Principal Engineer, AI Products and Infrastructure Security
Google Inc., Sunnyvale, CA, United States
Principal Engineer, AI Products and Infrastructure Security
Google Sunnyvale, CA, USA; Reston, VA, USA
Note: By applying to this position you can share your preferred working location from the following:
Sunnyvale, CA, USA; Reston, VA, USA .
Bachelor's degree in Computer Science, a related technical field, or equivalent practical experience.
15 years of experience in security engineering, software engineering, or a related technical discipline with a focus on large‑scale systems.
Experience designing, building, and securing large‑scale cloud‑based infrastructure and services.
Experience leading and influencing technical strategy and execution across multiple executive‑level engineering teams and product areas.
Experience in multiple security domains (e.g., application security, data protection, identity and access management) and large‑scale system design, architectural patterns, and development processes.
Preferred qualifications
Master's degree or PhD in Computer Science or a field related to systems or security engineering.
Experience with Google Cloud Platform (GCP) services, particularly its AI and security offerings.
Experience working cross‑functionally to drive consensus among executives, fellows, and engineering leaders on complex technical decisions.
Ability to assimilate new architectures, designs, development languages, and frameworks and provide expert technical guidance.
Exceptional written and verbal communication skills, with the ability to articulate complex security concepts to audiences, including leadership.
Recognized contributions to the security or AI communities (e.g., publications, patents, open‑source projects, or presentations at major industry conferences).
About the job
As Principal Engineer, you will define and drive the strategy for securing Google Cloud's first‑party code, software supply chain, and open‑source consumption. You will architect and deliver platform‑level and improved monorepo‑wide APIs to systematically eradicate software vulnerability classes across Google's first‑party and third‑party software, addressing both greenfield and brownfield codebases. This position is crucial to Google's security posture, maintaining a software engineering focus on engineering away entire categories of vulnerabilities within the code base and underlying infrastructure. You will be a key technical leader responsible for ensuring the integrity, resilience, and security of the software we build and run, and the open‑source dependencies we ingest and manage. This includes shaping our approach in a world where AI‑generated code is prevalent, requiring new paradigms for trust, verification, threat isolation, and risk management.
Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise‑grade solutions that leverage Google’s cutting‑edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.
The US base salary range for this full‑time position is $307,000–$427,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job‑related skills, experience, and relevant education or training.
Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.
Responsibilities
Architect and deliver platform‑level changes and improved APIs to systematically eradicate software vulnerability classes across Google's first‑party and third‑party software, addressing both greenfield and brownfield codebases.
Maintain a software engineering focus on scaled solutions to engineer away vulnerability classes in brownfield code, for example, enhancing secure authentication frameworks or eliminating risks like path traversal and command injection.
Work with teams across Google Cloud and Alphabet to drive adoption of secure‑by‑construction frameworks and coding practices across one of the largest codebases of the world.
Define and oversee the strategy for securing Google Cloud's software supply chain and open‑source consumption. Oversee OSS integration, upkeep, rollouts, image lifecycle, and vulnerability response operations.
Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents‑to‑be, criminal histories consistent with legal requirements, or any other basis protected by law. See also Google’s EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire.
Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting.
#J-18808-Ljbffr
Google Sunnyvale, CA, USA; Reston, VA, USA
Note: By applying to this position you can share your preferred working location from the following:
Sunnyvale, CA, USA; Reston, VA, USA .
Bachelor's degree in Computer Science, a related technical field, or equivalent practical experience.
15 years of experience in security engineering, software engineering, or a related technical discipline with a focus on large‑scale systems.
Experience designing, building, and securing large‑scale cloud‑based infrastructure and services.
Experience leading and influencing technical strategy and execution across multiple executive‑level engineering teams and product areas.
Experience in multiple security domains (e.g., application security, data protection, identity and access management) and large‑scale system design, architectural patterns, and development processes.
Preferred qualifications
Master's degree or PhD in Computer Science or a field related to systems or security engineering.
Experience with Google Cloud Platform (GCP) services, particularly its AI and security offerings.
Experience working cross‑functionally to drive consensus among executives, fellows, and engineering leaders on complex technical decisions.
Ability to assimilate new architectures, designs, development languages, and frameworks and provide expert technical guidance.
Exceptional written and verbal communication skills, with the ability to articulate complex security concepts to audiences, including leadership.
Recognized contributions to the security or AI communities (e.g., publications, patents, open‑source projects, or presentations at major industry conferences).
About the job
As Principal Engineer, you will define and drive the strategy for securing Google Cloud's first‑party code, software supply chain, and open‑source consumption. You will architect and deliver platform‑level and improved monorepo‑wide APIs to systematically eradicate software vulnerability classes across Google's first‑party and third‑party software, addressing both greenfield and brownfield codebases. This position is crucial to Google's security posture, maintaining a software engineering focus on engineering away entire categories of vulnerabilities within the code base and underlying infrastructure. You will be a key technical leader responsible for ensuring the integrity, resilience, and security of the software we build and run, and the open‑source dependencies we ingest and manage. This includes shaping our approach in a world where AI‑generated code is prevalent, requiring new paradigms for trust, verification, threat isolation, and risk management.
Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise‑grade solutions that leverage Google’s cutting‑edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.
The US base salary range for this full‑time position is $307,000–$427,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job‑related skills, experience, and relevant education or training.
Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.
Responsibilities
Architect and deliver platform‑level changes and improved APIs to systematically eradicate software vulnerability classes across Google's first‑party and third‑party software, addressing both greenfield and brownfield codebases.
Maintain a software engineering focus on scaled solutions to engineer away vulnerability classes in brownfield code, for example, enhancing secure authentication frameworks or eliminating risks like path traversal and command injection.
Work with teams across Google Cloud and Alphabet to drive adoption of secure‑by‑construction frameworks and coding practices across one of the largest codebases of the world.
Define and oversee the strategy for securing Google Cloud's software supply chain and open‑source consumption. Oversee OSS integration, upkeep, rollouts, image lifecycle, and vulnerability response operations.
Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents‑to‑be, criminal histories consistent with legal requirements, or any other basis protected by law. See also Google’s EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire.
Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting.
#J-18808-Ljbffr