Engineering at Brex

Engineering at Brex is about building systems that scale with speed and intention. Our teams span Software, Data, Security, and IT, and operate with high autonomy and deep collaboration. We tackle hard technical problems, own our outcomes, and push for excellence at every level — from architecture to deployment. It’s an environment where engineering is a craft, and builders become leaders.

What you’ll do

As a Security Operations Engineer at Brex, you will focus on preventing, detecting and responding to security threats across Brex's corporate and cloud environments. You will use existing systems and develop tools to improve our security capabilities. Our team is responsible for functions across corporate security, detection & response and infrastructure security domains; and we perform systems engineering and automation to support those functions. 

Security Operations is part of our wider Trust & IT organization which means you will have the opportunity to work closely with Application Security, Corporate Engineering, GRC and IT and to improve security configurations, drive positive employee behaviors and generally work to prevent events from becoming incidents. You will also help build and maintain our team’s open source project Substation and have the opportunity to contribute to the Brex Tech Blog. You’ll be part of a team that actively contributes to the wider security community and has a commitment to mentorship and engineering excellence.

We’re looking for individuals with a strong background and interest in detecting, responding to, and resolving security incidents and security challenges. You should be comfortable dealing with lots of moving pieces, changing priorities, and new technologies, while having a keen eye for detail. Most importantly, you should be enthusiastic about working with a variety of backgrounds, roles, and people across Brex. Building a world-class financial service requires world-class security.

Where you’ll work

This role will be based in our San Francisco office. We are a hybrid environment that combines the energy and connections of being in the office with the benefits and flexibility of working from home. We currently require a minimum of three coordinated days in the office per week, Monday, Wednesday and Thursday. As a perk, we also have up to four weeks per year of fully remote work!

Responsibilities

• Work on a highly cross-functional team to prevent, detect and respond to security threats across Brex's corporate and cloud environments
• Perform security incident response, investigation, remediation, and documentation, participate in periodic threat hunting and security exercises
• Leading, scoping and building features, participate in designing, and maintaining tools and systems which support the team’s domains – corporate security, detection & response and infrastructure security 
• Collaborating and partnering with engineering and operations teams to drive remediation of security issues, while balancing prioritization of those security issues within SLA and teams’ respective backlogs
• Caring about secure system design, valuing building things correctly, an understanding of a MVP approach and an empathetic mindset when working with others

Requirements

• Bachelor’s degree in Computer Science, Engineering or related field OR equivalent training / fellowship OR 5+ years work experienceExperience working in a corporate security, detection & response or infrastructure security role with responsibilities for security alert triage and security incident response 
• Familiarity with CI/CD systems and DevOps workflows (e.g. Buildkite, Flux, Git, Terraform) in cloud environments (e.g. AWS, Azure, GCP)
• Experience with deploying and maintaining some of the security services and tools owned by the team (e.g. - SIEM, data pipelines, SOAR, domain monitoring, endpoint tooling, email protection tooling, cloud security tools)
• While not primarily a development role, the team develops and maintains tools written in Go and Python, so experience with coding is required
• You thrive in a collaborative environment filled with a diverse group of people with different expertise and backgrounds. We currently have around 30 nationalities represented with more than ½ the company working in a country different from the one they grew up in.

Bonus points

• Proficiency with Go and other programming languages 
• Experience with securing distributed systems in AWS, cloud and Kubernetes environments
• Contributions to the wider technical community (open source, public research, mentorship, community organizing, blogging, presentations, etc)

Compensation

The expected salary range for this role is $192,000 - $240,000. However, the starting base pay will depend on a number of factors including the candidate’s location, skills, experience, market demands, and internal pay parity. Depending on the position offered, equity and other forms of compensation may be provided as part of a total compensation package.

Brex LLC is a wholly owned subsidiary of Capital One, N.A.

Engineering

Engineering at Brex is about building systems that scale with speed and intention. Our teams span Software, Data, Security, and IT, and operate with high autonomy and deep collaboration. We tackle hard technical problems, own our outcomes, and push for excellence at every level — from architecture to deployment. It’s an environment where engineering is a craft, and builders become leaders.

What you’ll do

Brex’s Governance, Risk, and Compliance function is at an exciting and pivotal point in our maturity journey and we’re seeking a team member who can seamlessly bridge compliance expertise with technical execution. As a Senior GRC Engineer, you will drive critical GRC processes that mitigate risk, keep us compliant, and build trust with our customers and partners. You'll evolve the technical foundation of our Trust program by automating security controls, building integrations between security tools and GRC platforms, and creating scalable processes that enable Brex to maintain compliance efficiently as we expand into new markets. You'll work at the intersection of security, engineering, and compliance — translating regulatory requirements into technical solutions and building automation that eliminates manual toil.

You'll leverage your deep understanding of SOC 2, PCI DSS, ISO 27001, AI governance frameworks, and others to both design controls for emerging compliance requirements and mature existing programs through automation and continuous monitoring. You’ll support Trust Assurance, Third Party Risk Management, and other Security Risk Management initiatives. Working with our Engineering, Infrastructure, and Product teams, you'll translate compliance frameworks into technical controls and build automated systems that help us achieve world-class security as Brex expands.

Your contributions will directly accelerate Brex's maturity. You'll design workflows using Tines, build integrations between security and GRC systems, and create dashboards for security metrics. You'll implement controls across the technology stack, support multiple audits (SOC 2, PCI DSS, SOX/ITGC, FINRA, ISO), and contribute to AI governance framework implementation (ISO 42001, NIST AI RMF, EU AI Act).

You'll have autonomy to build innovative solutions, collaborating cross-functionally to implement controls that enable growth while communicating technical concepts effectively across the organization.

Where you’ll work

This role will be based in our Seattle office. We are a hybrid environment that combines the energy and connections of being in the office with the benefits and flexibility of working from home. We currently require a minimum of three coordinated days in the office per week, Monday, Wednesday and Thursday. As a perk, we also have up to four weeks per year of fully remote work!

Responsibilities

• Manage and scale IT infrastructure, services and tooling
• Work with a diverse group of  IT partners to optimize our provided services
• Implement new services in support of Information Technologies vision
• Scale our services by implementing configuration as code via Terraform providers or APIs
• Operationalize and upskill IT and its partners by producing documentation and leading training sessions
• Evangelize best practices both internally and externally facing

Requirements

• 5+ years of experience in GRC, IT Governance, or Security Engineering with a strong track record of automating manual compliance workflows.
• Deep experience with security frameworks such as SOC 2, PCI DSS, ISO 27001, and NIST CSF, specifically within cloud-native environments.
• Technical proficiency in Python (or similar scripting languages) and experience building integrations using APIs to connect security tools with GRC systems. You can read code, design integrations, and understand technical implementations.
• Builder mindset with the ability to design and implement automated control testing, continuous monitoring, and data-driven security metrics. You see manual processes and immediately think about how to automate them.
• Exceptional cross-functional collaboration and communication skills. You can translate complex compliance requirements into technical specifications that engineering teams can actually implement and influence stakeholders across technical and non-technical domains.
• Strong systems thinking. You have the ability to design scalable GRC architectures that grow with the company, rather than just solving for the immediate audit.
• Bias for action. You’re a self-starter who ships solutions quickly and iterates based on feedback. 

Bonus points

• Previous experience in Fintech or banking environments navigating complex regulatory landscapes.
• Hands-on experience with Tines or other SOAR platforms to automate security operations.
• Familiarity with AI/ML governance frameworks (NIST AI RMF, ISO 42001) or securing agentic systems.
• Deep knowledge of Cloud Security (AWS/GCP), infrastructure-as-code (Terraform), or DevSecOps practices.
• Relevant industry certifications such as CISSP, CISA, or CCSP.
• Experience building metrics dashboards for security visualization and reporting.
• Active contributions to the GRC or Security community through open-source projects or public research.

