Senior Manager, Governance and Trust jobs in United States
cer-icon
Apply on Employer Site
company-logo

Chainguard · 4 weeks ago

Senior Manager, Governance and Trust

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$174K/yr - $205K/yr

Chainguard is a company focused on providing secure solutions for software development and deployment. As the Senior Manager of Governance & Trust, you will lead the development of innovative governance, risk management, and compliance strategies while collaborating with various teams to ensure world-class security for both the company and its customers.

Cloud SecurityDeveloper ToolsEnterprise SoftwareOpen SourceSecurity
check
H1B Sponsor Likelynote

Responsibilities

Develop and execute a modern strategy for governance, risk, and compliance that empowers the company’s go-to-market strategy and ambitions
Build and retain a top-tier team of subject matter experts and technicians that can effectively support and advise world-class Engineering and Product Security functions
Level up our governance, risk management, and assurance activities through practical implementation of automation and AI capabilities. Lead G&T with an “automation first” mindset, and be unreasonably dissatisfied with any control that requires manual, periodic assurance
Deliver a category-leading customer experience around trust and security. Collaborate with Sales, Marketing, and other security functions to build or strengthen the tools, processes, and documentation necessary to wow new customers and delight existing ones
Level up our approach to policies, standards, and controls. Achieve a coherent, efficient, and outcome-focused approach to policy implementation and management that helps accelerate the business and removes friction
Translate regulatory, customer, and threat mitigation requirements into comprehensive, practical controls that improve the security, resiliency, and value of the company and its products. Drive policy-as-code and push a GitOps-based approach to control management wherever practical
Lead risk assessments that prioritize business context, engineering tradeoffs, and data-driven decision making over theoretical compliance risks
Use the FAIR framework to implement a continuous risk management program that integrates with product development and engineering processes
Partner with engineering and product teams to track risk remediation with transparency and accountability
Sustain a best-in-class security and compliance posture with regards to key regulatory frameworks, customer preferences, and emerging threat actor tactics. Grow our certification posture beyond SOC2 and ISO 27001 to include certifications and audits against global standards like CRA
Champion automation and policy as code to eliminate assurance toil and provide 24/7 views into control adherence and effectiveness
Conduct internal control reviews, security assessments, and assurance activities using a collaborative, coaching-oriented approach
Lead external audits with a focus on clarity, efficiency, and reuse of evidence
Build cross-functional knowledge on topics such as emerging regulatory frameworks, interpreting security requirements, and customer-valued security practices by conducting ongoing training for functions including Sales, Marketing, Product, and Legal
Act as a bridge between engineering, legal, product, and leadership, translating risks and requirements into actionable plans
Advocate for technical solutions (automation, tooling, secure defaults) as primary ways to meet requirements, rather than manual process. For example, partner with Product Security and Engineering teams to embed security control validations into CI/CD pipelines

Qualification

GovernanceCompliance strategyRisk management programsAutomationAI capabilitiesPublic cloud infrastructureNIST 800-53 frameworkISO 27000 familyFAIR frameworkCoachingExecutive presenceGoogle Sheets proficiencyCommunication skillsLeadershipCross-functional collaboration

Required

Can-do attitude and a focus on progress over perfection - a role model leader that develops and coaches junior staff
Strong understanding of modern public cloud and SaaS-based infrastructure, and assurance automation and evidence collection using cloud APIs
Experience implementing and operating FAIR-based risk management programs
Excellent knowledge of frameworks like NIST 800-53 and the ISO 27000 family. Fluency in regulatory frameworks like NIS2 and CRA as well as programs like FedRAMP and IRAP will also important
Level 999 Wizard skills for Google sheets, slides, docs, dashboards, etc
Proven track record managing cross-functional initiatives in fast-paced environments (startup or growth-stage preferred)
Outstanding executive presence, as this job interacts extensively with customers, partners, and Chainguard executives
Excellent written and verbal communication skills, with the ability to translate between technical and business audiences

Benefits

Flexible & Remote-First Culture: Work remotely with team meetup opportunities, bi-annual destination summits, and a monthly stipend for coworking spaces, phone and internet costs.
Our Approach to Equity: Receive stock options upon hire and promotion. Plus, you can participate in secondary offerings and have 10 years to exercise your options (yes, you read that correctly: 10 years!).
100% Covered Health Insurance: We cover 100% of your health, vision and dental insurance premiums for you and your dependents. Nothing comes out of your paycheck.
∞ Flexible Time Off: Take the time you need – to do our best work, we need to recharge and reset.
18 Weeks Paid Parental Leave: We offer 18 weeks for birthing parents and 12 weeks for non-birthing parents, with the option to use it all at once or throughout your child's first year.

Company

Chainguard

twittertwittertwitter
company-logo
Chainguard is a cloud-native development platform that provides low-to-zero CVE container images for building and running applications.
dateFounded in 2021
location
Kirkland, Washington, USA
people-size201-500 employees
web-link
https://www.chainguard.dev

H1B Sponsorship

Chainguard has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (1)
2023 (2)

Funding

Current Stage
Late Stage
Total Funding
$892M
Key Investors
General CatalystSpark CapitalSequoia Capital
2025-10-23Debt Financing· $280M
2025-04-23Series D· $356M
2024-07-25Series C· $140M

Leadership Team

leader-logo
Dan Lorenc
Founder/CEO
linkedin
leader-logo
Kim Lewandowski
Co-Founder
linkedin

Recent News

SD Times
Chainguard adds 10 new projects to EmeritOSS program for prolonging the life of open source tools
2026-01-17
GeekWire
Here’s where Seattle ranks among U.S. cities based on capital raised
2026-01-12
TechTarget
Free Docker Hardened Images challenge Chainguard
2025-12-18
Company data provided by crunchbase