Principal Software Engineer - Platform Security / Compliance Architect - (Remote)

Req ID: 4

Locations: Calgary, Montreal, Ottawa, Toronto, Vancouver, Canada

Work arrangement: Fully Remote (works exclusively from home)

At New Relic, we provide our customers with real-time insights to help them innovate faster. Our Cloud Platform group offers an enterprise-grade, cloud-agnostic platform that is secure, scalable, and reliable. We are seeking a talented Principal Software Engineer to serve as our Compliance Architect, leading compliance strategies, best practices, and secure solution design for our developer and cloud platforms. You will collaborate with teams across engineering, security, legal, and compliance to ensure adherence to industry regulations, security standards, and data privacy requirements.

1. Develop, implement, and own a comprehensive compliance strategy across our platform.
2. Lead the design and implementation of a security framework to protect sensitive data.
3. Collaborate with cross-functional teams to integrate compliance requirements into the software development lifecycle.
4. Conduct compliance risk assessments and audits, and develop action plans.
5. Serve as the point of contact for auditors, providing documentation and participating in reviews.
6. Advise internal stakeholders on compliance matters.
7. Stay updated on regulatory changes and emerging technologies to enhance our compliance framework.
8. Guide engineering teams on secure coding practices and compliance controls.

• Bachelor's or Master's degree in Computer Science, Software Engineering, or related field.
• Several years of experience as a software engineer specializing in compliance architecture or similar roles.
• Deep knowledge of compliance frameworks such as SOC 2, HIPAA, GDPR, FedRamp, ISO.
• Understanding of DevSecOps practices and integrating security into the software development lifecycle.
• Proven experience designing compliance strategies in SaaS or cloud environments.
• Proficiency in secure coding in Java and/or Golang.
• Experience with security and compliance tools and technologies.
• Knowledge of cloud platforms (AWS, Azure, GCP).
• Strong problem-solving and analytical skills.
• Excellent communication and collaboration skills.
• Willingness to travel domestically and internationally up to 1 week per quarter.
• Availability for on-call duties if needed.

• Relevant certifications such as CISSP, CISA.
• Understanding of risk management, vulnerability assessment, and penetration testing.
• Experience with identity and access management solutions.
• Knowledge of data governance practices.

We value diversity and inclusion, encouraging candidates from all backgrounds to apply. We support flexible work arrangements and provide accommodations during the application process. Note that visa sponsorship is not available for this position. All hires will undergo identity verification and a criminal background check. We are committed to equal opportunity employment and evaluate candidates based on merit.