Compensation

The expected salary range for this role is $153,600 - $192,000. However, the starting base pay will depend on a number of factors including the candidate’s location, skills, experience, market demands, and internal pay parity. Depending on the position offered, equity and other forms of compensation may be provided as part of a total compensation package.

Brex LLC is a wholly owned subsidiary of Capital One, N.A.

About the Role

We are seeking a GRC Automation Lead to join our GRC organization and build the technical foundation for how we scale our risk and compliance programs. In this role, you will lead the team that designs and implements automated workflows, data pipelines, and integrations that transform manual compliance processes into scalable engineering systems. 

This is a greenfield opportunity to establish the team, architecture, and integrations that will define how we approach governance, risk, and compliance at Anthropic. The core challenge is a data problem: compliance information lives across dozens of systems—cloud infrastructure, identity providers, HR platforms, ticketing tools, code repositories—and your job is to design systems that bring it together, normalize it, and make it actionable. Success in this role comes from understanding how systems connect and how data flows between them, not from writing code yourself.

At Anthropic, you'll also have a unique advantage: the ability to design AI-powered workflows where Claude acts as an extension of your team, handling tasks that would traditionally require additional headcount or manual effort. You'll need ingenuity to identify where agentic AI can accelerate evidence collection, interpret unstructured data, triage compliance gaps, and augment human judgment in risk assessments. Working closely with Security, IT, and Engineering teams, you'll translate compliance and regulatory requirements into solutions that support audit programs including SOC 2, ISO, HIPAA, and FedRAMP, building systems that combine traditional automation with AI capabilities to achieve scale that wouldn't otherwise be possible.

Responsibilities: 

• Lead the team that establishes foundational GRC processes and architecture. Design and build automated workflows for risk management and compliance, creating scalable systems that enable continuous monitoring as Anthropic grows.
• Build data pipelines that aggregate risk, control, and asset information from across our technology stack. This means solving hard data integration problems: mapping disparate schemas, handling inconsistent data quality, and creating unified views of compliance posture through dashboards and reporting tools.
• Inform GRC platform strategy and implementation: in partnership with other programs, evaluate, select, and deploy tooling that meets our compliance requirements.
• Translate written policies and compliance requirements into policy-as-code—working with Engineering and Security teams to express requirements as enforceable rules, automated checks, and continuous validation rather than static documents.
• Establish feedback loops between policy and implementation: surface where technical controls diverge from written requirements, identify where policies need to evolve based on infrastructure realities, and ensure that compliance requirements are expressed in terms engineers can act on.
• Design and deploy agentic AI workflows that extend team capacity, using Claude to serve as a virtual GRC analyst to automate evidence analysis, monitor control effectiveness, draft audit responses, interpret policy documents, and handle other tasks that require reasoning over unstructured information.
• Design and maintain integrations connecting GRC tooling with cloud infrastructure, identity management systems, HRIS platforms, ticketing systems, version control, and CI/CD pipelines—working with engineers to implement integrations that enable automated evidence collection and continuous compliance validation.
• Build and lead an AI-forward GRC engineering function as we scale: hiring team members, establishing practices, and defining the technical roadmap for governance and compliance automation at Anthropic.

You may be a good fit if you:

• Have 12+ years of total experience and 3-4+ years of experience managing technical individual contributors or systems-focused teams, with a proven track record of building or scaling small teams (2-5 people) in security, compliance, automation, or operations functions.
• Are a systems thinker first. You understand how complex environments work: how data flows between systems, where integration points exist, what breaks when systems don't talk to each other. Your strength is designing the right architecture and environment for security monitoring, not necessarily implementing it yourself.
• Have 5+ years of experience designing automated workflows, data pipelines, or system integrations, whether through traditional development, low-code platforms, GRC tools, or process automation. We care about your ability to solve integration problems more than your programming language proficiency.
• Have a relentless focus on data integration: you understand how to pull data from multiple sources, normalize it, join it meaningfully, and surface insights. You're comfortable reasoning about messy, inconsistent data and designing systems that handle edge cases gracefully.
• Understand APIs and integration patterns: REST APIs, webhooks, authentication flows, polling vs. push architectures, and can evaluate systems based on how well they expose data and support automation.
• Can work independently with minimal guidance, taking ownership of complex problems from design through implementation while managing ambiguity inherent in early-stage programs.
• Have strong analytical and problem-solving skills with attention to detail necessary for compliance work, balanced with pragmatism about risk-based prioritization in fast-paced environments.

Strong candidates may have:

• Experience designing or implementing AI-powered automation, agentic workflows, or LLM-based tooling in operational contexts.
• Experience with GRC platforms such as ServiceNow GRC, Vanta, Drata, OneTrust, RSA Archer, or similar tools including configuration, customization, and integration capabilities
• Familiarity with scripting languages (Python or similar) for automation tasks, API interactions, and data transformation.
• Prior experience in high-growth startup environments demonstrating ability to build scalable processes and adapt quickly to changing requirements and priorities
• Familiarity with Infrastructure as Code tools (Terraform, CloudFormation, Ansible) and DevSecOps practices including CI/CD pipeline integration and policy-as-code implementations.
• Familiarity with cloud platforms (AWS, GCP, Azure) and an understanding of how compliance-relevant data can be extracted from their APIs and logging systems.

Deadline to apply: None, applications will be received on a rolling basis.

Engineering at Brex

Engineering at Brex is about building systems that scale with speed and intention. Our teams span Software, Data, Security, and IT, and operate with high autonomy and deep collaboration. We tackle hard technical problems, own our outcomes, and push for excellence at every level — from architecture to deployment. It’s an environment where engineering is a craft, and builders become leaders.

What you’ll do

As a Senior Application Security Engineer, you will focus on finding and responding to security vulnerabilities across the Brex platform. In this role, you will perform code reviews, design reviews, penetration testing, and vulnerability management. You will develop and maintain tooling to perform static and dynamic testing of the Brex platform and tooling which supports secure developer workflows. Application Security is part of our wider Financial Scale organization, which means you will work closely with Security Operations, GRC, Product Security, Front End Platform,  IT Infrastructure teams.

We’re looking for individuals with a strong background and interest in penetration testing. You should have a demonstrated ability to find vulnerabilities in complex systems and craft exploits to demonstrate business impact. This role is highly cross functional and collaborative, you will have the opportunity to work with every engineering team across Brex. You should be enthusiastic about working with a variety of backgrounds, roles, and needs. Building a world-class financial service requires world-class security. 

Brex is pioneering the next wave of AI-driven financial services for dynamic, high-impact companies like Coinbase, Robinhood, and Anthropic. We're at the early stages of integrating AI across our product suite, this role will have the opportunity to influence and secure the future of AI Security at Brex. You'll be at the forefront of securing our novel AI implementations, identifying attack vectors in agentic-powered features, and partnering with product and engineering teams to build AI capabilities that our customers can trust with their critical financial operations.

Responsibilities

• Identifying vulnerabilities, demonstrating business impact, and articulating the risk of specific vulnerabilities to drive prioritization efforts
• Perform penetration testing and design reviews, looking for vulnerabilities and insecure designs, work with engineering and product to design secure product features
• Maintain and build internal tools to automate security efforts, perform SAST and DAST testing of the Brex platform, and support secure development practices
• Build and contribute to a culture of collaborative security excellence through technical leadership, learning sessions, and mentorship within the team and wider organization

Requirements

• 5+ years work experience in an Application Security or related role
• Ability to find vulnerabilities in complex systems, demonstrating business impact through custom attack chains
• Experience with a wide range of secure development activities including— threat modeling, developer education, and incident response
• Knowledge of Python, scripting languages, and AI/agentic workflows to automate tasks, build tools and improve productivity
• Collaborative mindset paired with strong written and verbal communication skills

Bonus points

• Proficiency with Kotlin, gRPC, GraphQL, Kubernetes
• Previous experience as a software engineer
• Consultancy experience performing web application security reviews
• Experience with securing distributed systems in AWS and cloud environments
• Experience with pentesting and securing agentic features and systems
• Contributions to the wider technical community— open source, public research, mentorship, community organizing, blogging, CVEs, presentations, etc
• Experience submitting to bug bounty programs or responsible disclosure programs

Compensation

The expected salary range for this role is $192,000 - $240,000. However, the starting base pay will depend on a number of factors including the candidate’s location, skills, experience, market demands, and internal pay parity. Depending on the position offered, equity and other forms of compensation may be provided as part of a total compensation package.

