level — sufficient to understand and audit engineering security practices without implementing them.

  • Background in law, regulatory compliance, or information governance (e.g., JD, CIPP, CISM, CISSP).

  • Ability to thrive in a small, agile team with minimal supervision and a high degree of autonomy. 

 

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Security Engineer Related jobs

Other jobs at TableCheck

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.