Principal Security Engineer
Location
Massachusetts
Posted
13 days ago
Salary
$132.1K - $237.9K / year
Seniority
Lead
Job Description
Principal Security Engineer
Akamai Technologies
• Defining and owning the security architecture spanning Kubernetes infrastructure, inference runtimes, control plane APIs, and model lifecycle pipelines • Establishing threat models, security standards, and hardening guidelines across all platform teams and ensuring consistent adoption through reviews and automated enforcement • Leading security design reviews for critical systems including model serving environments, multi-tenant isolation, authentication and authorization frameworks, and data handling pipelines • Driving AI-specific security initiatives including defense against prompt injection, model extraction, adversarial inputs, data poisoning, and model supply chain attacks • Owning compliance readiness for regulatory frameworks (FedRAMP, SOC 2, GDPR), and emerging AI governance standards, partnering with legal and compliance teams • Developing and maturing the platform's security incident response capabilities including detection, investigation, and remediation playbooks for both traditional and AI-specific threats • Collaborating with Akamai's broader security organization to align inference platform security practices with enterprise standards and share learnings across product lines
Job Requirements
- 8 years of relevant experience and a Bachelor's degree or equivalent in Computer Science, Security Engineering, or a related field
- Deep expertise across application security, infrastructure security, and cloud-native security with experience as a security technical lead or architect
- Hands-on experience with AI/ML security challenges including model serving attack surfaces, prompt injection mitigation, and adversarial robustness
- Proven ability to define security architecture and threat models for complex distributed systems spanning multiple engineering teams
- Experience with compliance frameworks and the ability to translate regulatory requirements into engineering controls
- Proficiency in Python, Go, or similar languages with experience building security tooling, automation, or detection systems.
Benefits
- industry-leading benefits including healthcare
- 401K savings plan
- company holidays
- vacation (in the form of PTO)
- sick time
- family friendly benefits including parental leave
- employee assistance program including a focus on mental and financial wellness
- Eligibility requirements apply.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Role Description En PROCESIA buscamos incorporar varios profesionales en Consultoría Técnica especializados en gestión de identidades y ciberseguridad para participar en proyectos tecnológicos donde el reto no es mantener las luces encendidas, sino construir plataformas robustas, seguras y bien diseñadas desde el principio: Sí, hablamos de OpenIAM. Buscamos personas técnicas, sí. Pero también personas con criterio, curiosidad y ganas de construir cosas bien hechas. Las que preguntan ¿y si lo hacemos mejor? en lugar de ¿siempre se hizo así?. Buscamos personas que disfruten analizando, diseñando, implementando y evolucionando soluciones tecnológicas complejas. Gente cómoda tanto entendiendo arquitectura como entrando al detalle técnico cuando toca: - Titulación universitaria en Ingeniería o Formación Profesional técnica equivalente reconocida en España. - Mínimo 4 años de experiencia en proyectos TI. - Al menos 2 años trabajando en proyectos de consultoría de ciberseguridad relacionados con plataformas IAM. - Experiencia práctica con OpenIAM. - Capacidad de análisis técnico, diseño y resolución de incidencias complejas. - Conocimiento de entornos de identidad, accesos y operación de soluciones de seguridad. Y si además has participado en proyectos para la Administración de Justicia o en fases de arquitectura y diseño tendrás mucho terreno ganado. ¿Cuál será tu día a día? - Participarás en proyectos donde la identidad digital es crítica, colaborando con equipos especializados y trabajando sobre soluciones que requieren análisis, precisión técnica y visión de conjunto: - Analizar requisitos técnicos y funcionales relacionados con IAM y ciberseguridad. - Diseñar e implementar soluciones sobre plataformas OpenIAM. - Participar en tareas de desarrollo, configuración y operación técnica. - Colaborar en arquitecturas de identidad y gestión de accesos. - Resolver incidencias complejas y optimizar procesos existentes. - Documentar soluciones y participar en la mejora continua del servicio. - Trabajar junto a equipos multidisciplinares en proyectos de alta relevancia tecnológica. Traducido: habrá retos técnicos interesantes, decisiones importantes y alguna reunión que podría haber sido un email. Somos honestos. Qualifications - Titulación universitaria en Ingeniería o Formación Profesional técnica equivalente reconocida en España. - Mínimo 4 años de experiencia en proyectos TI. - Al menos 2 años trabajando en proyectos de consultoría de ciberseguridad relacionados con plataformas IAM. - Experiencia práctica con OpenIAM. - Capacidad de análisis técnico, diseño y resolución de incidencias complejas. - Conocimiento de entornos de identidad, accesos y operación de soluciones de seguridad. Requirements - Participar en proyectos donde la identidad digital es crítica. - Colaborar con equipos especializados. - Analizar requisitos técnicos y funcionales relacionados con IAM y ciberseguridad. - Diseñar e implementar soluciones sobre plataformas OpenIAM. - Participar en tareas de desarrollo, configuración y operación técnica. - Colaborar en arquitecturas de identidad y gestión de accesos. - Resolver incidencias complejas y optimizar procesos existentes. - Documentar soluciones y participar en la mejora continua del servicio. - Trabajar junto a equipos multidisciplinares en proyectos de alta relevancia tecnológica. Benefits - Contrato indefinido desde el inicio. - Proyecto estable, sólido y con visión a largo plazo. - Modalidad remota y flexibilidad horaria real. - Jornada intensiva todos los viernes y durante el verano. - Formación continua, certificaciones y clases de inglés. - Participación en proyectos estratégicos de ciberseguridad e identidad digital. - Plan de carrera adaptado a tu evolución técnica y profesional. - Seguro médico completo sin copagos. - Cultura colaborativa y participativa basada en Management 3.0. - Equipos cercanos donde compartir conocimiento no es opcional. - Nochebuena y Fin de Año libres. - Café y té en oficina para afrontar deployments, incidencias y reuniones de arquitectura con dignidad.