Brex LLC is a wholly owned subsidiary of Capital One, N.A.

Engineering at Brex

Engineering at Brex is about building systems that scale with speed and intention. Our teams span Software, Data, Security, and IT, and operate with high autonomy and deep collaboration. We tackle hard technical problems, own our outcomes, and push for excellence at every level — from architecture to deployment. It’s an environment where engineering is a craft, and builders become leaders.

What you’ll do

As an Application Security Engineer, you will contribute to finding and responding to security vulnerabilities across the Brex platform. In this role, you will participate in code reviews, design reviews, penetration testing, and vulnerability management. You will contribute to tooling that performs static and dynamic testing of the Brex platform and supports secure developer workflows. Application Security is part of our wider Financial Scale organization, which means you will work closely with Security Operations, GRC, Product Security, Front End Platform, and IT Infrastructure teams.

We're looking for individuals with a solid foundation in penetration testing and a curiosity for finding vulnerabilities in complex systems. You should have experience identifying and documenting vulnerabilities across common vulnerability classes and be able to communicate their risk clearly to engineering and product teams. This role is highly cross-functional — you'll have the opportunity to collaborate with engineering teams across Brex and grow your security expertise in a fast-moving environment.

Brex is pioneering the next wave of AI-driven financial services for dynamic, high-impact companies like Coinbase, Robinhood, and Anthropic. As we integrate AI across our product suite, this role will give you hands-on experience contributing to AI security at Brex. You'll apply emerging AI security best practices to help secure our agentic features, identify attack surfaces introduced by LLM-powered systems, and partner with product and engineering teams to build AI capabilities our customers can trust with their critical financial operations.

Responsibilities

• Identify vulnerabilities across common vulnerability classes (e.g., OWASP Top 10), document findings clearly, and communicate risk to drive remediation efforts
• Participate in penetration testing and design reviews alongside senior engineers, contributing to the identification of vulnerabilities and insecure designs
• Contribute to internal tooling and automation efforts that support SAST and DAST testing of the Brex platform and promote secure development practices
• Collaborate with engineering and product teams to support the design of secure product features
• Actively contribute to a culture of security awareness through knowledge sharing and peer learning

Requirements

• 4+ years of work experience in Application Security or a related role
• Demonstrated ability to find and document vulnerabilities in complex systems, with clear communication of business risk
• Hands-on experience with a subset of secure development activities, such as code review, threat modeling, or penetration testing
• Experience identifying security risks in AI/ML systems — such as prompt injection, model manipulation, or data poisoning — through work experience, personal projects, CTFs, or bug bounties
• Familiarity with agentic workflows and the ability to reason about attack surfaces introduced by LLM-powered features
• Knowledge of Python or scripting languages to automate tasks and build tooling
• Collaborative mindset paired with strong written and verbal communication skills

Bonus points

• Experience with Kotlin, gRPC, GraphQL, Kubernetes
• Previous experience as a software engineer
• Experience with securing distributed systems in AWS and cloud environments
• Experience with web application security reviews
• Contributions to the wider technical community — open source, public research, CTF participation, blogging, CVEs, or presentations
• Experience submitting to bug bounty or responsible disclosure programs
• Published AI security research or contributions to AI security frameworks

Compensation

The expected salary range for this role is $152,000 - $190,000. However, the starting base pay will depend on a number of factors including the candidate’s location, skills, experience, market demands, and internal pay parity. Depending on the position offered, equity and other forms of compensation may be provided as part of a total compensation package.

Brex LLC is a wholly owned subsidiary of Capital One, N.A.

About that Role

As part of the Anthropic security department, the compliance team owns understanding security and AI safety expectations, as established by regulators, customers, and (nascent) industry norms — which we also seek to influence. The compliance team uses this understanding to provide direction to internal partners on the priorities of security and safety requirements they must meet. The compliance team demonstrates adherence to security expectations through credential attainment, the establishment of assurance and oversight mechanisms, and direct engagement with auditors, customers, and partners.

This opportunity is unique. Anthropic is expanding HIPAA coverage across its product portfolio — including Claude Code, the Claude Developer Platform, and Claude Cowork — and we need to build the compliance infrastructure to match that expansion. We are looking for someone to own HIPAA compliance operations end-to-end, not just advise on it.

Responsibilities:

• Operate Anthropic’s HIPAA compliance review program, executing on HIPAA obligations across the product portfolio.
• Run a dedicated HIPAA review track in parallel with the Product Security Review (PSR) process, applying compliance checklist to every in-scope change and recording a complete, auditable disposition before release.
• Build and maintain change monitoring mechanisms to catch HIPAA-relevant changes — including default setting changes and incremental updates.
• Partner with product and engineering teams upstream to ensure HIPAA considerations are built into first releases rather than addressed as post-launch remediations.
• Assess and document PHI data flows, infrastructure boundaries, and control coverage across Anthropic’s cloud-native product environments.
• Write, update, and enact HIPAA policies, checklists, deployment guides, and audit evidence packages.
• Manage Business Associate Agreement (BAA) obligations and coordinate with legal and external counsel on PHI determination questions and emerging regulatory requirements.
• Contribute to Anthropic’s broader compliance program, including adjacent frameworks (SOC 2, ISO 27001, NIST 800-53) where they intersect with HIPAA obligations.

You may be a good fit if you:

• Have 3+ years of progressive experience in compliance roles, including direct ownership of a HIPAA compliance program at a technology company
• Have evaluated PHI data flows and infrastructure boundaries in cloud-native environments (AWS, GCP, or Azure) and can assess HIPAA exposure without always needing to escalate to legal
• Have designed and operated a compliance review mechanism integrated into a product development or release process
• Can translate HIPAA technical compliance requirements into actionable workstreams for engineering and product teams
• Deliver clear, precise compliance documentation — policies, checklists, audit evidence, deployment guides — for both technical and non-technical audiences
• Thrive in fast-paced, ambiguous environments where you’re expected to build processes from scratch and keep them working under rapid product change
• Are energized by being the organizational expert who educates and influences rather than only advises

Strong candidates may also:

• Have worked in AI/ML or developer-platform companies and understand the unique challenges of PHI exposure in model inference and API environments
• Have HITRUST CSF experience or experience mapping HIPAA requirements to HITRUST controls
• Bring experience from high-growth technology companies where compliance programs had to scale alongside rapid product expansion
• Have implemented or significantly contributed to compliance automation or GRC tooling integrations
• Possess relevant certifications (CHPC, HCISPP, CISA, CISM, CISSP, or equivalent)

Candidates need not have:

• Done everything on this list before — we value learning agility and willingness to tackle novel compliance challenges in the AI space

Deadline to Apply: None, applications will be received on a rolling basis.

The Role

As Customer Lifecycle Marketing Manager, you will own the strategy and execution of data-driven programs that maximize customer lifetime value. Your mission is to drive product adoption, reduce churn, expand revenue, and turn customers into advocates. You'll design and optimize sophisticated, multi-channel campaigns across the customer journey—from onboarding through expansion—ensuring every customer realizes the full value of LogicGate's platform.

This is a highly cross-functional, individual contributor role where you'll partner closely with Customer Success, Sales, Product, & Operations to create seamless, data-driven customer experiences that drive measurable business outcomes. You'll report to the Sr. Director of Growth Marketing.

