System Engineer

Job Summary

We are seeking a highly skilled and motivatedSecurity, Compliance, Service Governance, and FinOps Engineerto join ourPlatform Engineering Team. This role is critical in ensuring that our developer platform adheres to security, compliance, and governance standards for Europe and North America while also managingFinOps practicesto optimize cloud cost efficiency. The personnel will work closely with engineering teams to implement security best practices, ensure regulatory compliance, enforce service governance policies, and drive cost optimization.

Key Responsibilities

Security & Compliance:

Implement security best practices within the platform, ensuring alignment with industry standards (ISO 27001, SOC 2, NIST, etc.).

Enforce regulatory compliance withGDPR, CCPA, and other region-specific privacy regulations.

Conduct risk assessments and vulnerability management within the platform.

Collaborate with security teams to design and integratezero-trust architecturesandIAM policies.

Service Governance:
Define and enforce governance policies forservice publishing and consumption.

Ensure API and microservices security compliance (OAuth, OpenID Connect, API gateways).

Monitorservice reliability, availability, and SLA compliance.

FinOps & Cloud Cost Optimization:
Develop and implementFinOps strategiesto optimize cloud usage and reduce costs.

Monitor and analyze cloud expenditures to provide insights and recommendations for cost savings.

Collaborate with finance and engineering teams to establish budget controls and forecasting for cloud resources.

Implement automation for cost management, includingauto-scaling, resource tagging, and anomaly detection.

Automation & Monitoring:

Automate compliance and governance checks using tools likeOPA, Terraform, Kubernetes policies (Kyverno, Gatekeeper), and CI/CD security scanning tools.

Implement observability tools foraudit logging, security monitoring, and anomaly detection.

Collaboration & Stakeholder Engagement:

Work closely with engineering, DevOps, and security teams to embed compliance into the software development lifecycle.

Provide training and best practice guidelines to developers on security, governance, and FinOps.

Required Skills & Qualifications

5+ years of experiencein security, compliance, governance, or FinOps within a cloud-based platform environment.

Strong understanding ofcloud security principles (AWS, Azure, or GCP).

Hands-on experience withCI/CD security tools(e.g., Snyk, SonarQube, Aqua Security, Prisma Cloud).

Proficiency ininfrastructure-as-code (IaC)(Terraform, CloudFormation) and security automation.

Familiarity withKubernetes security (Pod Security Policies, RBAC, network policies).

Knowledge ofregulatory compliance standards(GDPR, SOC 2, ISO 27001, NIST 800-53).

Experience withIAM, RBAC, and policy-based security controls.

Strong scripting skills (Python, Bash, or similar) for automation.

Experience withFinOps tools (AWS Cost Explorer, Azure Cost Management, GCP Cost Analysis)and cloud financial management best practices.

Excellent problem-solving and communication skills.

Desired Skills & Qualifications

Certifications such asCISSP, CISM, AWS Security Specialty, CKS, or FinOps Certified Practitioner.

Experience withservice mesh technologies (Istio, Linkerd)for governance.

Exposure toDevSecOps methodologiesand security-as-code principles.

Prior experience working in regulated industries (finance, healthcare, etc.).

Justification for the Role

Ensuring Compliance:With evolvingprivacy laws (GDPR, CCPA, etc.)in Europe and North America, a dedicated role is essential to maintain compliance.

Security Risk Mitigation:As the platform scales, ensuringsecure CI/CD pipelines and service publishingreduces vulnerabilities.

Service Governance:Standardized governanceenhances interoperability, security, and reliabilityof published services.

FinOps Efficiency:Optimizing cloud costs and ensuring financial governanceis crucial to managing infrastructure expenditures effectively.

Developer Enablement:Providing automated security, compliance, and cost governance frameworks allows developers to focus on innovation while adhering to best practices.

About Trimble:
Trimble is a leading provider of advanced positioning solutions that maximize productivity and enhance profitability for our customers. We are an exciting, entrepreneurial company, with a history of exceptional growth coupled with a disciplined and strategic focus on being the best. While GPS is at our core, we have grown beyond this technology to embrace other sophisticated positioning technologies and, in doing so, we are changing the way the world works. Those who successfully lead others to meet our objectives are vital to our organization. Leadership at Trimble is much more than simply exercising assigned authority; we expect our leaders to embrace a mission-focused leadership style, demonstrating the strength of character, intellect and the ability to convert ideas to reality.