Manager, Product Security Engineering
Remote US NC, United States
Red Hat
Red Hat is the world’s leading provider of enterprise open source solutions, including high-performing Linux, cloud, container, and Kubernetes technologies.At Red Hat, we connect an innovative community of customers, partners, and contributors to deliver an open source stack of trusted, high-performing solutions. We offer cloud, Linux, middleware, storage, and virtualization technologies, together with award-winning global customer support, consulting, and implementation services. Red Hat is a rapidly growing company supporting more than 90% of Fortune 500 companies.
The Red Hat Product Security Compliance team is seeking a knowledgeable and proactive Product Security Manager to achieve our security and compliance objectives. In this role, you will manage and oversee security compliance initiatives, ensuring that our systems meet government and regulatory standards. This role requires extensive experience with FedRAMP, strong project management skills, and the ability to work collaboratively across departments to ensure security and compliance. You will be partnering very closely with Red Hat’s Platform Engineering team to include globally distributed cloud security engineers, SREs and cloud automation developers.
What you will do:
Successfully manage a compliance program, ensuring we meet all requirements for certification and continue to maintain compliance.
Create and enforce policies, procedures, and standards that align with FedRAMP and other relevant compliance frameworks (e.g., DoD, FISMA).
Manage all assessments, ensuring all documentation, control implementations, and policies meet expectations.
Oversee, conduct and facilitate potential gap remediation strategies in alignment with FedRAMP guidelines.
Establish continuous monitoring processes to include regular reporting on compliance status, security metrics and any remediation activities.
Work closely with other cross-functional teams to ensure we stay compliant while working with new initiatives and service offerings.
What you will bring:
Extensive background and experience with FedRAMP authorizations.
In-depth understanding of security frameworks (e.g., NIST, ISO 27001, CIS),and compliance standards (e.g., FedRAMP, SOC 2).
Knowledge of cloud security practices and technologies is essential.
Demonstrated experience managing complex compliance projects, with strong organizational skills and attention to detail.
Ability to analyze security controls, assess risks, and design control measures in alignment with FedRAMP standards.
Strong communication skills, capable of presenting technical compliance concepts to both technical and non-technical audiences.
Familiarity with cloud service provider environments (e.g., AWS, Azure) and relevant security tools (e.g.,vulnerability management).
Relevant certifications, such as CISSP, CISM, CCSP, or CISA, are highly preferred.
Experience with open-source software vulnerability and supply chain management is a plus.
US-citizenship.
Pay Transparency
Red Hat determines compensation based on several factors including but not limited to job location, experience, applicable skills and training, external market value, and internal pay equity. Annual salary is one component of Red Hat’s compensation package. This position may also be eligible for bonus, commission, and/or equity. For positions with Remote-US locations, the actual salary range for the position may differ based on location but will be commensurate with job duties and relevant work experience.
About Red Hat
Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver high-performing Linux, cloud, container, and Kubernetes technologies. Spread across 40+ countries, our associates work flexibly across work environments, from in-office, to office-flex, to fully remote, depending on the requirements of their role. Red Hatters are encouraged to bring their best ideas, no matter their title or tenure. We're a leader in open source because of our open and inclusive environment. We hire creative, passionate people ready to contribute their ideas, help solve complex problems, and make an impact.
Benefits
● Comprehensive medical, dental, and vision coverage
● Flexible Spending Account - healthcare and dependent care
● Health Savings Account - high deductible medical plan
● Retirement 401(k) with employer match
● Paid time off and holidays
● Paid parental leave plans for all new parents
● Leave benefits including disability, paid family medical leave, and paid military leave
● Additional benefits including employee stock purchase plan, family planning reimbursement, tuition reimbursement, transportation expense account, employee assistance program, and more!
Note: These benefits are only applicable to full time, permanent associates at Red Hat located in the United States.
Diversity, Equity & Inclusion at Red Hat
Red Hat’s culture is built on the open source principles of transparency, collaboration, and inclusion, where the best ideas can come from anywhere and anyone. When this is realized, it empowers people from diverse backgrounds, perspectives, and experiences to come together to share ideas, challenge the status quo, and drive innovation. Our aspiration is that everyone experiences this culture with equal opportunity and access, and that all voices are not only heard but also celebrated. We hope you will join our celebration, and we welcome and encourage applicants from all the beautiful dimensions of diversity that compose our global village.
Equal Opportunity Policy (EEO)
Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, veteran status, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law.
Red Hat does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or any other payment related to unsolicited resumes or CVs except as required in a written contract between Red Hat and the recruitment agency or party requesting payment of a fee.
Red Hat supports individuals with disabilities and provides reasonable accommodations to job applicants. If you need assistance completing our online job application, email application-assistance@redhat.com. General inquiries, such as those regarding the status of a job application, will not receive a reply.
Tags: Automation AWS Azure CCSP CISA CISM CISSP Cloud Compliance DoD FedRAMP FISMA ISO 27001 Kubernetes Linux Monitoring NIST Open Source Product security Red Hat SOC SOC 2 Vulnerability management
Perks/benefits: 401(k) matching Career development Equity / stock options Flex hours Flexible spending account Flex vacation Health care Medical leave Parental leave Salary bonus Transparency
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.