Responsibilities

• Design and execute multi-channel upsell and cross-sell campaigns that drive revenue expansion by identifying high-propensity accounts and delivering personalized, timely offers based on product usage, customer health scores, and buying signals
• Build and optimize retention programs that reduce churn through proactive engagement, product adoption initiatives, and early warning interventions for at-risk customers
• Own the customer advocacy engine by developing scalable programs to generate reviews (G2, Gartner, etc.), capture compelling case studies, and identify customer champions for reference calls, testimonials, and speaking opportunities
• Partner with Customer Success to design and execute data-driven onboarding and activation journeys (email, in-app messaging, webinars) that accelerate time-to-value and drive feature adoption
• Develop and manage customer engagement touchpoints including newsletters, webinars, virtual events, and content programs that keep customers informed, engaged, and connected to the LogicGate community
• Support and scale local user group programs and regional customer events that strengthen community, drive product education, and surface expansion opportunities
• Lead marketing strategy and execution for LogicGate's annual customer conference (Agility), including pre-event promotion, attendee engagement, and post-event follow-up to maximize ROI and customer sentiment
• Own customer segmentation strategy, leveraging product analytics, CRM data, and customer health metrics to deliver highly targeted, relevant campaigns that drive specific behaviors and outcomes
• Build an experimentation roadmap (A/B and multivariate testing) to continuously optimize messaging, timing, channels, and journeys across the customer lifecycle
• Establish clear KPIs and reporting cadences that measure program performance against key business objectives (NRR, churn rate, product adoption, customer satisfaction) and communicate results to cross-functional stakeholders

What You Bring

Required:

• 6+ years of experience in customer marketing, lifecycle marketing, or growth marketing within B2B SaaS, with a proven track record of driving retention, expansion, and customer lifetime value
• Deep expertise in building and executing data-driven customer programs across the post-sale journey, from onboarding through advocacy
• Strong analytical skills with experience using customer data platforms, product analytics tools (e.g., Pendo, Amplitude, Mixpanel), and marketing automation platforms (e.g., HubSpot, Marketo) to segment audiences and measure impact
• Demonstrated ability to design and execute experimentation frameworks (A/B testing, etc.) and use insights to optimize campaigns
• Exceptional project management skills with the ability to manage multiple programs simultaneously in a fast-paced, cross-functional environment
• Excellent written and verbal communication skills, with the ability to craft compelling customer messaging and influence stakeholders across the organization

Preferred:

• Experience in the GRC, risk management, or compliance software space
• Background in sales-led growth (SLG) B2B SaaS environments with complex, enterprise sales cycles
• Hands-on experience with customer advocacy programs including review generation, case study development, and customer reference management
• Track record of successfully planning and executing customer events, user groups, or conferences

Engineering at Brex

Engineering at Brex is about building systems that scale with speed and intention. Our teams span Software, Data, Security, and IT, and operate with high autonomy and deep collaboration. We tackle hard technical problems, own our outcomes, and push for excellence at every level — from architecture to deployment. It’s an environment where engineering is a craft, and builders become leaders.

What you’ll do

As a Security Operations Engineer at Brex, you will focus on preventing, detecting and responding to security threats across Brex's corporate and cloud environments. You will use existing systems and develop tools to improve our security capabilities. Our team is responsible for functions across corporate security, detection & response and infrastructure security domains; and we perform systems engineering and automation to support those functions. 

Security Operations is part of our wider Trust & IT organization which means you will have the opportunity to work closely with Application Security, Corporate Engineering, GRC and IT and to improve security configurations, drive positive employee behaviors and generally work to prevent events from becoming incidents. You will also help build and maintain our team’s open source project Substation and have the opportunity to contribute to the Brex Tech Blog. You’ll be part of a team that actively contributes to the wider security community and has a commitment to mentorship and engineering excellence.

We’re looking for individuals with a strong background and interest in detecting, responding to, and resolving security incidents and security challenges. You should be comfortable dealing with lots of moving pieces, changing priorities, and new technologies, while having a keen eye for detail. Most importantly, you should be enthusiastic about working with a variety of backgrounds, roles, and people across Brex. Building a world-class financial service requires world-class security.

Where you’ll work

This role will be based in our Vancouver office. We are a hybrid environment that combines the energy and connections of being in the office with the benefits and flexibility of working from home. We currently require a minimum of three coordinated days in the office per week, Monday, Wednesday and Thursday. As a perk, we also have up to four weeks per year of fully remote work!

Responsibilities

• Work on a highly cross-functional team to prevent, detect and respond to security threats across Brex's corporate and cloud environments
• Perform security incident response, investigation, remediation, and documentation, participate in periodic threat hunting and security exercises
• Leading, scoping and building features, participate in designing, and maintaining tools and systems which support the team’s domains – corporate security, detection & response and infrastructure security 
• Collaborating and partnering with engineering and operations teams to drive remediation of security issues, while balancing prioritization of those security issues within SLA and teams’ respective backlogs
• Caring about secure system design, valuing building things correctly, an understanding of a MVP approach and an empathetic mindset when working with others

Requirements

• Bachelor’s degree in Computer Science, Engineering or related field OR equivalent training / fellowship OR 5+ years work experienceExperience working in a corporate security, detection & response or infrastructure security role with responsibilities for security alert triage and security incident response 
• Familiarity with CI/CD systems and DevOps workflows (e.g. Buildkite, Flux, Git, Terraform) in cloud environments (e.g. AWS, Azure, GCP)
• Experience with deploying and maintaining some of the security services and tools owned by the team (e.g. - SIEM, data pipelines, SOAR, domain monitoring, endpoint tooling, email protection tooling, cloud security tools)
• While not primarily a development role, the team develops and maintains tools written in Go and Python, so experience with coding is required
• You thrive in a collaborative environment filled with a diverse group of people with different expertise and backgrounds. We currently have around 30 nationalities represented with more than ½ the company working in a country different from the one they grew up in.

Bonus points

• Proficiency with Go and other programming languages 
• Experience with securing distributed systems in AWS, cloud and Kubernetes environments
• Contributions to the wider technical community (open source, public research, mentorship, community organizing, blogging, presentations, etc)

Compensation

The expected salary range for this role is $192,000 CAD - $240,000 CAD. However, the starting base pay will depend on a number of factors including the candidate’s location, skills, experience, market demands, and internal pay parity. Depending on the position offered, equity and other forms of compensation may be provided as part of a total compensation package.

Brex LLC is a wholly owned subsidiary of Capital One, N.A.

Engineering at Brex

Engineering at Brex is about building systems that scale with speed and intention. Our teams span Software, Data, Security, and IT, and operate with high autonomy and deep collaboration. We tackle hard technical problems, own our outcomes, and push for excellence at every level — from architecture to deployment. It’s an environment where engineering is a craft, and builders become leaders.

What you’ll do

As a Security Operations Engineer at Brex, you will focus on preventing, detecting and responding to security threats across Brex's corporate and cloud environments. You will use existing systems and develop tools to improve our security capabilities. Our team is responsible for functions across corporate security, detection & response and infrastructure security domains; and we perform systems engineering and automation to support those functions. 

Security Operations is part of our wider Trust & IT organization which means you will have the opportunity to work closely with Application Security, Corporate Engineering, GRC and IT and to improve security configurations, drive positive employee behaviors and generally work to prevent events from becoming incidents. You will also help build and maintain our team’s open source project Substation and have the opportunity to contribute to the Brex Tech Blog. You’ll be part of a team that actively contributes to the wider security community and has a commitment to mentorship and engineering excellence.

We’re looking for individuals with a strong background and interest in detecting, responding to, and resolving security incidents and security challenges. You should be comfortable dealing with lots of moving pieces, changing priorities, and new technologies, while having a keen eye for detail. Most importantly, you should be enthusiastic about working with a variety of backgrounds, roles, and people across Brex. Building a world-class financial service requires world-class security.