Information Security Incident Specialist
SupportYourAppSupportYourApp is an industry leader in premium outsourced customer support that provides tech companies with reliable, cost-effective services. A multinational
Role Description Our team is continuously growing alongside our expanding client base, so we are looking for an Information Security Incident Specialist who is eager to apply their technical expertise, develop in the field of security, and work with real incidents and modern tools. What you will do: - Manage security and operational incidents end-to-end, including investigation, coordination, and response; - Communicate directly with Clients and stakeholders during Data Breach incidents; - Conduct Root Cause Analysis, develop preventive measures, and prepare management reports; - Analyze Clients’ workflows and incident trends to identify risks and improve security processes; - Assess the security of software, platforms, and third-party vendors; - Review new hiring locations for compliance with data protection and security standards; - Develop incident response procedures and maintain internal security documentation and knowledge base. Qualifications - Proven experience in investigating and handling information security incidents (from 1 year); - Experience in developing incident management procedures and documentation; - Analytical mindset and the ability to make fast decisions to mitigate incident impact; - Strong self-organization skills and the ability to prioritize work independently; - Understanding of data privacy principles and breach notification requirements; - English proficiency at level B2 or higher. Requirements - Proficiency in OSINT methodologies for investigations; - Experience in assessing the security of software, platforms, and third-party vendors; - Basic knowledge of security tools logic (SIEM, EDR, DLP, NGFW, VPN, VDI). Benefits - Providing services during business hours; - Opportunity to cooperate fully remotely; - Inclusive international environment; - Compensation in USD; - Rewards for referring friends; - Balance between project workload and personal time, but also – internal health policy; - Responsive leadership interested in your growth and long-lasting cooperation; - Greenhouse conditions for self-development; - A culture built on trust, with no time-tracking requirements. *The items listed in this section may vary depending on the terms of your engagement. Certain benefits and conditions typically apply to employees; independent contractors may not be eligible for all of these. The specific terms, including compensation, benefits, and work conditions, will be clearly defined in your agreement if selected.
• Designing, building, and validating new detections across large-scale customer telemetry, transforming threat research into impactful results. • Building and deploying AI agents for independent investigation workflows and detection engineering pipelines, incorporating context management, tool orchestration, and multi-step reasoning. • Evaluating and iterating on detection quality - measuring false positive rates, building benchmarks, and establishing feedback loops that continuously improve accuracy. • Analyzing diverse telemetry including network connections, Active Directory, cloud activity, endpoint data (Windows/Linux), segmentation policies, and vulnerability exposure to identify threats and anomalies. • Leading key research initiatives and proof-of-concepts, shaping Hunt's detection and analytics platform's strategic direction. • Translating cutting-edge research into clear, actionable recommendations and effectively communicating findings to customers and stakeholders.
Security Architect
ProArchConsulting and technology- enabled by cloud, guided by data, fueled by apps, and secured by design.
• Security Research & Architecture, Solution Design & Validation • Identify whitespace in emerging technologies, especially AI, agent-based platforms, and adjacent Microsoft capabilities, where ProArch can create new security offerings or differentiate existing services. • Research new platforms and capabilities to determine where clients are struggling, what risks or governance gaps exist, and which use cases have real market value. • Assess client business requirements, security objectives, and technical constraints to design secure target-state architectures across Microsoft cloud, identity, data, and AI-related platforms. • Define architectural patterns, trust boundaries, control points, and integration approaches that align security, governance, and operational needs. • Produce architecture diagrams, reference designs, decision frameworks, and solution blueprints that can be used in both pre-sales and delivery. • Validate proposed architectures through hands-on testing, design reviews, proof-of-concept work, and early implementation support to confirm feasibility and risk posture. • Define secure configuration baselines, governance guardrails, identity models, and monitoring expectations for proposed solutions before they are broadly adopted. • Evaluate architecture decisions for identity, access, data protection, compliance, resilience, and operational risk, and translate findings into clear technical recommendations. • Create reusable standards, hardening patterns, reference architectures, and implementation guidance that help delivery teams execute consistently. • Continuously refine architectural standards and recommended patterns based on delivery feedback, technical validation, and evolving platform capabilities. • Support pre-sales activities by leading or contributing to discovery sessions, architecture workshops, solution framing, proposal input, and technical risk discussions. • Provide architectural advisory guidance to clients and internal teams to ensure proposed solutions are secure, practical, and aligned to business outcomes. • Guide early delivery efforts by supporting architecture reviews, control design, implementation decisions, and secure adoption planning for new or evolving services. • Produce client-ready architecture artifacts, design rationales, standards documentation, and internal guidance that can be reused across sales and delivery motions. • Present architectural recommendations and security considerations to leadership, client stakeholders, and delivery teams, and feed lessons learned back into solution improvements.
