Senior Principal Cyber Security Engineer

Required Qualifications

• Infrastructure as Code (IaC): Design and maintain immutable security environments using tools like Terraform and Ansible to ensure consistent, reproducible infrastructure.
• Automation & Tooling: Develop custom middleware and security tools in Python, Go, or Rust to automate incident response and bridge platform gaps.
• CI/CD & Pipeline Security: Embed automated security gates (SAST/DAST/SCA) directly into internal development pipelines to ensure secure software delivery.
• Cloud & Container Governance: Secure and monitor Azure/AWS/GCP, Kubernetes, and SaaS platforms through configuration auditing and continuous monitoring. API & Secret Management: Oversee the security lifecycle of internal APIs, focusing on secure connectivity and robust credential/secrets management.
• AI & Agentic Strategy: Govern Generative AI deployments and autonomous agents, focusing on prompt injection mitigation and preventing "non-human" privilege escalation.
• Offensive Engineering & Threat Modeling: Conduct continuous "Purple Team&quot exercises and deep-dive threat modeling to proactive discover and mitigate architectural vulnerabilities.
• Bachelor’s or Master’s degree in Computer Science, Cyber Security, or a related STEM field.
• 10+ years of progressive experience in Cyber Security Engineering, with at least 3 years in a Principal or Lead capacity.
• Advanced capability in Python or Go for security automation and API integration.
• Expert-level experience securing Azure, AWS, or GCP environments, including
• serverless functions and container orchestration (Kubernetes).
• Azure Security Associate (AZ-500), Certified Kubernetes Security Specialist (CKS), or CISSP.
• Experience with the OWASP Top 10 for LLMs and securing vector databases (e.g., Pinecone, Milvus).
• OSCP/OSWE (Offensive Security), CASE (Certified AI Security Expert), or CISSP-ISSAP.
• Contributions to open-source security projects, published research, or speaking
• engagements at conferences like DEF CON, Black Hat, or RSAC.
• U.S. Citizen with the ability to obtain/maintain a Top Secret security clearance
• Must be able to remain in a stationary position 50% of the time.
• Constantly operates a computer and other office productivity machinery.