Principal Security Engineer

TL;DR

Principal Security Engineer: Identifies security threats in applications and infrastructure, provides remediation mentorship, and builds repeatable security processes and frameworks. Focus on solving large-scale, cross-company security issues, reducing vulnerabilities at scale, and ensuring end-to-end ownership of security projects.

Location: Remote (United States). This position is not eligible to be performed in Alaska, Mississippi, North Dakota, or the Virgin Islands. hirify.global is not currently considering candidates for this role in California, Seattle, or NYC.

Salary: $140,000.00 – $273,000.00 (base pay, varies by US geographic group and qualifications).

Company

hirify.global empowers everyday entrepreneurs around the world by providing the help and tools to succeed online, from building professional websites to selling products and managing work.

What you will do

• Identify security threats in applications and infrastructure and provide remediation mentorship to system owners.
• Collaborate with SRE and development teams to find new ways to reduce the occurrence of vulnerabilities at scale.
• Build repeatable and reusable security processes and frameworks.
• Review quality issues and work towards detecting security flaws.
• Assist with scoping prospective projects and participate in projects from kickoff through completion via end-to-end ownership.
• Use industry experience to own and drive resolution and retest complex security events, policy questions, and technical security risks.

Requirements

• 7+ years of progressive security engineering experience across Security Architecture, Cryptography, Network, Cloud, Mobile, and Web Security.
• Skilled in Secure Development Lifecycle, Security by Design, and Shift Left methodologies.
• Proficient in Threat Modeling, Architecture Review, Penetration Testing, Code Review, SAST, and DAST.
• Strong scripting abilities in languages such as Python, C, C++, Java, Ruby, and PowerShell.
• Adept at applying security best practices for compliance, with excellent problem-solving and communication skills.

Nice to have

• Bachelor’s, Master's, or PhD degree in Computer Science or related field.
• Hosting industry and/or cloud experience.
• Experience in hardware security.

Culture & Benefits

• Comprehensive benefits, which may include short-term incentives (annual bonus) and long-term incentives (equity).
• Paid time off, retirement savings (e.g., 401k), bonus/incentive eligibility, equity grants, and participation in an employee stock purchase plan.
• Competitive health benefits and other family-friendly benefits, including parental leave.
• Embrace a diverse culture and offer a range of Employee Resource Groups.
• Support for entrepreneurs and those with side hustles.