What are the responsibilities and job description for the Principal Security Engineer position at Jobright.ai?
Jobright is an AI-powered career platform that helps job seekers discover the top opportunities in the US. We are NOT a staffing agency. Jobright does not hire directly for these positions. We connect you with verified openings from employers you can trust.
Job Summary:
Ethos is a company focused on making life insurance more accessible and convenient through technology and data science. They are seeking a Principal Security Engineer to lead the design and implementation of secure systems across cloud platforms and modern application stacks, while shaping the security posture of their platforms and development practices.
Responsibilities:
• Design and implement secure architectures for applications, APIs, microservices, and containerized workloads.
• Develop and enforce application security best practices across SDLC; partner with DevOps and engineering teams to integrate security into CI/CD pipelines.
• Conduct threat modeling, security design reviews, and risk assessments for new and existing systems.
• Evaluate and implement cloud security tools, controls, and frameworks (e.g., CSPM, CWPP, IAM, KMS, logging, and monitoring).
• Provide technical leadership and mentorship to security engineers, software developers, and DevOps personnel.
• Lead response to complex security incidents or architectural flaws; conduct root cause analysis and recommend strategic remediations.
• Contribute to and influence security policies, standards, and governance.
• Stay current with emerging threats, vulnerabilities, and security technologies, advising stakeholders on evolving risks and mitigations.
Qualifications:
Required:
• 10 years of experience in security engineering or architecture roles
• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field from a reputable institution
• Deep expertise in cloud platforms (particularly AWS), including infrastructure-as-code (e.g., Terraform, CloudFormation)
• Strong experience in secure software development and application security (e.g., OWASP Top 10, SAST, DAST, threat modeling)
• Experience designing and implementing zero-trust architectures, secure API gateways, and identity/access controls
• Proficient in scripting or development languages (e.g., Python, Go, JavaScript) and secure coding practices
• Demonstrated leadership in cross-functional security initiatives and technical mentorship
• Ability to come into our San Francisco, CA office once a week
Preferred:
• Certifications such as CISSP, CCSP, AWS Security Specialty, GIAC (GCSA, GWEB, GDSA)
• Familiarity with Kubernetes security, service mesh, and cloud-native security tooling
• Experience in regulated industries (e.g., fintech, healthcare, SaaS at scale)
Company:
Ethos makes getting life insurance instant and easy. Founded in 2016, the company is headquartered in Austin, Texas, USA, with a team of 501-1000 employees. The company is currently Late Stage. Ethos has a track record of offering H1B sponsorships.