CrawlJobs Logo

Principal Security Engineer

Zillow

Location Icon

Location:
United States

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

160200.00 - 269400.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

As a Principal Security Engineer, you will help shape how security is built into Zillow’s applications, cloud environments, and AI-enabled systems. This role has broad impact across the company: you’ll partner with teams to reduce security risk, improve secure-by-default engineering practices, and help Zillow adopt emerging technologies safely while continuing to move quickly and innovate.

Job Responsibility:

  • Lead security assessments for high-impact applications and services, including threat modeling, secure design reviews, and penetration testing
  • Identify, validate, and prioritize complex vulnerabilities across web applications, APIs, and cloud-native services, and partner with engineers to drive secure-by-default outcomes
  • Strengthen the security of primarily AWS-based environments, with additional exposure to GCP and Azure, across areas such as identity, networking, data protection, and service integrations
  • Drive AI security initiatives by establishing guardrails, review practices, and secure design patterns for AI-enabled features and systems
  • Assess AI-specific risks, including data exposure, misuse, model abuse, prompt-based attacks, and unintended system behavior
  • Develop and promote scalable application and AI security standards, best practices, and guardrails across teams
  • Improve application and AI security tooling through configuration, integration, and ongoing optimization in partnership with engineering and platform teams
  • Mentor and influence engineers across teams, raising the technical bar and helping embed security into the way Zillow builds and ships software

Requirements:

  • 7+ years of security engineering experience, including strong experience in application security and ownership of complex security outcomes
  • experience driving or owning AI security initiatives and assessing or mitigating risks in AI- or LLM-enabled systems
  • experience leading advanced security assessments across modern applications, cloud infrastructure, and AI-enabled systems
  • strong understanding of common vulnerability classes, secure software development practices, and threat modeling
  • hands-on experience securing cloud-native environments, especially AWS, and designing secure system or cloud architectures
  • can read, write, and review code in at least one modern programming language
  • communicates security risks clearly to both technical and non-technical partners and can influence decisions without formal authority
  • experience mentoring engineers and helping raise the technical bar across a team or organization
What we offer:

equity awards

Additional Information:

Job Posted:
May 24, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
Zillow - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon
PREMIUM
More languages and countries
+ Unlock 31697 hidden job offers
Languages
English Čeština Deutsch Ελληνικά Español Français +15
Countries
United States United Kingdom India Canada Australia +
See plans
Plans from $2.99 / month

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Principal Security Engineer

Principal Security Engineer

We’re seeking a Principal Security Engineer with deep expertise in cloud securit...
Location
Location
United States , San Francisco
Salary
Salary:
136000.00 - 241000.00 USD / Year
ethoslife.com Logo
Ethos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in security engineering or architecture roles
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field from a reputable institution
  • Deep expertise in cloud platforms (particularly AWS), including infrastructure-as-code (e.g., Terraform, CloudFormation)
  • Strong experience in secure software development and application security (e.g., OWASP Top 10, SAST, DAST, threat modeling)
  • Experience designing and implementing zero-trust architectures, secure API gateways, and identity/access controls
  • Proficient in scripting or development languages (e.g., Python, Go, JavaScript) and secure coding practices
  • Demonstrated leadership in cross-functional security initiatives and technical mentorship
  • Ability to come into our San Francisco, CA office once a week
Job Responsibility
Job Responsibility
  • Design and implement secure architectures for applications, APIs, microservices, and containerized workloads
  • Develop and enforce application security best practices across SDLC
  • partner with DevOps and engineering teams to integrate security into CI/CD pipelines
  • Conduct threat modeling, security design reviews, and risk assessments for new and existing systems
  • Evaluate and implement cloud security tools, controls, and frameworks (e.g., CSPM, CWPP, IAM, KMS, logging, and monitoring)
  • Provide technical leadership and mentorship to security engineers, software developers, and DevOps personnel
  • Lead response to complex security incidents or architectural flaws
  • conduct root cause analysis and recommend strategic remediations
  • Contribute to and influence security policies, standards, and governance
  • Stay current with emerging threats, vulnerabilities, and security technologies, advising stakeholders on evolving risks and mitigations
  • Fulltime
Read More
Arrow Right

