# Principal Security Engineer, Infrastructure Security

**Company:** [OpenAI](https://hotfix.jobs/companies/openai)
**Location:** Remote
**Role:** Security Engineering
**Salary:** $278k – $490k/yr
**Skills:** Kubernetes, AWS, Azure, GCP, Distributed Systems, Authentication, Authorization, Key Management, Service Mesh, Encryption
**Posted:** 2026-03-25

> Leads architecture and implementation of planet-scale security services like authN/Z, proxies, and key management for OpenAI's GPU clusters, multi-cloud infra, and AI models. Requires expertise in secure distributed systems, cloud platforms, and cross-team leadership.

## Job Description

## Responsibilities
- Own the architecture and roadmap for one or more core security services (e.g., authN/Z, policy enforcement, secure proxies, key management), taking them from design to rollout to long-term operation.
- Design and implement planet-scale security systems that provide strong guarantees across hardware, operating systems, Kubernetes, networks, and CI/CD: balancing security, reliability, latency, and developer ergonomics.
- Lead cross-functional launches with infrastructure and research engineering teams, shaping interfaces, migration plans, and safe rollout strategies across large fleets and critical workflows.
- Build or evolve security primitives (identity, attestation, authorization, encryption key lifecycle, access mediation) that become platform building blocks for OpenAI.
- Leverage frontier models and agents to develop automation and detection tooling to continuously identify and mitigate risks in large-scale cloud and on-prem environments.
- Lead design reviews and threat models for major initiatives, and drive closure on systemic issues.
- Mentor engineers across InfraSec and partner teams, raising the bar on engineering quality, operational readiness, and secure-by-default practices.

## Requirements
- Strong software engineering skills with a track record of shipping and operating reliable distributed systems in production.
- Experience building or operating critical infrastructure, especially security infrastructure, at planet scale (e.g., auth services, service-to-service proxies, certificate or key-management systems).
- Deep understanding of security principles, best practices, and common vulnerabilities.
- Demonstrated ability to lead cross-team technical initiatives: setting direction, aligning stakeholders, driving execution, and delivering measurable outcomes.
- Expertise and curiosity about using frontier models and agents to effectively solve security challenges.
- Expertise in securing large-scale cloud platforms (e.g., Azure, AWS, GCP), including multi-cloud networks and cloud-agnostic system design.
- A proactive mindset, with the ability to identify and address security gaps or inefficiencies through automation and tooling.
- Strong analytical and problem-solving skills, with an ability to think critically and objectively assess risks.
- Excellent communication skills, with the ability to convey complex security concepts to executive, technical, and non-technical stakeholders.

## Similar roles

- [Principal Security Engineer, Infrastructure Security](https://hotfix.jobs/jobs/5e61c645-1763-45c7-8af9-b4bad88dca3d) - OpenAI - Remote - $278k – $490k/yr
- [Principal Engineer - Privacy](https://hotfix.jobs/jobs/7832d3b3-421d-475e-acde-1b8d426b086f) - Databricks - Mountain View, CA - $278k – $339k/yr
- [Principal Infrastructure Security Engineer](https://hotfix.jobs/jobs/fdaecf48-c221-4556-b4cf-722bfc4d05ed) - Crusoe - San Francisco, CA - $280k – $330k/yr
- [Principal Software Engineer II - Product Security](https://hotfix.jobs/jobs/09bd6c52-42a3-4c57-82dd-dcb03292fb85) - Snowflake - Menlo Park, CA - $280k – $403k/yr
- [Principal Engineer, Authentication](https://hotfix.jobs/jobs/6951d447-8a37-4257-b626-ee033a79d9b8) - Databricks - Remote - $280k – $385k/yr

**Apply:** https://hotfix.jobs/jobs/d8d28d9c-8c13-486a-803c-cf5582aafe17
**Canonical:** https://hotfix.jobs/jobs/d8d28d9c-8c13-486a-803c-cf5582aafe17