Reimagining real estate to make it easier than ever to move from one home to the next.

Principal Security Engineer

Security EngineerSecurity EngineerFull TimeRemoteTeam 5,001-10,000Since 2006H1B SponsorCompany Site LinkedIn

Location

California + 6 more

Posted

58 days ago

Salary

$168.6K - $269.4K / year

Bachelor Degree7 yrs expEnglishAWSAzureCloudGoogle Cloud Platform

Job Description

• Lead application security assessments, including scoping and managing penetration testing, threat modeling, and secure design reviews for high-impact systems. • Identify, validate, and prioritize complex security vulnerabilities across web applications, APIs, and cloud-native services. • Partner with software engineers to embed secure-by-default patterns into application architectures and development workflows. • Influence the security of primarily AWS-based systems, with exposure to GCP and Azure, focusing on identity, networking, data protection, and service integrations. • Drive AI security initiatives by establishing guardrails, patterns, and review practices, and assess AI-specific risks such as data exposure, misuse, and unintended behaviors in AI- and LLM-powered systems. • Develop and promote scalable application and AI security standards, guardrails, and best practices. • Mentor and coach security engineers, raising the technical bar and fostering a culture of security across the team. • Serve as a technical owner for application and AI security tooling, responsible for configuration, integration, and ongoing improvement in partnership with engineering and platform teams.

Job Requirements

Minimum of 7+ years of security engineering experience, including at least 5+ years focused on Application Security or penetration testing.
Demonstrated experience driving or owning AI security initiatives (2+ years), including assessing and mitigating risks in AI- or LLM-enabled systems.
Deep understanding of common vulnerability classes and secure software development practices.
Hands-on experience securing cloud-native applications, particularly in AWS environments, and designing secure solutions across modern application and cloud environments.
Ability to read, write, and review code in at least one modern programming language.
Proven experience designing and implementing secure system architectures, including hands-on threat modeling and security-driven design decisions.
Experience communicating security risks clearly to both technical and non-technical partners.
Demonstrated ability to mentor engineers and act as a technical leader without formal authority.