Software Security Engineer

Grafana Labs is a remote-first, open-source powerhouse with over 20M users of Grafana, the open source visualization tool, around the globe.

We’re scaling fast and staying true to what makes us different: an open-source legacy, a global collaborative culture, and a passion for meaningful work. Our team thrives in an innovation-driven environment where transparency, autonomy, and trust fuel everything we do.

We are looking for a Security Assurance Engineer to join our GRC engineering team. We are building a security system that’s automated at scale, rigorously data-driven, and built from the ground up with defense-in-depth and self-healing in mind.

The Opportunity:

The Security Assurance Engineer will collaborate across their team, the security department, and wider Grafana to articulate security policies, implement continuous monitoring, automate workflows, and write and deploy policies across all of our SDLC, applications, and infrastructure.

What You’ll Be Doing:

• Be a technical contributor on our assurance team covering a range of areas, including certifications, application, build, cloud, and supply chain security, and internal security tooling development
• Develop, implement, and maintain highly automated security assurance programs to ensure compliance with organizational and regulatory requirements
• Develop systems, automations, and methods of security observability to push the GRC engineering organization beyond just meeting certification requirements
• Deploy security and compliance checks in an employee-enabling way in their daily workflows and build pipelines
• Collaborate with cross-functional teams to integrate security controls into the software development lifecycle and operational processes.
• Respond to customer security issues, security alerts, and potential incidents

What Makes You a Great Fit:

• Solid experience with at least one programming language
• Knowledge of using and securing containerized, cloud-native applications, ideally with Kubernetes
• Experience in automating security compliance processes using tools, scripts, and frameworks while enabling developer and employee workflows.
• Strong interpersonal skills
• Some understanding of industry-recognized security frameworks, standards, and certifications
• A degree in Computer Science, Information Security, or related field

Bonus Points For:

• Working knowledge of Grafana Labs OSS projects and products
• Experience working with OSS communities
• Experience securing large-scale distributed systems running in public clouds

Grafana Labs is an Equal Opportunity Employer. We will recruit, train, compensate and promote regardless of race, religion, color, national origin, gender, disability, age, veteran status, and all the other fascinating characteristics that make us different and unique.