Principal Security Engineer (Cloud)

TL;DR

Principal Security Engineer (Cloud/Platform): Leading the design and implementation of platform-wide security capabilities for a SaaS cloud platform with an accent on secure-by-design principles, zero-trust architecture, and software supply chain security. Focus on automating security controls in CI/CD pipelines, integrating AI-enabled risk detection, and reducing infrastructure vulnerability across multi-cloud environments.

Location: United States

Company

hirify.global is a billion-dollar cloud compliance platform defining the relationship between tax and technology.

What you will do

• Lead the design and implementation of secure-by-default platform capabilities, including authentication, secrets management, encryption, and identity controls.
• Establish and drive the adoption of zero-trust architecture principles and least-privilege access models across infrastructure.
• Serve as the technical lead for Platform Security, providing direction and establishing scalable security patterns and guardrails.
• Integrate security capabilities into development platforms, CI/CD systems, and cloud-native architectures.
• Develop and execute AI-enabled approaches to improve vulnerability discovery, prioritization, and remediation effectiveness.
• Mentor engineers and raise technical standards across the broader engineering organization through domain leadership.

Requirements

• Bachelor's degree in Computer Science, Computer Engineering, Mathematics, or a related technical discipline.
• 12+ years of professional experience, including at least 5 years focused on cloud, infrastructure, or platform security.
• Strong programming experience in Java, Go, or Python for security automation and platform engineering.
• Deep expertise in cloud platform security across AWS, Azure, Google Cloud, or OCI environments.
• Expertise in Kubernetes security, container security, service mesh, and Infrastructure as Code (IaC).
• Must be based in the United States.

Nice to have

• Experience securing large-scale SaaS or cloud-native platforms.
• Security certifications such as CISSP, CCSP, or GCSA.
• Experience with emerging AI-enabled security tooling.
• Experience establishing engineering governance practices and architecture patterns.

Culture & Benefits

• Comprehensive compensation package including bonuses, paid time off, and paid parental leave.
• Health and wellness benefits including private medical, life, and disability insurance.
• Inclusive culture with 8 employee-run resource groups and strong commitment to diversity and equity.
• AI-first environment where applying AI to business challenges is an essential capability.