Where you’ll work

This role will be based in our Seattle office. We are a hybrid environment that combines the energy and connections of being in the office with the benefits and flexibility of working from home. We currently require a minimum of three coordinated days in the office per week, Monday, Wednesday and Thursday. As a perk, we also have up to four weeks per year of fully remote work!

Responsibilities

• Work on a highly cross-functional team to prevent, detect and respond to security threats across Brex's corporate and cloud environments
• Perform security incident response, investigation, remediation, and documentation, participate in periodic threat hunting and security exercises
• Leading, scoping and building features, participate in designing, and maintaining tools and systems which support the team’s domains – corporate security, detection & response and infrastructure security 
• Collaborating and partnering with engineering and operations teams to drive remediation of security issues, while balancing prioritization of those security issues within SLA and teams’ respective backlogs
• Caring about secure system design, valuing building things correctly, an understanding of a MVP approach and an empathetic mindset when working with others

Requirements

• Bachelor’s degree in Computer Science, Engineering or related field OR equivalent training / fellowship OR 5+ years work experienceExperience working in a corporate security, detection & response or infrastructure security role with responsibilities for security alert triage and security incident response 
• Familiarity with CI/CD systems and DevOps workflows (e.g. Buildkite, Flux, Git, Terraform) in cloud environments (e.g. AWS, Azure, GCP)
• Experience with deploying and maintaining some of the security services and tools owned by the team (e.g. - SIEM, data pipelines, SOAR, domain monitoring, endpoint tooling, email protection tooling, cloud security tools)
• While not primarily a development role, the team develops and maintains tools written in Go and Python, so experience with coding is required
• You thrive in a collaborative environment filled with a diverse group of people with different expertise and backgrounds. We currently have around 30 nationalities represented with more than ½ the company working in a country different from the one they grew up in.

Bonus points

• Proficiency with Go and other programming languages 
• Experience with securing distributed systems in AWS, cloud and Kubernetes environments
• Contributions to the wider technical community (open source, public research, mentorship, community organizing, blogging, presentations, etc)

Compensation

The expected salary range for this role is $192,000 - $240,000. However, the starting base pay will depend on a number of factors including the candidate’s location, skills, experience, market demands, and internal pay parity. Depending on the position offered, equity and other forms of compensation may be provided as part of a total compensation package.

Brex LLC is a wholly owned subsidiary of Capital One, N.A.

Engineering at Brex

Engineering at Brex is about building systems that scale with speed and intention. Our teams span Software, Data, Security, and IT, and operate with high autonomy and deep collaboration. We tackle hard technical problems, own our outcomes, and push for excellence at every level — from architecture to deployment. It’s an environment where engineering is a craft, and builders become leaders.

What you’ll do

As a Security Operations Engineer at Brex, you will focus on preventing, detecting and responding to security threats across Brex's corporate and cloud environments. You will use existing systems and develop tools to improve our security capabilities. Our team is responsible for functions across corporate security, detection & response and infrastructure security domains; and we perform systems engineering and automation to support those functions. 

Security Operations is part of our wider Trust & IT organization which means you will have the opportunity to work closely with Application Security, Corporate Engineering, GRC and IT and to improve security configurations, drive positive employee behaviors and generally work to prevent events from becoming incidents. You will also help build and maintain our team’s open source project Substation and have the opportunity to contribute to the Brex Tech Blog. You’ll be part of a team that actively contributes to the wider security community and has a commitment to mentorship and engineering excellence.

We’re looking for individuals with a strong background and interest in detecting, responding to, and resolving security incidents and security challenges. You should be comfortable dealing with lots of moving pieces, changing priorities, and new technologies, while having a keen eye for detail. Most importantly, you should be enthusiastic about working with a variety of backgrounds, roles, and people across Brex. Building a world-class financial service requires world-class security.

Where you’ll work

This role will be based in our New York office. We are a hybrid environment that combines the energy and connections of being in the office with the benefits and flexibility of working from home. We currently require a minimum of three coordinated days in the office per week, Monday, Wednesday and Thursday. As a perk, we also have up to four weeks per year of fully remote work!

Responsibilities

• Work on a highly cross-functional team to prevent, detect and respond to security threats across Brex's corporate and cloud environments
• Perform security incident response, investigation, remediation, and documentation, participate in periodic threat hunting and security exercises
• Leading, scoping and building features, participate in designing, and maintaining tools and systems which support the team’s domains – corporate security, detection & response and infrastructure security 
• Collaborating and partnering with engineering and operations teams to drive remediation of security issues, while balancing prioritization of those security issues within SLA and teams’ respective backlogs
• Caring about secure system design, valuing building things correctly, an understanding of a MVP approach and an empathetic mindset when working with others

Requirements

• Bachelor’s degree in Computer Science, Engineering or related field OR equivalent training / fellowship OR 5+ years work experienceExperience working in a corporate security, detection & response or infrastructure security role with responsibilities for security alert triage and security incident response 
• Familiarity with CI/CD systems and DevOps workflows (e.g. Buildkite, Flux, Git, Terraform) in cloud environments (e.g. AWS, Azure, GCP)
• Experience with deploying and maintaining some of the security services and tools owned by the team (e.g. - SIEM, data pipelines, SOAR, domain monitoring, endpoint tooling, email protection tooling, cloud security tools)
• While not primarily a development role, the team develops and maintains tools written in Go and Python, so experience with coding is required
• You thrive in a collaborative environment filled with a diverse group of people with different expertise and backgrounds. We currently have around 30 nationalities represented with more than ½ the company working in a country different from the one they grew up in.

Bonus points

• Proficiency with Go and other programming languages 
• Experience with securing distributed systems in AWS, cloud and Kubernetes environments
• Contributions to the wider technical community (open source, public research, mentorship, community organizing, blogging, presentations, etc)

Compensation

The expected salary range for this role is $192,000 - $240,000. However, the starting base pay will depend on a number of factors including the candidate’s location, skills, experience, market demands, and internal pay parity. Depending on the position offered, equity and other forms of compensation may be provided as part of a total compensation package.

Brex LLC is a wholly owned subsidiary of Capital One, N.A.

This role can be worked hybrid from these SoFi Offices and possibly 100% remote

San Francisco, CA

Salt Lake City, UT

Seattle, WA

Enterprise Architect (Enterprise Architecture Practice Lead) — SoFi

The Role:

SoFi is seeking an experienced Enterprise Architect to drive the expansion and enhancement of our Enterprise Architecture (EA) practice. While the foundation of our EA function exists, we are looking for a visionary leader to help take the practice to the next level—maturing our methodologies, scaling our standards, and deepening the alignment between our technology investments and SoFi’s rapid growth.

The ideal candidate is business-savvy and technically proficient: a generalist across business, application, data, and technology architecture domains who applies holistic thinking to align technology, business process, risk, and financial outcomes to SoFi’s strategy. Reporting into the Technology organization, you will be a hands-on leader who instantiates the enterprise continuum, establishes rigorous standards, and coaches others in areas such as governance and roadmap development.

What You’ll Do:

1) Strategic Planning & Enterprise Vision

• Enhance and scale the long-term enterprise technology roadmap and vision, ensuring it evolves alongside SoFi’s corporate strategy and operating model.
• Evaluate existing systems and identify modernization opportunities across platforms and shared services to support future business needs.
• Assess emerging technologies—including AI-enabled productivity and automation—to enhance innovation while maintaining architectural integrity.
• Drive financial rigor in technology decisioning, leveraging metrics such as ROI, EVA, and NPV to justify architectural shifts.

