Principal Security Engineer, Research & Engineering

Remote $200k–$250k senior 2 months ago full-time quality 9/10
RustC++PythonGoJava

What You'll Achieve

  • Technical & Strategic Leadership: Set the technical vision for your area of expertise. Design and guide the execution of complex security research and engineering efforts that advance Trail of Bits' capabilities.
  • Business Development: Engage with potential clients and drive the sales process independently. Leverage your professional network to find external funding for new research and engineering initiatives. Support the proposal process through SoW writing and scoping.
  • People Leadership & Mentorship: Mentor 3–4 Senior Engineers, helping them build their professional networks and skillsets. Introduce mentees to your network and find opportunities for their growth.
  • Project Leadership: Lead projects end-to-end within and beyond your core expertise. Deconstruct high-level objectives into actionable milestones, allocate work across team members, and ensure delivery.
  • Publications & Industry Presence: Lead the company's publications and marketing efforts in your domain. Represent Trail of Bits at speaking events, panel discussions, and conferences. Author blog posts, whitepapers, and academic publications.
  • Organizational Improvement: Identify team organization and operational problems. Spot knowledge gaps across the team and take concrete steps to help the team fill them.
  • Security Tool Development: Architect and oversee the development of security-focused software tools and frameworks. Contribute hands-on when needed, particularly on novel or high-stakes problems.
  • Cross-Practice Collaboration: Work closely with other practices to understand their challenges and needs. Turn these into collaborative efforts to build useful tooling and advance shared goals.
  • AI/ML Security: Guide the team's approach to AI/ML security research and tooling. Identify emerging risks and opportunities in the AI/ML security landscape.

What You'll Bring

  • Extensive software development and security engineering experience, with deep expertise in Rust, C++, and/or Python.
  • A well-established professional network in the security industry, government, or adjacent technical communities.
  • Demonstrated track record of leading security projects end-to-end, from scoping and proposal through delivery.
  • Experience engaging with clients and participating in the sales or business development process.
  • Proven ability to mentor and develop senior-level engineers, helping them grow their careers and professional networks.
  • Experience setting technical vision and strategy for a team or practice area.
  • Strong knowledge of AI/ML systems and associated security challenges.
  • Public speaking experience at conferences, panels, or industry events.
  • Published work demonstrating thought leadership in security through blog posts, whitepapers, academic papers, or open-source tools.
  • Excellent written and verbal communication skills, with the ability to communicate effectively with technical teams, clients, and executive leadership.
  • Experience writing SoWs, scoping proposals, and supporting the business development lifecycle.
  • Ability to identify organizational and operational problems and drive solutions.

Benefits

  • Competitive salary complemented by performance-based bonuses.
  • Fully company-paid insurance packages, including health, dental, vision, disability, and life.
  • A solid 401(k) plan with a 5% match of your base salary.
  • 20 days of paid vacation with flexibility for more, adhering to jurisdictional regulations.
  • 4 months of parental leave to cherish the arrival of new family members.
  • $10,000 in relocation assistance to support your transition to NYC.
  • $1,000 Working-from-Home stipend to create a comfortable and productive home office.
  • Annual $750 Learning & Development stipend for continuous personal and professional growth.
  • Company-sponsored all-team celebrations, including travel and accommodation, to foster community and recognize achievements.
  • Philanthropic contribution matching up to $2,000 annually.

Similar jobs

Before you apply

  • Legitimate employers never ask you to pay anything to apply or get hired.
  • Never share seed phrases or private keys. No real job needs them.
  • Do not install software ("test tasks", "trading tools", "video call clients") sent during hiring.
  • Check that the application page's domain really belongs to Trail of Bits.