Open Source Compliance Manager Jobs (NOW HIRING)

Zions Bancorporation's Enterprise Technology and Operations (ETO) team is transforming what it means to work for a financial institution. With a commitment to technology and innovation, we have been providing our community, clients and colleagues the best experience possible for over 150 years. Help us transform our workforce of the future, today.

We are seeking an Open Source Software (OSS) Governance Lead to join Zions Bancorporation.  As the Open Source Software (OSS) Governance Lead, you will modernize the bank's relationship with the open-source ecosystem, balancing the speed of modern development with the rigorous compliance standards of the financial industry. You will design and oversee the end-to-end lifecycle of OSS usage and contribution, establishing clear policies for license compliance, vulnerability management, and secure ingestion frameworks to protect our infrastructure.

This Open Source Software (OSS) Governance Lead is not just about enforcement; you will act as a strategic bridge between Engineering, Information Security, Legal, and Risk teams.  Your leadership will ensure that as we scale our digital offerings, we remain a trusted, compliant, and innovative institution that leverages the best of global software safely.

Responsibilities:

Policy & Lifecycle Management

• Establish and maintain the bank's OSS standards. This includes developing and managing a curated library of approved open-source components and defining the formal processes for how new components are evaluated, approved, and integrated into the software development life cycle (SDLC).

Security Governance & Orchestration

• Partner with Information Security to define policies and oversee processes for Software Composition Analysis (SCA). You will ensure that vulnerability management workflows, operated by the cybersecurity team, are effective and that remediation efforts align with regulatory timelines and bank policies.

Legal & License Compliance

• Conduct and oversee rigorous audits of software licenses (e.g., GPL, Apache, MIT) to mitigate legal risks. You will ensure the bank remains compliant with all license obligations, including "copyleft" requirements, to avoid intellectual property exposure in its proprietary applications.

Strategic Risk Management

• Develop, implement, and maintain the strategy for a Software Bill of Materials (SBOM) for all critical banking applications. This will provide essential transparency to stakeholders and regulators regarding the provenance and security posture of the bank's digital supply chain.

Developer Advocacy & Training

• Serve as the central subject matter expert on OSS governance for all engineering teams. You will be responsible for streamlining the internal "request-to-use" process and providing clear training on governance practices to reduce friction between innovation and compliance. Also, provide guidance on OSS contribution.

Qualifications

• 4+ years of experience in a field such as IT governance, software engineering, or cybersecurity, with a proven track record of developing and implementing open-source governance programs.
• Extensive knowledge of the open-source software ecosystem, a wide variety of licenses (e.g., permissive, copyleft), and enterprise-level strategies for governing OSS.
• Deep understanding of the legal and compliance risks associated with open-source software, particularly within a regulated industry like finance.
• Familiarity with the principles of software vulnerability management, including the role of tools for Software Composition Analysis (SCA), SAST, and DAST.
• Excellent ability to operate as a strategic liaison, with proven experience working effectively across cross-functional teams including Legal, Engineering, Information Security, and Product Management.
• Strong analytical, problem-solving, and communication skills, with the ability to translate complex technical and legal issues into clear business risk.
• Bachelor's degree in Computer Science, Information Systems, Law, or a related field. A combination of education and experience may meet the qualifications.

Location:

This position is fully in office (5 days a week) at the Zions Technology Center - 7860 South Bingham Junction Blvd, Midvale, UT 84047

The Zions Technology Center is a 400,000-square-foot technology campus in Midvale, Utah. Located on the former Sharon Steel Mill superfund site, the sustainably built campus is the company's primary technology and operations center. This modern and environmentally friendly technology center enables Zions to compete for the best technology talent in the state while providing team members with an exceptional work environment with features such as:

• Electric vehicle charging stations and close proximity to Historic Gardner Village UTA TRAX station.
• At least 75% of the building is powered by on-site renewable solar energy.
• Access to outdoor recreation, parks, trails, shareable bikes and locker rooms.
• Large modern cafe with a healthy and diverse menu.
• Healthy indoor environment with ample natural light and fresh air.
• LEED-certified sustainable building that features include the use of low VOC-emitting construction materials.

Benefits: 

• Medical, Dental and Vision Insurance - START DAY ONE! 
• Life and Disability Insurance, Paid Parental Leave and Adoption Assistance
• Health Savings (HSA), Flexible Spending (FSA) and dependent care accounts
• Paid Training, Paid Time Off (PTO) and 11 Paid Federal Holidays
• 401(k) plan with company match, Profit Sharing, competitive compensation in line with work experience
• Mental health benefits including coaching and therapy sessions
• Tuition Reimbursement for qualifying employees
• Employee Ambassador preferred banking products

Apply now if you have a passion for impactful outcomes, enjoy working collaboratively with co-workers, and want to make a difference for the clients and communities we serve.