Skip to content
OpenAI

Principal Security Engineer, Infrastructure Security

Principal Security Engineer leads security for OpenAI's infrastructure including GPU clusters, multi-cloud, datacenters, and Kubernetes. Drives strategy, builds controls against advanced threats, and mentors teams with deep cloud and on-prem expertise.

278k – 490kSan Francisco, CASeattle, WANew York, NY+1 moreSecurity EngineeringRemote
Apply

About the role

Responsibilities

  • Own end-to-end security outcomes for one or more critical infrastructure areas, including multi-quarter strategy, roadmap, and delivery.
  • Design and build security controls across diverse layers (e.g., physical hardware, firmware/BMC, OS, Kubernetes, networks, and CI/CD) to defend against sophisticated adversaries and insider threats.
  • Lead cross-functional programs to deploy security enhancements and control changes across broad-scale infrastructure, balancing security guarantees with reliability and velocity.
  • Take a generalist approach to building security controls, balancing a mix of security expertise and broad technical skillsets to adapt to evolving challenges.
  • Lead and/or drive threat modeling and design reviews for major infrastructure changes, ensuring strong security foundations and operational excellence.
  • Mentor and level up engineers across InfraSec and partner teams, contributing to a strong security culture through guidance, reviews, and technical leadership.

Requirements

  • Deep understanding of security principles, best practices, and common vulnerabilities, including strong security judgment under ambiguity.
  • Proactive mindset, with the ability to identify and address security gaps or inefficiencies through automation and tooling.
  • Expertise and curiosity about using frontier models and agents to effectively solve security challenges.
  • Track record of leading large, cross-org initiatives from concept to rollout, including navigating tradeoffs, driving alignment, and delivering measurable risk reduction.
  • Deep expertise in the security of cloud platforms (e.g., Amazon AWS, Microsoft Azure), especially securing multi-cloud networks and infrastructure, and designing cloud-agnostic systems.
  • Experience securing on-prem deployments and datacenters from construction to multi-tenant use.
  • Familiarity with container security, orchestration security, and authentication/authorization.
  • Strong analytical and problem-solving skills, with an ability to think critically and objectively assess security risks.
  • Excellent communication skills, with the ability to convey complex security concepts to executive, technical, and non-technical stakeholders.
  • Excitement about collaborating with cross-functional teams to build secure, reliable systems that scale globally.

Skills

KubernetesAWSAzureMulti-CloudContainer SecurityCI/CDThreat ModelingFirmware SecurityBmcService Mesh

Similar roles

Security Engineering jobs
OpenAI

Principal Security Engineer, Infrastructure Security

Leads architecture and implementation of planet-scale security services like authN/Z, proxies, and key management for OpenAI's GPU clusters, multi-cloud infra, and AI models. Requires expertise in secure distributed systems, cloud platforms, and cross-team leadership.

278k – 490kSan Francisco, CA +3Security EngineeringRemoteAWSGCP
Databricks

Principal Engineer - Privacy

Leads privacy and security engineering to secure Databricks' data platform, identifies infrastructure gaps, and builds scalable systems. Requires 10+ years in data security, 15+ years in distributed systems, and MS/PhD.

278k – 339kMountain View, CASecurity EngineeringOn-site10+ YOEPrivacyKubernetes
Crusoe

Principal Infrastructure Security Engineer

Lead security architecture for Crusoe's AI cloud infrastructure, driving zero-trust adoption, workload identity, supply chain security, and hardware-to-software protections at hyperscale. Requires 12+ years infrastructure security experience at a major cloud provider.

280k – 330kSan Francisco, CASecurity EngineeringOn-site12+ YOEGoTpm
Snowflake

Principal Software Engineer II - Product Security

Lead Product Security as senior technical authority, defining long-term security architecture and strategy for Snowflake's platform. Requires 15+ years experience in software engineering, security domains like AI/ML, cryptography, and languages including Java, Go, Python.

280k – 403kMenlo Park, CA +1Security EngineeringHybrid15+ YOECGo
Databricks

Principal Engineer, Authentication

Principal Engineer leads Authentication strategy at Databricks, crafting secure, scalable systems with 15+ years in distributed systems and data security expertise. Requires MS/PhD, leadership, and experience in identity management and access control.

280k – 385kMountain View, CA +1Security EngineeringRemote15+ YOEPrivacyKubernetes