Principal Security Software Engineer

Description

Splunk, a Cisco company, is building a safer and more resilient digital world with an end-to-end full stack platform made for a hybrid, multi-cloud world. Leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. Our customers love our technology, but it's our caring employees that make Splunk stand out as an amazing career destination. No matter where in the world or what level of the organization, we approach our work with kindness. So bring your work experience, problem-solving skills and talent, of course, but also bring your joy, your passion and all the things that make you, you. Come help organizations be their best, while you reach new heights with a team that has your back.
About The Role

We are seeking a Principal Security Software Engineer to lead the design, development, and implementation of advanced security solutions and guardrails aka Paved Road strategies across our software products and platforms. This role combines deep technical expertise with strategic thinking, enabling the company to proactively defend against evolving cybersecurity threats. As a senior technical leader, you will influence architectural decisions, mentor engineering teams, and collaborate cross-functionally to ensure secure design and development practices are embedded at every layer.
What you'll get to do

• Drive system architecture and design decisions for various Splunk products.
• Lead the architecture and implementation of guardrails against emerging threats across multiple products and services.
• Partner deeply with technical leadership to drive the strategic security projects across Splunk products and infrastructure.
• Be active at a technical level, participating in design and code reviews and taking a hands-on role for strategically important, potentially risky technical initiatives required to achieve the success of the technical roadmap.
• Exhibit a growth mindset and provide mentorship and teaching for other engineers, helping them build the skills required to drive impact through influence as well as direct contribution.
• Research and evaluate emerging security vulnerabilities and propose adoption strategies across products and infrastructure.
• Represent security engineering in architectural and technical governance bodies.

Must-have Qualifications

• Strong knowledge of how data intensive applications are constructed and run efficiently.
• Strong software development experience across large codebases.
• Deep knowledge of web protocols and distributed systems.
• Experience leading large scale change (of mindsets, technologies, or tooling) in codebases and organizations.
• Proven track record of influencing security outcomes in large, complex systems.
• Deep knowledge of cloud operational models and secure SaaS architecture in a world of containerized microservices.
• Familiarity of compliance requirements for certifications like PCI DSS, SOC2, HIPAA, FedRAMP
• Experience addressing systemic security issues through root cause analysis, building security solutions, and project leadership.

Nice To Have Qualifications

• Deep familiarity with common standards and frameworks (e.g., OWASP, NIST, MITRE ATT&CK, CIS Controls).
• Knowledge of indexing & storage technology.
• Deep understanding of browser security and JavaScript frameworks.

Splunk is an Equal Opportunity Employer

Splunk, a Cisco company, is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.

Thank you for your interest in Splunk!