Principal Security Engineer

HubSpot is looking for a talented Principal Software Engineer to shape and deliver secure robust and scalable identity and access solutions supporting our growing this pivotal org-impacting role you will use your extensive hands-on engineering experience to drive secure software design influence the technical direction of your organization and implement best-in-class security practices. Youll tackle challenging problems and partner closely with cross-functional peers making a tangible impact on the safety and integrity of our products.

At HubSpot security isnt just a checkboxits woven into everything we do. By building secure foundations and scalable systems youll be enabling our teams and customers to grow better together. If youre motivated to strengthen security for millions of organizations at scale youll find this opportunity exciting!

Responsibilities

As a Principal Software Engineer you will play a leading role in building strong security foundations to advance Hubspots security posture. You will be a trusted technical leader within your organization driving the development and improvement of secure software systems. You will partner closely with engineering and security teams to implement practical hands-on solutions that mitigate risks and strengthen our product offerings. Your deep technical knowledge will help guide architectural decisions and establish best practices across projects in your org. Youll focus on translating organizational priorities into tangible secure engineering outcomes. Day-to-day youll contribute code review designs and provide technical mentorship to engineerschampioning security in everything we do.

Youll act as a key point of contact for security expertise within the org ensuring that Hubspots products meet both internal guardrails and external customers trust and security needs. You will work closely with engineers product managers and legal/compliance partners to ensure security is woven into the software development lifecycle and that organizational objectives remain tightly aligned with secure design and delivery. You will also help shape our approach to securing AI initiatives sharing your knowledge and fostering technical capabilities for building secure innovative AI systems.

The secure systems and practices you establish will have a real and lasting impact on upholding the security and integrity of the data entrusted to Hubspot by millions of customers. By proactively identifying and addressing security risks in our products and aligning Hubspots product and security strategies you will directly contribute to a secure experience for every customerenabling them to focus on running and growing their business with confidence.

Key Expectations

We are looking for an experienced and forward-thinking security leader with the following qualifications:

• 10 years of experience in software development and information security with a focus on identity access and applied cryptography.
• Proven experience in designing and implementing identity infrastructure and other foundational security services in a cloud-native environment.
• Expert knowledge of secure development public cloud security and network security.
• Deep understanding and practical implementation experience with Zero Trust principles including identity-centric security continuous verification and least-privilege access across distributed environments.
• Experience designing and leading the execution of large-scale migrations ensuring the safe secure and seamless transition of critical systems or data while minimizing customer impact.
• Demonstrated experience in - or a strong willingness to learn - securing artificial intelligence systems such as AI/ML workflows training data models agents and deployments to mitigate emerging AI-specific threats.
• Comfortable with leveraging and championing AI development tools (such as GitHub Copilot Claude ChatGPT) to enhance productivity and code quality
• Proven track record of mentoring and developing other security engineers fostering technical growth and elevating security expertise across the org.
• Excellent communication skills with the ability to articulate complex security concepts to both technical and non-technical audiences.
• A passion for staying current with the latest security trends and a commitment to continuous learning.
• Strong understanding of security privacy and compliance standards such as SOC 2 ISO 27001 NIST 800-53 and GDPR.
• Relevant industry certification (e.g. CISSP CEH Azure Cybersecurity Architect AWS Speciality etc.)