FreshRemote.Work
Sign in

Senior Security Compliance Engineer (Dedicated Markets)

Remote, US

GitLab logo
GitLab Remote-first
USD 124K+ Full Time Senior
Company preview All jobs at GitLab
Search Fresh Jobs Job profile

The GitLab DevSecOps platform empowers 100,000+ organizations to deliver software faster and more efficiently. We are one of the world’s largest all-remote companies with 2,000+ team members and values that foster a culture where people embrace the belief that everyone can contribute. Learn more about Life at GitLab.

An overview of this role

We are seeking a highly skilled and experienced Senior Security Compliance Engineer to support the Security Compliance (Dedicated Markets) team. The ideal candidate will have a robust background in cybersecurity and compliance, with a proven track record of supporting highly regulated customers in the US and international public sector, as well as other highly regulated verticals. The candidate should have hands-on experience achieving and maintaining security certifications such as FedRAMP, SOC 2, and ISO 27001, or similar. Additionally, familiarity with Governance, Risk, and Compliance (GRC) engineering and implementing compliance-as-code / policy-as-code is essential.

As a Senior Security Compliance Engineer, it will be your goal to advance customer trust and execute the security compliance roadmap to achieve results for customers. This role will be directly supporting the GitLab Dedicated and GitLab Dedicated for Government SaaS offerings, as well as maturing GitLab’s compliance posture across our self-managed offerings and GitLab Inc. as a whole. 

Relevant Links:

What you’ll do  

  • Develop, implement, and manage GRC strategies and processes to support compliance with various regulatory and industry standards, including FedRAMP, SOC 2, ISO 27001, and others.
  • Work closely with highly regulated customers to understand their unique compliance requirements and provide tailored solutions to ensure adherence to relevant frameworks and certifications.
  • Lead and manage security assessments, audits, and certification processes, ensuring timely and successful completion.
  • Collaborate with cross-functional teams, including IT, security, and legal, to integrate GRC requirements into the organization's operations and technology stack.
  • Develop and maintain comprehensive documentation, including policies, procedures, and controls, to support compliance initiatives.
  • Utilize scripting/coding skills to automate GRC processes and implement compliance-as-code or policy-as-code solutions.
  • Monitor and analyze regulatory changes and industry trends to ensure continuous improvement of the GRC program and maintain up-to-date compliance.
  • Provide training and guidance to internal teams and customers on GRC-related topics, fostering a culture of compliance and security awareness.
  • Act as a subject matter expert on GRC issues, providing strategic advice and support to senior …
This job isn't fresh anymore!
Search Fresh Jobs

Job Profile

Regions

North America

Countries

United States

Restrictions

Location-based eligibility requirements Must be a U.S. Citizen

Benefits/Perks

Asynchronous work environment Diverse Team Employee Stock Employee stock purchase plan Equity Equity Compensation Equity Compensation & Employee Stock Purchase Plan Flexible paid time off Growth and development budget Home office support Incentive pay Paid Time Off Parental leave Remote-first company Remote work

Tasks
  • Collaborate with internal teams
  • Collaborate with teams
  • Communication
  • Hiring
  • Maintain documentation
  • Manage compliance processes
  • Monitor regulatory changes
  • Project management
  • Provide training
Skills

Analytical Asynchronous Work Automation AWS Communication Compliance Cybersecurity DevSecOps Documentation Engineering FedRAMP GCP GitLab GRC Information Technology Interpersonal ISO ISO 27001 Organization Problem-solving Project Management Recruiting SaaS Sales Scripting Security SOC SOC 2 Talent Acquisition

Experience

5 years

Education

Bachelor's degree Computer Science Cybersecurity Equivalent experience Information Technology Related Field

Certifications

CISA CISM CISSP FedRAMP ISO 27001 SOC 2

Timezones

America/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9

Remote Jobs in North America Remote Jobs in Europe Remote Jobs in South America Remote Jobs in Asia/Pacific Remote Jobs in Africa Remote Jobs in Middle East Full Time Remote Jobs Part Time Remote Jobs Internship Remote Jobs Contract Remote Jobs Temporary Remote Jobs Freelance Remote Jobs Mid-Level Remote Jobs Senior-Level Remote Jobs Entry-Level Remote Jobs Exec-Level Remote Jobs Lead-Level Remote Jobs
Remote Spanish Jobs Remote Pathologist Jobs Remote Analytics Jobs Remote Project Manager Jobs Remote Machine Learning Jobs Remote Business Development Jobs Remote Customer Service Jobs Remote Client Relations Specialist Jobs Remote Data Scientist Jobs Remote Program Manager Jobs Remote Engineer I Jobs Remote Advisor Jobs Remote Inside Sales Jobs Remote Counsel Jobs Remote Assistant Jobs Remote Therapist Jobs Remote Technician Jobs Remote Customer Success Jobs Remote Mobile Jobs Remote Administrator Jobs
Remote Jobs with GBP > 220K in Salary Remote Jobs with CAD > 200K in Salary Remote Jobs with EUR > 220K in Salary Remote Jobs with EUR > 200K in Salary Remote Jobs with GBP > 280K in Salary Remote Jobs with GBP > 300K in Salary Remote Jobs with GBP > 260K in Salary Remote Jobs with EUR > 240K in Salary Remote Jobs with CAD > 220K in Salary Remote Jobs with CAD > 240K in Salary Remote Jobs with EUR > 260K in Salary