2) Architecture Design, Standards & Governance

• Mature the EA practice by curating the enterprise continuum, defining reference architectures, and establishing "gold standards" for the organization.
• Own and enforce architecture governance policies and change advisory processes that ensure systems are scalable, secure, resilient, and interoperable.
• Mature the governance and lifecycle management of our SaaS application portfolio, ensuring consistency, security, and cost-efficiency across the organization.
• Architect the infrastructure and integration patterns required to support our enterprise AI strategy and other high-scale initiatives.

3) Architecture Across Domains

• Business & Security Architecture
• Examine all business processes and technology in a holistic manner, ensuring alignment via methodologies like cascading goals or OKRs.
• Deepen the architectural integration of core corporate processes, including Order to Cash, Procure to Pay, Hire to Retire, Security, and GRC (Governance, Risk, and Compliance).
• Ensure that security and risk management are "baked into" the business architecture rather than treated as an afterthought.
• Applications & Data Architecture
• Lead the design of large-scale, complex enterprise systems using loosely-coupled, service-oriented architecture (SOA) and microservices patterns.
• Oversee enterprise-level application portfolio management, roadmapping, and the maturation of master data management solutions.
• Guide the evolution of data platforms, including EDW/data lakes, ETL/ELT, and real-time streaming data(e.g., Kafka).
• Technology Architecture
• Provide architectural oversight for data center building blocks and cloud capabilities (ideally AWS).
• Proven experience implementing Architecture-as-Code and 'Shift-Left' principles to automate architectural compliance within CI/CD pipelines.
• Proven experience transitioning from manual architectural reviews to a Guardrails-based Governance model that integrates compliance checks directly into the SDLC.

4) Stakeholder Collaboration & Leadership

• Act as the primary bridge between high-level business strategy and technical implementation, translating complex technical trade-offs into business terms for executive leadership.
• Demonstrate diplomacy and persuasion when orchestrating enterprise-wide changes, collaborating effectively across all levels of the organization.
• Passionately elevate the technical talent around you through mentoring, coaching, and establishing best practices that improve productivity and quality across multiple engineering teams.

Requirements:

• 10+ years of broad experience across the architecture domains of: business, applications, data, and technology.
• Proven track record in a similarly scoped role, having owned or significantly enhanced the design and strategy for an organization’s enterprise technology.
• Business Architecture Expertise: Working knowledge of common corporate processes (Order to Cash, Procure to Pay, Hire to Retire, Security and GRC) domains.
• Technical Leadership: Deep understanding of SOA, microservices, and REST APIs (XML/JSON), with real-world experience building scalable, globally-shared solutions.
• Data Proficiency: Experience with master data management, data warehousing, and big data streaming/ETL patterns.
• Infrastructure Awareness: Exposure to IaaS (AWS), IaC, and CI/CD-driven automation.
• Framework Knowledge: Demonstrable knowledge of common frameworks such as TOGAF, Zachman, ISO, ITIL, or Agile/SaFE.
• Communication: Exceptional communication skills with the ability to syndicate roadmaps and influence executive-level stakeholders.
• Tooling: Familiarity with productivity platforms (Google Workspace, Slack, Jira) and emerging AI tools (Copilot, Gemini, Glean) is appreciated.

Education:

• Bachelor’s or Master’s degree in information systems, computer science, or a combination of degrees spanning technical and business disciplines.
• Current TOGAF certification is a plus.

#LI-REMOTE

About SecurityScorecard:

SecurityScorecard is the global leader in cybersecurity ratings, with over 12 million companies continuously rated, operating in 64 countries. Founded in 2013 by security and risk experts Dr. Alex Yampolskiy and Sam Kassoumeh and funded by world-class investors, SecurityScorecard’s patented rating technology is used by over 25,000 organizations for self-monitoring, third-party risk management, board reporting, and cyber insurance underwriting; making all organizations more resilient by allowing them to easily find and fix cybersecurity risks across their digital footprint. 

Headquartered in New York City, our culture has been recognized by Inc Magazine as a "Best Workplace,” by Crain’s NY as a "Best Places to Work in NYC," and as one of the 10 hottest SaaS startups in New York for two years in a row. Most recently, SecurityScorecard was named to Fast Company’s annual list of the World’s Most Innovative Companies for 2023 and to the Achievers 50 Most Engaged Workplaces in 2023 award recognizing “forward-thinking employers for their unwavering commitment to employee engagement.”  SecurityScorecard is proud to be funded by world-class investors including Silver Lake Waterman, Moody’s, Sequoia Capital, GV and Riverwood Capital.

About the Role

SecurityScorecard's Solutions Architects team are trusted security advisors and business partners both internally and to prospective clients, offering deep knowledge about the market and our solution. We are intellectually curious, find great reward in delivering valuable solutions to customers, and are passionate about cybersecurity.

We are looking for an experienced and dynamic Solutions Architecture to work with our Sales teams across the US. The candidate will own the pre-sales technical engagement with our customers. The ideal candidate will have a strong technical background, exceptional verbal skills and be a strong cross functional collaborator.

Success in this role requires security and technical acumen to develop a deep understanding of SecurityScorecard's architecture and services and a consultative approach to understanding customer business needs. You'll leverage your strategic communication skills to engage in technical and business discussions with engineers and senior decision makers alike, translating customer needs into technical requirements and conveying the merit of SecurityScorecard's solutions throughout.  

NOTE:  It is a requirement that this role is in the Pacific or Mountain time zones.

Key Responsibilities

• Collaborate with the Sales team to identify technical requirements and develop customized solutions that address complex client needs, while driving revenue growth and customer satisfaction
• Delivery of compelling technical presentations, product demonstrations and Proof of Value projects for prospective clients
• Support SecurityScorecard at Industry events and C level round table events
• Work closely with Product Management and Engineering to provide market feedback and influence product roadmap based on customer needs and competitive landscape
• Proven track record of gathering detailed success metrics for customer PoV’s, including tracking and reporting
• Awareness and enforcement of MEDDPICC best practices in sales cycles
• Become a subject matter expert on cyber first Supply Chain services.
• Ability to engage with all different types of personalities and working styles across the team
• Build and foster strong relationships with other business teams, such as Marketing, Support and Customer Success
• Not afraid to be a champion for your prospects, advocating for their needs.

Skills and Experience

• 5+ years of relevant work experience (cybersecurity, TPRM, GRC, and/or similar)
• Demonstrated presentation and interpersonal skills; communicate in front of large groups with a mixed audience of technical and non-technical 
• Experience working with enterprise level clients and managing complex sales cycles
• Demonstrated ability to manage complex technical projects, demonstrate clear business value and lead technical strategy in sales engagements
• Bachelor Degree in Computer Science or equivalent work experience
• Sales experience NOT REQUIRED, but experience of selling technical SaaS and/or managed service solutions a plus
• Industry Certifications such as CEH, CISSP, CompTIA Security+ CISA  GCIH etc a plus

Traits

• Highly motivated self starter who works well cross functionally
• Intellectually curious; seeks to continually self-educate and evolve domain specific knowledge 
• Willing to travel on day and overnight trips throughout the US

Benefits:

Specific to each country, we offer a competitive salary, stock options, Health benefits, and unlimited PTO, parental leave, tuition reimbursements, and much more!

The estimated total compensation range for this position is $100,000 - $195,000 (base plus bonus). Actual compensation for the position is based on a variety of factors, including, but not limited to affordability, skills, qualifications and experience, and may vary from the range. In addition to base salary, employees may also be eligible for annual performance-based incentive compensation awards and equity, among other company benefits. 

SecurityScorecard is committed to Equal Employment Opportunity and embraces diversity. We believe that our team is strengthened through hiring and retaining employees with diverse backgrounds, skill sets, ideas, and perspectives. We make hiring decisions based on merit and do not discriminate based on race, color, religion, national origin, sex or gender (including pregnancy) gender identity or expression (including transgender status), sexual orientation, age, marital, veteran, disability status or any other protected category in accordance with applicable law. 

