|
Principal Software Engineer - Platform Security/Compliance Architect - (Remote) - Indianapolis Indiana
Company: New Relic Location: Indianapolis, Indiana
Posted On: 05/13/2024
Principal Software Engineer - Platform Security/Compliance Architect - (Remote) Principal Software Engineer - Platform Security/Compliance Architect - (Remote) Principal Software Engineer Req ID FY24-R&D-#5728 Location(s) Atlanta, Georgia, USA; Austin, Texas, USA; Baltimore, Maryland, USA; Boise, Idaho, USA; Boston, Massachusetts, USA; Charleston, South Carolina, USA; Charlotte, North Carolina, USA; Chicago, Illinois, USA; Cincinnati, Ohio, USA; Dallas, Texas, USA; Detroit, Michigan, USA; Indianapolis, Indiana, USA; Kansas City, Missouri, USA; Las Vegas, Nevada, USA; Los Angeles, California, USA; Madison, Wisconsin, USA; Miami, Florida, USA; Milwaukee, Wisconsin, USA; Minneapolis, Minnesota, USA; Nashville, Tennessee, USA; North Oaks, Minnesota, USA; Omaha, Nebraska, USA; Orlando, Florida, USA; Philadelphia, Pennsylvania, USA; Phoenix, Arizona, USA; Portland, Oregon, USA; Prospect, Connecticut, USA; Salt Lake City, Utah, USA; San Francisco, California, USA; San Jose, California, USA; Seattle, Washington, USA; St. Louis, Missouri, USA; Washington, District of Columbia, USA; Work arrangement(s) Fully Remote (works exclusively from home) Your opportunity At New Relic, we provide our customers real-time insights, so they can innovate faster. The Cloud Platform group within New Relic provides an enterprise-grade, cloud-agnostic platform and a developer platform that is composable, extensible, secure, scalable and reliable. We are looking for a talented and experienced Principal Software Engineer to serve as our Compliance Architect for our teams. In this role, you will lead efforts in developing comprehensive compliance strategies, establishing best practices, and designing secure solutions for the developer and cloud platforms. You will collaborate with cross-functional teams, including engineering, security, legal and compliance to ensure our software complies with industry regulations, security standards, and data privacy requirements. Your expertise in compliance frameworks and secure software development practices will be crucial in guiding our teams to maintain the utmost trust and confidence from our customers. What you'll do - Develop, implement and own a comprehensive compliance strategy across our platform, ensuring adherence to industry standards, regulations, and best practices.
- Lead the design and implementation of a robust security framework, including systems, architecture, and policies, to protect sensitive data.
- Collaborate with cross-functional teams, including engineering, security, legal and compliance, to ensure compliance requirements are understood and integrated into the software development lifecycle.
- Conduct regular compliance risk assessments and audits to identify gaps and develop action plans to address areas of concern.
- Serve as the engineering point of contact for internal and external auditors, providing necessary documentation and participating in compliance reviews.
- Serve as a trusted advisor on compliance-related matters to internal stakeholders and teams.
- Stay up-to-date with changes in regulatory requirements, industry standards, and emerging technologies to continually enhance our compliance framework.
- Provide guidance and training to engineering teams on secure coding practices and integrating compliance controls into the development process. This role requires
- Bachelor's or Master's degree in Computer Science, Software Engineering, or a related field.
- 12 years as a software engineer primarily specializing in compliance architecture or a similar role.
- In-depth knowledge of regulatory compliance frameworks, such as SOC 2, HIPAA, GDPR, FedRamp or ISO 27001.
- Excellent understanding of DevSecOps practices and integrating security and compliance throughout the software development lifecycle.
- Proven track record of designing and implementing compliance strategies in a SaaS or cloud-based company.
- Proficiency in secure coding practices and experience coding in Java and/or Golang.
- Experience with security and compliance tools, frameworks, and technologies.
- Experience with cloud-based environments (AWS, Azure or GCP).
- Excellent problem-solving skills and ability to analyze complex compliance requirements and how to implement them.
- Strong communication and collaboration skills, with the ability to work effectively with cross-functional teams.
- Domestic US and international travel (EMEA, APAC) up to 1 week per quarter.
- Availability to be on-call if needed. Bonus points if you have
|
|