Principal Security Engineer

Responsibilities

• Advanced AppSec & Offensive Security
• Deep-Dive Pentesting: Conduct sophisticated manual penetration tests across web applications, APIs, and microservices architecture.
• Exploit Development: Go beyond automated scanners to identify logic flaws and develop Proof-of-Concept (PoC) exploits to demonstrate business risk.
• Secure Code Review: Build and contribute to agents that perform line-by-line analysis of critical code paths in Go, Python, Java or others to identify vulnerabilities so they get remediated before they reach production.
• Remediation Engineering: Partner directly with engineering teams and their agents to write and push code fixes, ensuring vulnerabilities are closed, not just reported.
• AI Development, Security & Audit
• LLM Security: Design and implement defenses against Prompt Injection, Data Poisoning, and Model Inversion attacks.
• AI Red Teaming: Adversarially test our internal AI agents and customer-facing LLM features.
• Audit & Governance: Establish technical audit frameworks for AI model training data, bias detection, and output safety.
• Tooling: Build custom agents to automate the security testing of web apps, APIs, AI pipelines and vector databases, among others.
• Cloud Security & Infrastructure as Code
• Hardening: Secure AWS/GCP/Azure environments with a focus on IAM least privilege and container security (Kubernetes).
• Automated Guardrails: Develop agents and OPA (Open Policy Agent) policies / Terraform Sentinels to prevent insecure infrastructure deployments.
• Cross-Functional Tooling: Build and maintain a unified security "mesh" that integrates AppSec signals with Cloud logging (SIEM/SOAR).
• Technical Leadership
• Act as the "Security Architect of Record" for high-impact cross-functional projects.
• Mentor senior engineers and foster a culture of "Security by Design" across the organization.

Requirements

• Contributions to open-source security tools or AI security research.
• Relevant certifications: OSCP/OSWE, AWS Certified Security, or specialized AI/ML credentials.
• Experience building custom Security Orchestration, Automation, and Response (SOAR) workflows.
• Work Environment and Physical Requirements:
• Primarily office-environment work, extended periods of sitting or standing, computer-based work. Limited lifting, and equipment usage limited to computer-related equipment (keyboards, mouse, etc.)

Benefits

Additional Information

We are seeking a battle-hardened Principal Security Engineer to lead our technical offensive and defensive strategies. This is not a policy-writing role; it is an extremely hands-on position designed for an engineer who thrives on breaking complex systems, building custom security tooling, and securing the next generation of AI-driven applications. You will be the technical authority for Application Security, Penetration Testing, and Cloud infrastructure, with a specialized focus on the security lifecycle of Large Language Models (LLMs) and AI integrations.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at talkdesk2? Share your experience