KODE Labs is on the lookout for a distinct kind of security professional to join our team in Prishtina. We are looking for a Security Compliance & Operations Engineer who sits at the intersection of Governance, Risk, and Compliance (GRC) and Security Operations.

You will work on a clearly defined roadmap within an experienced team, helping us maintain customer trust while keeping our hands on the latest security tools. This is an ideal role for an early-career professional (or a career transitioner with strong SaaS foundations) who is self-sufficient, writes exceptionally well, and wants to grow into a well-rounded Security Engineer.

WHAT YOU WILL DO:

Primary Focus: GRC & Trust

• Customer Trust Management: Own the response process for customer security questionnaires and vendor assessments. You will use our AI-driven Knowledge Base and Trust Portal to streamline this, ensuring our clients feel secure.
  

• Compliance Operations: Assist in maintaining our audit readiness for frameworks like SOC 2 Type II, ISO 27001, and GDPR. This includes evidence collection and policy reviews.
  

• Vendor Risk Management: Review and assess new and existing vendors to ensure they meet KODE Labs’ security standards.
  

• Documentation & Knowledge Base: Maintain internal security documentation and "feed" the AI-driven knowledge base to automate future responses.
  

Secondary Focus: Security Operations & Tooling

• Cloud Security Posture Management (CSPM): Monitor our cloud environments (using tools like Wiz) to identify misconfigurations and collaborate with DevOps to remediate them.
  

• Vulnerability Management: Triage vulnerability scans (infrastructure and code), distinguish false positives from real risks, and track remediation tickets to closure.
  

• Endpoint Detection & Response (EDR): Assist in monitoring and managing our CrowdStrike deployment to ensure fleet health and investigate alerts.
  

• Incident Response Support: Act as a first responder for security alerts (SIEM/SOC), performing initial triage and investigation before escalating to senior engineers.
  

• Identity & Access Monitoring: Auditing user access logs and helping enforce Least Privilege principles.
  

Requirements

• 2+ Years of Relevant Experience: You have worked in a role requiring IT, SaaS support, QA, or Junior Security tasks. We are open to self-taught candidates if you have a portfolio or concrete examples of your learning.
  

• SaaS Proficiency: You understand how modern B2B SaaS companies operate (APIs, Cloud Infrastructure, CI/CD basics).
  

• Exceptional Written Communication: A large part of this job involves writing clear, concise responses to auditors and customers. You must be able to translate "Tech" into "English."
  

• Organizational Rigor: You are proficient with work-tracking tools (Jira, Linear, Asana, etc.). You don't let tasks fall through the cracks.
  

• The "Doer" Mindset: You can take a defined roadmap item and execute it. You know when to Google a solution and when to ask for help.
  

• Familiarity with Security Frameworks: You have a working knowledge of what SOC 2, ISO 27001, or NIST are and why they matter.
  

DESIRED (BUT NOT REQUIRED):

• Certifications such as Security+, GSEC, CISA, or CCSK.
  

• Experience with Wiz, CrowdStrike, or Splunk/Datadog.
  

• Basic scripting skills (Python/Bash) for automating repetitive tasks.
  

• Experience administering a GRC platform (e.g., Vanta, Drata, OneTrust).
  

GROWTH OPPORTUNITIES:

We believe in training our own. While this role focuses on GRC and Blue Team operations, you will be exposed to:

• Offensive Security: Shadowing internal red-teaming and penetration testing exercises.
  

• Architecture: Learning how to design secure cloud infrastructure.
  

• AI Security: working with cutting-edge AI tools to automate security workflows.
  

Benefits

WHAT WE OFFER:

• Competitive salary based on experience
  

• Discretionary Bonus Program
  

• Career Development Program and opportunities to grow within the company
  

• Flexible Paid Time Off
  

• Comprehensive Health Insurance Package
  

• Dynamic team and challenging projects
  

• Custom-tailored onboarding experience
  

• Welcoming and friendly work environment
  

• Social events and team activities
  

JOIN THE TEAM

KODE Labs is a real estate technology company founded in 2017 with a mission to change the way people, buildings, and systems operate. Headquartered in Detroit, Michigan, we are a driving force behind the adoption of smart building technology. To scale our presence across numerous cities and countries, we depend on our team of talented, ambitious people who go above and beyond to create value for our clients.

When you join the KODE Labs team you can create your own career. Whether you have years of experience or are just starting, we help you realize your full potential and achieve your goals. If KODE Labs sounds like the place for you, we’d love to hear your story, so please apply through our online application form. Only shortlisted candidates will be contacted.