Senior Principal Information Security Engineer

Job Summary

The Digital Information Security Engineering team is seeking a highly experienced Principal Security Engineer to join our security engineering efforts. In this role you will be responsible for designing, developing and automating solutions that seamlessly integrate into the Security Platform and engineering workflows. The ideal candidate is a technical expert with deep understanding of cybersecurity principals and a proven track record in secure software development.

Responsibilities

• Collaborate with Product Management team and other cross-functional teams to gather requirements and translate them into technical specifications

• Research and decide on the best technologies to use to publish the Security Platform APIs

• Automating engineering processes using Security Data from various tools

• Develop hooks, integrations and plugins for various security tools and data sets

• Analyze and evaluate the technical capabilities and limitations of various applications within the Security Platform

• Evaluate AI and open-source tools and services

• Research security best practices for API and all related technology components required

• Identify how to leverage the capabilities of the Security Platform to fulfill the Service APIs

• Design the API layer, including identifying the required technologies, orchestration components, and security controls for the APIs.

• Delivers fully functional APIs (including all corresponding collateral) that leverage existing Security Platform optimally,

• Ensuring that the API adheres to publish SLA & SLOs and includes instrumentation that allows monitoring adherence.

• Conduct thorough testing and validation of the API to ensure reliability and performance.

• Responsible for anticipating technical roadblocks and escalating issues

• Responsible for managing all technical aspects of implementation from design to delivery to operations

• Operates and troubleshoots the Security Platform APIs to ensure delivery of required service in adherence with the published SLAs & SLOs

Leadership Characteristics

• Is a transformational leader who excels at driving bold and meaningful change at scale and across multiple dimensions.

• Leads with a global mindset, across cultures, in a highly matrixed, relationship and consensus-driven environment.

• Cultivates Innovation - ability to foresee potential security challenges and trends in the industry, and to develop strategies to address them

Qualifications

• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field with at least 10 years of hands-on experience in Information Security

• A deep understanding of security technologies, protocols, and best practices

• A deep understanding of technologies required in delivery of RESTful APIs, including containerization, API gateway, service orchestration, and MCPs

• Expertise in programming languages such as Python, Java, C++, or similar (multiple languages will be a plus)

• Experience in performing software threat analysis, security analysis and risk analysis

• Real-world experience with CI/CD i.e. GitHub Actions

• Experience with delivery using public cloud such as AWS, Azure or GCP and container technologies (e.g., Docker, Kubernetes)

• Experience in data analysis and deep learning

Successful candidate will

• Be a talent multiplier who gets the team around them to excel

• Be persistent, creative and driven to get results relentlessly

• Exhibit a strong backbone to challenge the status quo when needed

• Exhibit a high level of curiosity, keeping abreast of the latest trends & technologies, liking the research and finding new vulnerabilities

• Show pride of ownership and strive for excellence in everything undertaken

• Be energized by a diverse and constantly evolving environment

• Enjoy opportunities to learn new skills