PRINCIPAL SOFTWARE ENGINEER - PLATFORM SECURITY / COMPLIANCE ARCHITECT - (REMOTE)

Principal Software Engineer - Platform Security / Compliance Architect - (Remote)

Your opportunity

At New Relic, we provide our customers real-time insights, so they can innovate faster. The Cloud Platform group within New Relic offers an enterprise-grade, cloud-agnostic platform that is secure, scalable, and reliable. We are seeking a talented Principal Software Engineer to serve as our Compliance Architect, leading efforts in developing compliance strategies, establishing best practices, and designing secure solutions for our platforms. This role involves collaboration with cross-functional teams to ensure compliance with industry regulations, security standards, and data privacy requirements.

What you'll do

1. Develop and own a comprehensive compliance strategy across our platform, ensuring adherence to standards and regulations.
2. Design and implement a security framework to protect sensitive data.
3. Collaborate with engineering, security, legal, and compliance teams to integrate compliance into the software development lifecycle.
4. Conduct compliance risk assessments and audits, and develop action plans for identified gaps.
5. Serve as the point of contact for auditors, providing documentation and participating in reviews.
6. Advise internal stakeholders on compliance matters.
7. Stay updated on regulatory changes, industry standards, and emerging technologies to enhance the compliance framework.
8. Guide and train engineering teams on secure coding practices and compliance controls.

This role requires

• Bachelor's or Master's degree in Computer Science, Software Engineering, or related field.
• Several years of experience as a software engineer specializing in compliance architecture or similar.
• Deep knowledge of compliance frameworks like SOC 2, HIPAA, GDPR, FedRamp, or ISO.
• Understanding of DevSecOps practices and integrating security and compliance into development.
• Experience designing compliance strategies in SaaS or cloud environments.
• Proficiency in secure coding, particularly in Java and/or Golang.
• Experience with security and compliance tools and technologies.
• Familiarity with cloud platforms such as AWS, Azure, or GCP.
• Strong problem-solving and analytical skills.
• Excellent communication and collaboration skills.
• Willingness to travel domestically and internationally up to 1 week per quarter.
• Availability for on-call duties if needed.

Bonus points if you have

• Certifications like CISSP, CISA.
• Knowledge of risk management and vulnerability assessment methodologies.
• Experience with identity and access management solutions.
• Understanding data governance frameworks.

We value diversity and inclusivity, encouraging everyone to bring their authentic selves to work. We support flexible work arrangements, including fully remote, hybrid, or office-based roles.