Red Hat Product Security is seeking a knowledgeable and proactive Senior Compliance Manager to lead our mission of scaling compliance through automation. In this role, you will bridge the gap between rigorous compliance requirements and modern engineering practices.

Our vision is to 10X compliance activities by moving away from manual checklists toward automated evidence collection and remediation. You will leverage your in-depth understanding of information systems, hands-on experience with AI capabilities, and a default-to-open mindset to ensure Red Hat’s product offerings are secure-by-design.

What You’ll Do

• Own the compliance functions for Red Hat’s product offerings and managed service environments, ensuring they meet rigorous global certification standards.
• Partner with engineering and managed service teams to develop, and implement automation at scale.
• Be comfortable leading compliance deep-dives across multi-functional teams (Engineering, Sales, Product) and act as the primary compliance lead during internal audits.
• Collaborate with open-source communities to develop and implement Red Hat-specific capabilities from the upstream; contribute directly to projects to improve the security and compliance ecosystem.
• Foster a high-trust, collaborative environment by mentoring junior team members and serving as a security and compliance evangelist both inside Red Hat and within the broader open-source community.

What You’ll Bring

• Technical Proficiency: You are comfortable with Linux, GitHub, and test-driven development. Some experience delivering secure software in programming languages such as Python.
• AI-Augmented Workflow: Hands-on experience using AI tools (e.g., Cursor AI, Claude, or GitHub Copilot) to accelerate product delivery and automate complex compliance mapping.
• Cloud-Native Expertise: Strong experience with modern container technologies such as Kubernetes, and OpenShift.
• Framework Mastery: Ability to analyze security controls and design measures in alignment with standards such as CRA, NIST 800-53, PCI DSS, and ISO 27001.
• Collaborative Leadership: A proven track record of being effective in a self-directed, remote capacity within a global organization.
• Communication: Strong ability to present technical compliance concepts clearly to both technical developers and non-technical stakeholders.
• Preferred Credentials: Relevant certifications such as CISSP, CISM, CCSP, or CISA are a plus.

About Red Hat

Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver high-performing Linux, cloud, container, and Kubernetes technologies. Spread across 40+ countries, our associates work flexibly across work environments, from in-office, to office-flex, to fully remote, depending on the requirements of their role. Red Hatters are encouraged to bring their best ideas, no matter their title or tenure. We're a leader in open source because of our open and inclusive environment. We hire creative, passionate people ready to contribute their ideas, help solve complex problems, and make an impact.

Inclusion at Red Hat
Red Hat’s culture is built on the open source principles of transparency, collaboration, and inclusion, where the best ideas can come from anywhere and anyone. When this is realized, it empowers people from different backgrounds, perspectives, and experiences to come together to share ideas, challenge the status quo, and drive innovation. Our aspiration is that everyone experiences this culture with equal opportunity and access, and that all voices are not only heard but also celebrated. We hope you will join our celebration, and we welcome and encourage applicants from all the beautiful dimensions that compose our global village.

Equal Opportunity Policy (EEO)
Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, veteran status, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law.

Red Hat does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or any other payment related to unsolicited resumes or CVs except as required in a written contract between Red Hat and the recruitment agency or party requesting payment of a fee.

Red Hat supports individuals with disabilities and provides reasonable accommodations to job applicants. If you need assistance completing our online job application, email application-assistance@redhat.com. General inquiries, such as those regarding the status of a job application, will not receive a reply.