Principal Security Engineer

Overview:

Dragos is on a relentless mission to defend industrial organizations that provide us with the necessities of modern civilization: running water, functioning electricity, and safe industrial working environments. As the market leader in ICS/OT Cybersecurity, we are dedicated to arming our customers with best-in-class technology, threat intelligence, and services to protect their systems as effectively and efficiently as possible. We’re a remote-first culture with operations in North America, Europe, the Middle East, and APAC. We’re looking for mission-oriented teammates who embody our core values of authenticity, transparency and trust. Are you ready to make a difference? Come join a mission that can save the world! 

About the role:

This is a pivotal role in shaping Dragos' cybersecurity strategy and execution. You will collaborate closely with leadership to craft forward-looking security plans, translating high-level business objectives into robust technical architectures and actionable initiatives. Your ability to bridge the gap between business needs and technical security solutions will be instrumental in safeguarding the future success of the organization. This role reports to the Security Operations Manager. 

  
Location: USA (Remote)

• Conduct gap assessments (e.g., NIST CSF, ISO 27001), align strategies with business goals, and deliver cybersecurity roadmaps.
• Develop and maintain security architectures, design the security stack for monitoring and response, evaluate, and optimize tools, and implement advanced security solutions with automation.
• Assess and enhance the security tool portfolio to improve effectiveness and to address evolving threats.
• Train junior staff, contribute to technical discussions, and promote skill development.
• Lead initiatives like R&D, proofs of concept and controls testing while enhancing incident detection, response and recovery capabilities.
• Provide updates on engineering projects, set KPIs, and ensure alignment with operational priorities.
• Guide operational teams on advanced threats and emerging security technologies.
• Support high-severity incident responses and recommend improvements post-incident.
• Collaborate on long-term security strategies and ensure practical, sustainable standards. 

• Minimum 15 years in technical roles managing diverse environments, including operating systems, network topologies, databases and complex applications.
• Minimum 5 years of hands-on cybersecurity engineering experience, with a focus on developing and implementing secure solutions.
• Proven experience conducting technical security assessments and risk analysis, from criteria development to remediation.
• Extensive experience with cloud security architectures and services (AWS, Azure, GCP preferred).
• Advanced expertise in Linux/UNIX environments, secure system design, and network architecture.
• Hands-on experience with security automation, scripting (e.g., Python, Bash), and Infrastructure-as-Code (IaC) tools like Terraform or Ansible.
• Demonstrated capability in deploying, managing, and securing network devices, including firewalls, VPNs, IDS/IPS, and load balancers.
• Ability to communicate complex security issues effectively to diverse audiences, including engineers, developers, stakeholders and executive leadership.
• Strong project management and leadership skills, with a track record of successfully driving cross-functional security initiatives.
• A strong ability to operate successfully in a startup environment including being innovative, self-driven and a problem-solver that can scale security practices with limited resources in a fast-paced environment.  
• Familiarity with critical infrastructure protection, DoD regulations, or experience in high-compliance environments (preferred).  

• Salary: $192,000
• Competitive Equity Package 
• Comprehensive Benefits Plan 

Dragos is an Equal Opportunity Employer and considers applicants for employment without regard to race, color, religion, sex, orientation, national origin, age, disability, genetics, or any other basis forbidden under federal, state, or local laws. All new hires must pass a background check as a condition of employment.
 
#LI-JF1 #LI-REMOTE