Key skills
Software developmentInformation securityIdentity infrastructureCloud-native environmentZero Trust principlesAI securitySecurity standardsRelevant certificationsContinuous learningAIArtificial IntelligenceMLClaudeAWSAzureGitHubMentoringCommunicationNetwork SecurityCloud SecurityZero Trust
About this role
HubSpot is looking for a talented Principal Software Engineer to shape and deliver secure, robust, and scalable identity and access solutions supporting our growing platform. In this pivotal org-impacting role, you will use your extensive hands-on engineering experience to drive secure software design and implement best-in-class security practices.
Responsibilities:
- Play a leading role in building strong security foundations to advance Hubspot’s security posture
- Be a trusted technical leader within your organization, driving the development and improvement of secure software systems
- Partner closely with engineering and security teams to implement practical, hands-on solutions that mitigate risks and strengthen our product offerings
- Guide architectural decisions and establish best practices across projects in your org
- Contribute code, review designs, and provide technical mentorship to engineers—championing security in everything we do
- Act as a key point of contact for security expertise within the org— ensuring that Hubspot’s products meet both internal guardrails and external customer’s trust and security needs
- Work closely with engineers, product managers, and legal/compliance partners to ensure security is woven into the software development lifecycle
- Help shape our approach to securing AI initiatives, sharing your knowledge and fostering technical capabilities for building secure, innovative AI systems
- Proactively identify and address security risks in our products and align Hubspot’s product and security strategies
Requirements:
- 10+ years of experience in software development and information security, with a focus on identity, access, and applied cryptography
- Proven experience in designing and implementing identity infrastructure and other foundational security services in a cloud-native environment
- Expert knowledge of secure development, public cloud security, and network security
- Deep understanding and practical implementation experience with Zero Trust principles, including identity-centric security, continuous verification, and least-privilege access across distributed environments
- Experience designing and leading the execution of large-scale migrations, ensuring the safe, secure, and seamless transition of critical systems or data while minimizing customer impact
- Demonstrated experience in - or a strong willingness to learn - securing artificial intelligence systems such as AI/ML workflows, training data, models, agents, and deployments, to mitigate emerging AI-specific threats
- Comfortable with leveraging and championing AI development tools (such as GitHub Copilot, Claude, ChatGPT) to enhance productivity and code quality
- Proven track record of mentoring and developing other security engineers, fostering technical growth and elevating security expertise across the org
- Excellent communication skills, with the ability to articulate complex security concepts to both technical and non-technical audiences
- A passion for staying current with the latest security trends and a commitment to continuous learning
- Strong understanding of security, privacy, and compliance standards such as SOC 2, ISO 27001, NIST 800-53 and GDPR
- Relevant industry certification (e.g., CISSP, CEH, Azure Cybersecurity Architect, AWS Speciality, etc.)