Principal Java Engineer (Security, Elasticsearch)

TL;DR

Principal Java Engineer (Security, hirify.globalsearch): Leading the architecture and implementation of core authentication, authorization, and tenant-isolation primitives within hirify.globalsearch with an accent on optimizing security performance at massive scale within distributed systems environments. Focus on applying cryptographic solutions to address customer use cases and ensuring robust data isolation within shared infrastructure.

Location: Remote (United States, Canada). Specific US locations (Seattle WA, Los Angeles CA, San Francisco Bay Area CA, New York City Metro Area) may offer higher compensation.

Salary: $199,700–$315,900 USD, or $239,800–$379,300 USD in select US locations.

Company

hirify.global, the Search AI Company, provides a Search AI Platform enabling real-time data answers and secure information protection for over 50% of the Fortune 500.

What you will do

• Lead complex, multi-functional security initiatives from conception to delivery, defining technical strategy and roadmaps.
• Optimize security performance at massive scale and apply cryptographic solutions for customer use cases.
• Ensure robust data isolation within shared infrastructure supporting disparate customers.
• Act as a principal voice in architectural and design discussions, guiding security posture for hirify.globalsearch and the hirify.global Stack.
• Monitor industry advancements in security, including authentication, identity management, and data access management.
• Collaborate with peers across the company to embed security into new customer features from the outset.

Requirements

• Expertise in Core Java internals, JVM memory management, and writing high-performance, lock-free, and thread-safe code.
• Proven experience building scalable AuthZ systems, including RBAC/ABAC models, token validation, and cache invalidation strategies in distributed databases.
• Strong understanding of distributed systems security, including node-to-node trust, secure transport, and partition tolerance.
• Deep knowledge of edge identity protocols such as OAuth 2.0 and SAML.
• Ability to collaborate with engineering and product leadership to define technical vision and roadmap for security features.
• Strong cross-team collaboration skills, acting as primary technical point of contact for security features across the hirify.global Stack.

Nice to have

• Deep understanding of applied cryptography (cipher suites, TLS handshakes, certificate management).
• Hands-on experience mapping technical controls to FedRAMP (Moderate/High), FIPS, and SOC 2 standards.
• Experience working on the internals of a data store or search engine.

Culture & Benefits

• Competitive pay and health coverage for you and your family.
• Ability to craft your calendar with flexible locations and schedules.
• Generous number of vacation days each year.
• Company-matched 401k up to 6% and stock program participation.
• Matching up to $2000 for financial donations and up to 40 hours for volunteer projects.
• Minimum of 16 weeks of parental leave and commitment to diversity and inclusion.