Senior Principal Security Architect

📋 Description

• Lead secure-by-default cloud patterns (AWS/GCP) and features.
• Design shared security libraries: AuthN/AuthZ, encryption, input validation.
• Partner with CTO/Heads of Engineering to align security with business velocity.
• Lead complex threat modeling for high-stakes projects; address weaknesses.
• Define guardrails for IaC and Kubernetes to maintain zero-trust at scale.
• Serve as technical escalation point and mentor security engineers.

🎯 Requirements

• 12+ years in cybersecurity; 6+ years in security architecture/lead roles.
• Cloud-native security: IAM, VPC, KMS, secrets management.
• Proficient in two languages (Go, Python, Java, or Rust) with shared libraries.
• Root-cause security mindset; redesign systems to remove root vulnerabilities.
• Explain crypto primitives and trade-offs to non-technical stakeholders.
• Deep knowledge of OAuth2, OIDC, SAML and crypto (mTLS, AES-GCM, ECC).
• Zero-trust in large-scale microservices.
• Open-source contributions or active security community involvement.

🎁 Benefits

• Equity for all employees; flexible hybrid model.
• Career development programs and ERGs.
• Daily free lunch; commuting cost coverage.
• New car discount; meditation and fitness apps.
• Total rewards package with RSUs and bonuses.