KGeN - Principal Security Engineer - DevSecOps

Role Overview :

We are seeking a Principal Security Engineer to lead the design and implementation of our enterprise security architecture across Cloud, AI, and Web3 systems. This role will define the organizations security strategy, establish architecture standards, and build a scalable, modern security program that protects highly distributed and high-growth infrastructure.

You will work closely with engineering, infrastructure, and leadership teams to implement a Zero Trust security model, drive DevSecOps practices, and provide visibility into organizational risk at the executive level. This is a hands-on technical leadership role with significant influence on long-term security posture and system design.

Key Responsibilities :

Security Architecture & Strategy :

- Design and evolve enterprise security architecture across cloud, AI, and Web3 environments

- Lead the adoption of Zero Trust principles across identity, network, and application layers

- Define cloud security standards including IAM, network segmentation, secrets management, and key management

- Develop and own the organizations security roadmap and strategic priorities

Web3 & Blockchain Security :

- Build threat models for blockchain systems, smart contracts, and decentralized infrastructure

- Define security practices for wallets, RPC nodes, key custody, and signing workflows

- Identify and mitigate Web3-specific risks such as MEV, oracle manipulation, and contract vulnerabilities

Security Operations & Governance :

- Build and scale the security program from early-stage maturity to enterprise-grade operations

- Lead incident response planning, execution, and post-incident reviews

- Define security metrics, dashboards, and reporting for leadership and board-level stakeholders

- Establish governance frameworks for risk management, compliance, and audit readiness

DevSecOps & Engineering Integration :

- Embed security into CI/CD pipelines and engineering workflows

- Implement and mature SAST, DAST, and software supply chain security practices

- Partner with engineering teams to enforce secure SDLC principles and automation

Security Tooling & Platforms :

- Design and maintain security tooling architecture including :

- WAF and Zero Trust access controls

- Cloud security posture management (CNAPP) and endpoint detection and response (EDR)

- SIEM platforms and detection engineering capabilities

- Evaluate, select, and implement GRC platforms and supporting security tools

Required Qualifications :

- 8 to 15 years of experience in security engineering, security architecture, or related roles

- Proven experience building or scaling enterprise security programs

- Strong expertise in cloud security across AWS, GCP, or Azure

- Deep understanding of Zero Trust architectures and identity-based security models

- Hands-on experience with incident response and security operations

- Experience working in Web3, blockchain, fintech, or distributed systems environments

- Strong ability to communicate complex security risks to executive and board-level stakeholders

Technical Environment :

Security Platforms :

- Cloudflare (WAF, Zero Trust, CDN, Bot Management)

- SentinelOne (CNAPP & EDR)

- SIEM platforms and detection engineering frameworks

Infrastructure :

- Multi-cloud environments (AWS, GCP, Azure)

- IAM architecture, identity governance, and access segmentation strategies

- Key management systems and secrets management solutions

DevSecOps :

- CI/CD security integration and pipeline hardening

- SAST and DAST tooling ecosystems

- Infrastructure-as-Code (IaC) security controls

Governance :

- Experience evaluating, implementing, or operating GRC platforms

Leadership Expectations :

- Serve as the technical authority for security across the organization

- Mentor and guide senior security engineers and architects

- Collaborate with cross-functional teams to drive security best practices

- Influence executive leadership on security strategy and risk management

- Balance strong security controls with engineering velocity and scalability