Principal Security Engineer, Infrastructure Security
Leads architecture and implementation of planet-scale security services like authN/Z, proxies, and key management for OpenAI's GPU clusters, multi-cloud infra, and AI models. Requires expertise in secure distributed systems, cloud platforms, and cross-team leadership.
278k – 490k/yr
RemoteSecurity Engineering
About the role
Responsibilities
Own the architecture and roadmap for one or more core security services (e.g., authN/Z, policy enforcement, secure proxies, key management), taking them from design to rollout to long-term operation.
Design and implement planet-scale security systems that provide strong guarantees across hardware, operating systems, Kubernetes, networks, and CI/CD: balancing security, reliability, latency, and developer ergonomics.
Lead cross-functional launches with infrastructure and research engineering teams, shaping interfaces, migration plans, and safe rollout strategies across large fleets and critical workflows.
Build or evolve security primitives (identity, attestation, authorization, encryption key lifecycle, access mediation) that become platform building blocks for OpenAI.
Leverage frontier models and agents to develop automation and detection tooling to continuously identify and mitigate risks in large-scale cloud and on-prem environments.
Lead design reviews and threat models for major initiatives, and drive closure on systemic issues.
Mentor engineers across InfraSec and partner teams, raising the bar on engineering quality, operational readiness, and secure-by-default practices.
Requirements
Strong software engineering skills with a track record of shipping and operating reliable distributed systems in production.
Experience building or operating critical infrastructure, especially security infrastructure, at planet scale (e.g., auth services, service-to-service proxies, certificate or key-management systems).
Deep understanding of security principles, best practices, and common vulnerabilities.
Demonstrated ability to lead cross-team technical initiatives: setting direction, aligning stakeholders, driving execution, and delivering measurable outcomes.
Expertise and curiosity about using frontier models and agents to effectively solve security challenges.
Expertise in securing large-scale cloud platforms (e.g., Azure, AWS, GCP), including multi-cloud networks and cloud-agnostic system design.
A proactive mindset, with the ability to identify and address security gaps or inefficiencies through automation and tooling.
Strong analytical and problem-solving skills, with an ability to think critically and objectively assess risks.
Excellent communication skills, with the ability to convey complex security concepts to executive, technical, and non-technical stakeholders.
Principal Security Engineer, Infrastructure Security
OpenAISan Francisco, CA +3
Principal Security Engineer leads security for OpenAI's infrastructure including GPU clusters, multi-cloud, datacenters, and Kubernetes. Drives strategy, builds controls against advanced threats, and mentors teams with deep cloud and on-prem expertise.
278k – 490k/yr
RemoteSecurity Engineering
Principal Engineer - Privacy
DatabricksMountain View, CA
Leads privacy and security engineering to secure Databricks' data platform, identifies infrastructure gaps, and builds scalable systems. Requires 10+ years in data security, 15+ years in distributed systems, and MS/PhD.
278k – 339k/yr
On-site10+ YOESecurity Engineering
Principal Infrastructure Security Engineer
CrusoeSan Francisco, CA
Lead security architecture for Crusoe's AI cloud infrastructure, driving zero-trust adoption, workload identity, supply chain security, and hardware-to-software protections at hyperscale. Requires 12+ years infrastructure security experience at a major cloud provider.
280k – 330k/yr
On-site12+ YOESecurity Engineering
Principal Software Engineer II - Product Security
SnowflakeMenlo Park, CA +1
Lead Product Security as senior technical authority, defining long-term security architecture and strategy for Snowflake's platform. Requires 15+ years experience in software engineering, security domains like AI/ML, cryptography, and languages including Java, Go, Python.
280k – 403k/yr
Hybrid15+ YOESecurity Engineering
Principal Engineer, Authentication
DatabricksMountain View, CA +1
Principal Engineer leads Authentication strategy at Databricks, crafting secure, scalable systems with 15+ years in distributed systems and data security expertise. Requires MS/PhD, leadership, and experience in identity management and access control.