We also consider qualified applicants regardless of criminal histories, in accordance with applicable law. We are committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. If you need assistance or accommodation due to a disability, please contact talentacquisitionoperations@securityscorecard.io.

Any information you submit to SecurityScorecard as part of your application will be processed in accordance with the Company’s privacy policy and applicable law. 

SecurityScorecard does not accept unsolicited resumes from employment agencies.  Please note that we do not provide immigration sponsorship for this position.   #LI-DNI

Senior DevSecOps Engineer

About us

Hyperproof is on a mission to transform the Governance, Risk, and Compliance (GRC) world with a powerful new software platform.  With Hyperproof, companies can save time and money while also operating their programs at a much higher level of effectiveness and accountability.  We envision a world where organizations we depend on are truly trustworthy - and Hyperproof is the platform that will get them there.

We have a great team and culture - picture yourself in a highly collaborative startup environment where you can make a real impact on something truly important. It’s an exciting time to be at Hyperproof; we raised our Series B round in 2023, validating our teamwork and company vision, and we continue to grow rapidly. 

As we continue to grow, we are seeking a talented Senior DevSecOps Engineer to join our team and lead our efforts in supporting our multi-region, FedRAMP-authorized infrastructure.

WHO YOU ARE:

You are a seasoned Senior DevSecOps Engineer with a passion for ensuring the reliability, scalability, and security of cloud-based infrastructure. You thrive in dynamic environments and possess a deep understanding of Azure technologies. Your expertise in DevOps methodologies and security practices, and federal compliance standards makes you an invaluable asset to any team.

You excel at collaborating with cross-functional teams and are dedicated to driving innovation and continuous improvement. You understand that compliance and developer velocity are not opposing forces — and you know how to architect systems that deliver both.

WHAT YOU WILL DO:

As a Senior DevSecOps Engineer, you will lead the management and optimization of Hyperproof's Azure-based infrastructure across commercial and FedRAMP regions. Your responsibilities will include:

• Develop and execute DevOps strategy tailored to all Hyperproof regions, including our FedRAMP-authorized environments.
• Own and evolve our Terraform/Terragrunt IaC pipeline for multi-subscription promotion, including continuous monitoring
• Architect secure, scalable platform infrastructure including GitHub Actions, GitLab, and ADO CI/CD pipelines with security gates, Kubernetes environments, observability systems, and compliance automation that enables developer  velocity while maintaining continuous compliance posture.
• Support FedRAMP authorization activities: contribute to SSP documentation, NIST 800-53  control implementations, 3PAO coordination, and readiness assessments while establishing  repeatable processes.
• Lead the design and security implementation of our Seattle-based on-premise build/test platform. You will ensure that physical hardware configurations (firmware, networking, and storage layout) maintain parity with our Azure Kubernetes Service (AKS) patterns while meeting strict SOC 2 compliance standards for local developer workflows.
• Establish security and compliance architecture patterns across encryption, network  segmentation, secrets management, supply chain security, and incident response.
• Drive technical decisions and technology selection for cloud platforms, compliance tooling, and security controls.
• Mentor and raise the technical bar across engineering teams through architecture reviews,  design discussions, and establishing FedRAMP best practices.
• Partner with security, product, and business leadership to translate federal customer  requirements into technical architecture and deliver measurable improvements in security  posture and operational efficiency.
• Monitor, triage, and remediate CVEs and security vulnerabilities across infrastructure,  container images, and dependencies — maintaining compliance with FedRAMP continuous monitoring requirements.

WHAT YOU WILL BRING:
Required:

• U.S. citizenship, residing and working from within the United States.*
• BS in Computer Science, Engineering, or a related field (or equivalent  experience).
• 5+ years of extensive experience in SRE, DevSecOps or Platform engineering roles, with a focus on managing  Azure-based infrastructure.
• Demonstrated knowledge and interest in applying AI technologies towards fully or partially automating compliance & security workflows
• Strong programming skills (Python, Bash, Go, or Node.js) and demonstrated ability to drive complex technical initiatives from architecture through production.
• Expertise in modern platform technologies: Kubernetes security, infrastructure-as-code (Terraform/Terragrunt), GitOps (Helm/ArgoCD/Flux), Ansible, CI/CD security, observability systems, and secrets management.
• Familiarity with compliance standards and regulations, particularly NIST 800-53 and  FedRAMP.
• Excellent communication and collaboration skills, with the ability to work effectively in  a cross-functional team environment.
• A positive attitude and a willingness to learn, adapt, collaborate, and grow in a dynamic  environment.
  
  

Preferred:

• Experience contributing to FedRAMP authorization efforts (Moderate or High), including SSP documentation, control implementation, or 3PAO coordination.
• Experience with Azure networking, and security boundaries.
• Experience with compliance automation, supply chain security (SBOM, image signing), or secrets management at scale.
• Professional certifications: CISSP, Azure Security Specialty, CKS, or equivalent.
• Familiarity with CMMC, OSCAL, or compliance-as-code practices.
• Experience with vulnerability scanning and remediation tooling (e.g., Trivy, Snyk, Qualys, or Defender for Cloud).
• Advanced degree in Computer Science or related field, or equivalent experience architecting secure, compliant platforms at scale.

LOCATION

Candidate must be local within the Seattle area; available to work until 6pm Pacific on a daily basis.

CANDIDATE EXPERIENCE

We respect your time and aim for transparency throughout the interview process. You can expect:

• A 30-minute initial chat with our Principal People & Talent Partner.
• A Take Home Assessment, which you will work on within GitHub.
• Three 60-minute 1:1 interviews with members of our engineering team, one of them who will be the hiring manager.

This process allows both parties to ask questions and gauge fit for the team.

*Due to the nature of the work and participation in federal security and compliance programs, U.S. citizenship is required as a bona fide occupational qualification in accordance with federal government security and compliance regulations. This role requires physical presence within the United States while working — access to FedRAMP-authorized  environments from outside U.S. borders is not permitted.

This is a hybrid role that requires regular, weekly presence in our Chicago or Seattle office.

As our Manager, Sales Development you will be a foundational GTM leader responsible for building and scaling pipeline generation at LogicGate. This isn't a traditional sales management role, we're looking for a GTM architect who can design scalable systems using AI, optimize every stage of the funnel, and lead from the front by maintaining an active prospecting role.

You'll own the full demand generation motion: converting inbound leads and executing targeted outbound campaigns against strategic new logo accounts. Your primary mission is to build repeatable, data-driven plays that generate qualified pipeline and revenue while coaching and training early sales professionals. You'll leverage AI and modern GTM technology to reimagine how SDRs work—using automation, intelligence tools, and conversation analytics to scale impact without scaling headcount.. If you're equally comfortable building Salesforce dashboards and as you are running discovery calls, designing account-based plays as you are coaching objection handling, and analyzing conversion funnels as you are celebrating team wins—this is the role for you.

This is a high-impact, high-visibility role. You'll collaborate directly with Sales, Marketing, and RevOps leadership to define prospecting strategy, establish KPIs, and drive accountability for pipeline quality and revenue outcomes.