Principal Security Engineer

We’re building a world-class global Security team as part of our Trust Program. ...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
highspot.com Logo
Highspot
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of robust, progressive experience in security engineering, application security, DevSecOps, incident detection and response, or closely related fields
  • Advanced proficiency in at least one programming language (Python, Ruby, Go, Rust, JavaScript), with deep experience conducting detailed code reviews and security assessments across multiple languages
  • Hands-on experience with deploying, operating, and interpreting results from security tools such as static analyzers, web vulnerability scanners, supply chain analysis scanners, and host-based intrusion detection systems
  • Demonstrated experience mentoring, coaching and guiding junior and mid-level security engineers, contributing to a strong team culture, and supporting peer development as a senior individual contributor
  • Demonstrated proactive approach, strong continuous learning orientation, and curiosity about emerging threats, security trends, and innovative technologies
  • Extensive expertise securing cloud-native environments (AWS, Azure, GCP, containers, microservices), with in-depth knowledge of modern cloud security risks and defenses
  • Demonstrated ability to embrace being wrong, practice humility, continuously learn from experiences, and actively seek insights through thoughtful questioning and collaboration
Job Responsibility
Job Responsibility
  • Lead comprehensive application security assessments, advanced threat modeling sessions, and secure code reviews across critical product features, internal tooling, endpoints, and third-party integrations
  • Collaborate strategically with product engineering to establish and enhance secure-by-default and privacy-by-design practices within the software development lifecycle (SDLC)
  • Lead and otherwise participate in incident detection, investigation, triage, containment, and root cause analysis for high impact security incidents, providing mentorship and guidance to junior engineers as required
  • Drive the development and continuous improvement of sophisticated detection rules, response automation, and optimized alert management across cloud environments, corporate infrastructure, and SaaS platforms
  • Lead and participate in complex vulnerability remediation processes, and effectively respond to security issues discovered by both internal teams and external sources
  • Document technical findings and strategic decisions in a clear and accessible manner, and procedural enhancements
  • significantly contribute to comprehensive security playbooks and knowledge repositories
  • Manage and oversee asksecurity@ request handling, and actively participate in sprint-based security activities, balancing strategic and tactical execution
  • Actively participate in the security on-call rotation, or provide senior-level guidance as required during an event and aid in rapid response capabilities to protect our 24x7 platform and global workforce
  • Fulltime
Read More
Arrow Right

Principal Security Engineer

We’re looking for a principal Security Testing Engineer to work closely with the...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years penetration testing experience in a consultancy, dedicated internal pentesting team, or similar offensive security function
  • 2+ years experience as an offensive security team lead
  • Strong experience in white-box application security testing
  • Full stack application security technical experience
  • Delivery focused
  • Experience mentoring junior penetration testers
  • The ability to complete a penetration test and code review of a modern cloud application
  • Experience leading security teams on complex penetration testing engagements
  • Strong, practical understanding of security testing methodologies, supporting infrastructure requirements and legal considerations
  • Strong collaboration and communication skills when working with closely with deeply technical development and infrastructure teams
Job Responsibility
Job Responsibility
  • Providing SME knowledge and guidance to a team of pen testers/code review
  • Continuing to mature pen testing/code review workflows
  • Identifying and recruiting top-class penetration testing talent
  • Supporting and guiding the growth of a India based penetration testing team
  • Analysing vulnerability data for trends and gaps in controls
  • Identifying significant vulnerabilities in Atlassian products prior to production deployment
  • Building contacts in the Atlassian engineering team, product team and security team
  • Building and leveraging existing contacts to identify potential talent to join the team
  • Establishing testing processes in the local team that complements and extends existing processes
  • Identifying insights which contribute to strategic investments
What we offer
What we offer
  • health and wellbeing resources
  • paid volunteer days
  • Fulltime
Read More
Arrow Right

Principal Product Security Engineer

The Principal Product Security Engineer will be responsible for partnering with ...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience working in security
  • Demonstrated expertise and experience working in security-focused roles
  • Significant experience collaborating with engineering teams to conduct security assessments and threat modelling for on-premise as well as SaaS products
  • Strong expertise in cloud security, with a focus on AWS, GCP, and Azure, coupled with significant experience in container security, particularly in Docker and Kubernetes
  • Significant expertise in overseeing security design reviews for transitioning services from monolithic to microservices architecture
  • Experience coding in Java, Javascript, Python, or Go, and at least one scripting language
  • Experience leading large-scale projects from start to finish and mentoring other security practitioners
  • Adept experience providing SME knowledge and guidance to stakeholders and engineering functions
Job Responsibility
Job Responsibility
  • Partnering with our security teams and leadership groups across Atlassian's vast footprint to uplift our security programs
  • Being the Technical SME, promote automation, review platform and service designs and architecture and drive our security teams to equip the engineering partner teams with the latest tools, techniques and methodologies to build secure products by default
What we offer
What we offer
  • Health coverage
  • Paid volunteer days
  • Wellness resources
  • Fulltime
Read More
Arrow Right

Principal Product Security Engineer

As a Principal Product Security Engineer you will be the Technical SME, promote ...
Location
Location
India
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience working in security
  • Demonstrated expertise and experience working in security-focused roles
  • Significant experience collaborating with engineering teams to conduct security assessments and threat modeling for on-premise as well as SaaS products
  • Strong expertise in cloud security, with a focus on AWS, GCP, and Azure, coupled with significant experience in container security, particularly in Docker and Kubernetes
  • Significant expertise in overseeing security design reviews for transitioning services from monolithic to microservices architecture
  • Experience coding in Java, JavaScript, Python, or Go, and at least one scripting language
  • Experience leading large-scale projects from start to finish and mentoring other security practitioners
  • Adept experience providing SME knowledge and guidance to stakeholders and engineering functions
Job Responsibility
Job Responsibility
  • Promote automation, review platform and service designs and architecture and drive our security teams to equip the engineering partner teams with the latest tools, techniques and methodologies to build secure products by default
  • Partnering with our security teams and leadership groups across Atlassian's vast footprint to uplift our security programs
What we offer
What we offer
  • health coverage
  • paid volunteer days
  • wellness resources
  • Fulltime
Read More
Arrow Right

