Principal Information Security Engineer

Job Summary

To lead and elevate security across the infrastructure and applications, the full-time remote Principal Information Security Engineer will design and build security tools, identify vulnerabilities, and develop security automation while collaborating with various teams to enhance organizational security posture.

Key responsibilities

• Design and build internal security tooling, including agent-based and dynamic scanning tools
• Identify vulnerabilities across the AWS-based stack and develop AI-assisted security testing tools
• Conduct penetration testing and collaborate with engineering teams to embed security into the development process

Required qualifications

• 8+ years of experience in security engineering or closely related roles
• Proficient in at least one systems language (Go, Rust, C++) and one higher-level language (Python, TypeScript)
• Deep expertise in AWS infrastructure, including IAM, EKS, and RDS
• Experience in conducting penetration testing and building security automation tools
• Strong ability to operate independently on complex security challenges