What You'll Do:

• Own the Sales Development strategy and execution - Design and implement the full GTM blueprint for inbound conversion and outbound prospecting across target accounts and territories; continuously analyze pipeline metrics (conversion rates, velocity, lead quality) to identify and execute levers for growth
• Reimagine SDR workflows with AI - Stay ahead of the curve on AI-powered prospecting tools, message generation, research automation, and conversation intelligence; continuously experiment with new technologies to scale team impact and productivity
• Lead from the front - Manage day-to-day team activities while maintaining an active prospecting role; model best practices through live calls, email sequences, and account research that demonstrate the craft
• Build and optimize the engine - Act as the critical liaison between Sales and Marketing; define and enforce SLAs for lead response times, MQL-to-SQL qualification criteria, and pipeline hygiene standards
• Drive pipeline infrastructure and AI adoption - Manage and optimize the sales development tech stack (CRM, workflow, intent data tools, conversation intelligence); build and test your own cadences, leverage Gong for call coaching and pattern recognition, and deploy AI tools for account research, lookalike identification, and contact discovery to maximize team efficiency and output
• Coach and develop early-career sales talent - Implement rigorous coaching programs focused on enterprise prospecting, stakeholder mapping, qualification rigor, and executive engagement; mentor SDRs on complex B2B sales skills while creating pathways to senior SDR, team lead, or specialized GTM roles as they grow
• Own the metrics - Set clear, actionable goals and guide the team to achieve outstanding monthly and quarterly results; provide accurate pipeline forecasting and performance analysis to senior leadership, articulating drivers, risks, and mitigation strategies
• Scale the function - Drive recruiting, hiring, and onboarding of high-potential SDR talent; build scalable processes and playbooks that enable consistent execution as the team grows

What Makes You a Great Fit:

Required:

• 6+ years in B2B SaaS sales with a proven track record of quota achievement in a high-velocity environment, including 3+ years directly managing or building SDR/BDR teams
• GTM engineer mindset - Demonstrated success defining, implementing, and optimizing sales processes (qualification frameworks, cadence structures, lead management, account selection) that resulted in measurable pipeline growth
• Technical operator and AI enthusiast - Expert proficiency with Salesforce and hands-on experience building/managing cadences in Outreach or Salesloft; proven ability to use Gong for call coaching and performance analysis; comfortable experimenting with AI tools for research, prospecting, and workflow automation; can derive actionable insights from pipeline data and conversation intelligence
• Player-coach DNA - You lead by example and aren't afraid to roll up your sleeves; you believe the best managers stay connected to the craft and coach through demonstration
• Cross-functional collaborator - Exceptional ability to work with Marketing, Sales Ops, and AE leadership to drive alignment on GTM strategy, campaign execution, and SLAs
• Talent developer - Coaching-centric leadership style with a passion for mentorship and developing early-career professionals into top performers

We get excited about you if you have:

• GRC, Risk, Compliance, or Governance technology experience - Familiarity with selling to Risk, Compliance, Audit, IT, or Legal buyers
• Methodology expertise - Certification or deep experience with established frameworks (MEDDIC, SPICED, Challenger) and implementing them within a coaching program
• Builder credentials - You've launched outbound plays from scratch, implemented new tools/platforms, or created enablement programs that drove measurable results
• AI/automation track record - Examples of using AI tools (ChatGPT, Clay, Claude, generative research tools) to improve prospecting efficiency, message quality, or account intelligence
• Services or solution selling background - Experience beyond pure SaaS, especially in consultative or complex solution environment

The anticipated on-target earnings range for the role is $115,000 - $140,000 per year + equity + benefits. Actual salaries may vary and will be based on factors, such as the candidate's qualifications, skills, competencies, and proficiency for the role. Internal candidates who have current pay within or above the hiring range are still encouraged to apply if interested.

Hybrid Workplace

Our hybrid workplace allows for flexibility aligned to role responsibilities and exceptional customer delivery. Location requirements for this role can be found above.

Total Rewards 

We are proud to offer a variety of competitive, inclusive, and comprehensive total rewards that are designed to support the unique needs of our employees both inside and outside of the workplace.

In addition to offering competitive salary and variable compensation plans, equity options, and flexible health and wellness benefits, we are proud to offer generous PTO, Annual Company Holidays, Health Days, and Summer Fridays.

Employees' growth and development are supported throughout their career journey through informal and formal programs and activities, including access to LinkedIn Learning, regular People Leader training, and our internal Mentorship Program. 

Our Culture

At LogicGate, our culture and employee experience are grounded in our core values of Be as One, Do the Right Thing, Embrace Curiosity, Own It, Empower Customers, and Raise the Bar, which guide how we show up - for each other, our customers, and all we interact with.

We believe that the strongest teams are made up of individuals who bring their different identities, experiences, and perspectives to the table. We are committed to fostering an inclusive work environment where all employees’ differences are celebrated and everyone is encouraged to bring their authentic selves to work.

We encourage everyone to join one of our Employee Resource Groups (AAPI @ LogicGate, Pride at LogicGate, and Women in LogicGate) to participate in and contribute to conversations that foster an inclusive culture.

LogicGate also believes strongly in giving back to the communities in which we live and work. To enable our teams to give back, we offer paid volunteer hours and company-wide charitable activities supporting a variety of organizations and causes.

We are proud to have been recognized as a top workplace by Built In, Crain’s Chicago Business, the Chicago Tribune, and more. Visit our website to learn about our latest recognition.

Learn more about our culture here. 

Excited about LogicGate but not familiar with GRC? 

• GRC stands for Governance, Risk, and Compliance
• GRC professionals help their companies manage uncertainty, act with integrity, and stay on the right side of the law. 
• The GRC market is rapidly expanding with continuous growth opportunities. The current market size was valued at $50.5 billion in 2024 and is projected to reach $104.5 billion by 2031.

WHAT WE DO

Our Security, Risk and Compliance consultants work with clients at all levels of the organization, from the C-suite to the shop floor, helping them to deliver on their most strategic initiatives. We’re known for making realistic, data-driven decisions that deliver value in tangible ways to our clients. Our clients ask for us on projects that require a superior combination of technical and business capabilities, people and management skills, and a collaborative mindset. We excel in understanding complex programs and strategic initiatives and breaking them into actionable pieces.

We are actively looking for professionals in the following areas:

• Compliance
• Information Security
• Risk Management
• Data Privacy

The ideal candidate’s experience may include but is not limited to the following:

• Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects
  • Sample projects/programs could include but are not limited to:
    • Compliance framework mapping and implementation,
    • Regulatory mapping and implementation
    • Audit, risk or regulatory remediation management,
    • Readiness for new laws and regulations,
    • Risk, Compliance or Information Security risk reporting and monitoring
    • Creation of roadmaps to mature or advance Risk, Compliance or Information Security Strategies/Programs/Controls
    • Design and enablement of cyber controls functions and processes
    • Change management related to regulatory adoption or compliance changes
    • Audit or certification readiness
  • Familiarity or direct experience with GRC/Cybersecurity solutions, tools and technologies
  • Control design or maturation for high-demand technical areas such as ERP, Identity and Access Management, Business Continuity and Resiliency, Cloud
  • Knowledge of and/or application of industry specific regulations, laws, and standards such as the EU-GDPR, CCPA/CPRA, HIPAA, PCI
  • Knowledge of and/or application of compliance and security frameworks and standards such as COSO, NIST, ISO
  • Management of regulatory, internal or external audits, or experience as an auditor
  • Projects or roles requiring coordination across lines of defense working with technical, business, compliance, risk and audit teams to deliver solutions
  • Work or projects with military or federal government agencies in Risk, Compliance or Information Security/Cyber Security sectors
  • Certifications: CIPP, CRCM, CRM, ARM, CISSP, CISM

QUALIFICATIONS

Required-

• Alignment to our core values: Excellence, Participation, Integrity, and Collaboration
• Hungry, Humble, Smart
• Demonstrated business and technology acumen
• Strong written and verbal communication skills
• Understanding and experience solving real business problems
• Proven track record of delivering results
• Experience working with and/or leading a team
• Ability to work across industries, roles, functions & technologies
• Authorization for permanent employment in the United States (this position is not eligible for immigration sponsorship)

Preferred-

• Bachelor’s degree
• 8+ years professional experience
• Experience across our service offerings

The Company collects and uses Personal Information for human resources, employment, benefits administration, and business-related purposes.  To comply with our regulatory obligations under the California Consumer Privacy Act (“CCPA”), the Company is required to notify you of the Personal Information we collect.  To access our CCPA Policy including the categories of Personal Information we collect and the purposes for which we intend to use this information, please visit SEI's Privacy Policy.