Principal Corporate Security Engineer

The Principal Engineer, Corporate Security serves as the senior technical author...
Location
Location
Salary
Salary:
184500.00 - 289050.00 USD / Year
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years in cybersecurity engineering or enterprise architecture
  • 5+ years in a principal or lead engineer capacity
  • In-depth knowledge of cloud security architecture (AWS, GCP) and SaaS ecosystems (Google workspace, Slack, Okta, etc)
  • Deep understanding of identity and access management, endpoint security, data protection, network segmentation and zero trust architecture
  • Excellent communication skills with the ability to simplify complex security concepts for executives and engineers
Job Responsibility
Job Responsibility
  • Define and maintain the end to end corporate security architecture blueprint, covering endpoint, identity, network, and data
  • Lead the architectural reviews of major corporate technology initiatives (e.g., AI adoption, zero trust modernization, vendor onboarding)
  • Establish architectural controls, paved paths and perform periodic maturity assessments
  • Provide expert guidance on security best practices, technologies, and methodologies to engineering teams
  • Review and influence the design of platform and service architectures, ensuring security is integrated from the outset
  • Provide risk-based architectural recommendations, influencing executive stakeholders and investment decisions
  • Automate control deployment and drift detection (IaC/PaC), reduce exception volume, and shorten time-to-adoption via platformized solutions
  • Enable safe, rapid change with CI/CD for policy/config and change planning for broad rollouts
  • Work closely with security teams, engineering partners, product leaders, and other principal engineers to drive large-scale security initiatives
  • Serve as the architecture liaison between Corporate Security and Product Security, ensuring a unified security strategy across enterprise and customer-facing environment
What we offer
What we offer
  • Health and wellbeing resources
  • Paid volunteer days
Read More
Arrow Right

Principal Product Security Engineer

Do you thrive at the intersection of cybersecurity and AI, with a passion for se...
Location
Location
Australia
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience securing AI/ML systems, including models, data pipelines, and inference services
  • Experience in cloud security architecture and infrastructure for AI/ML workloads
  • Experience coding in Java, Javascript, Python, or Go, and at least one scripting language
  • Experience leading large-scale projects from start to finish
  • Adept experience providing SME knowledge and guidance to stakeholders and engineering functions
  • Proven experience in a technical leadership role within product security, with 2+ years of experience
  • Deep understanding of cybersecurity principles, threat landscape, and best practices
  • Strong knowledge of data security, privacy, encryption, and authentication methods
  • Experience with compliance standards such as ISO 27001, SOC 2, FedRAMP, or similar
  • Excellent leadership, communication, and interpersonal skills
Job Responsibility
Job Responsibility
  • Serve as the Technical SME, promoting automation, reviewing platform and service designs and architectures, and driving our security teams to equip the engineering partner teams with the latest tools, techniques, and methodologies to enhance AI security
  • Lead the charge in safeguarding our AI platforms and product experiences
  • Partnering across engineering, platform, infrastructure and privacy to foster a culture of secure and trustworthy AI that meets the highest industry standards
What we offer
What we offer
  • Health and wellbeing resources
  • Paid volunteer days
Read More
Arrow Right

Principal Software Engineer – Cloud Security

Principal Software Engineer – Cloud Security role at Hewlett Packard Enterprise,...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or master’s degree in computer science, engineering, information systems, or closely related quantitative discipline
  • Typically, 10-15 years’ experience
  • Deep expertise in software systems design, development methodologies, and integration across diverse platforms and technologies
  • Strong business acumen, focusing on aligning technological initiatives with business goals and driving sustainable growth and profitability
  • Exceptional analytical and problem-solving skills, with the ability to navigate complex technical challenges and drive impactful solutions
  • Track record of driving technological innovation, with a portfolio of patents and successful product deployments
  • Exceptional communication and stakeholder management skills, with the ability to effectively convey complex technical concepts to non-technical audiences and influence decision-making at the executive level
Job Responsibility
Job Responsibility
  • Leads the identification, evaluation, and adoption of cutting-edge technologies, innovations, and strategic partnerships to drive growth and competitiveness
  • Drives developing and implementing robust methodologies, standards, and best practices for software systems design, development, and integration
  • Leverages recognized domain expertise and experience to influence decisions
  • Collaborates with executive leadership to align technology initiatives with business objectives, ensuring technology investments deliver measurable value and impact
  • Champion a culture of continuous innovation, thought leadership, and excellence in software systems design and help build technical community
  • Provides strategic guidance and mentorship to senior technical teams, fostering a culture of collaboration, creativity, and high-performance outcomes
  • Analyzes science, engineering, business, and other data processing problems to develop and implement solutions to complex application problems, system administration issues, or network concerns
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right