DigitalOceanRemote
Principal Engineer - Security Products, Security Visibility
United States of America
Full Time
2 weeks ago
$235,000 - $294,000 USD
H1B Sponsor Likely
Key skills
GogRPCApache FlinkApache KafkaAudit LoggingSecurity TelemetrySIEM IntegrationSecurity Visibility PlatformsSOC 2ISO 27001FedRAMPPCI-DSSKubernetesTerraformSQLAnalyticsKafkaDigitalOceanIAMMySQLDatadogSplunkOpenTelemetryLeadershipMentoringNetwork Security
About this role
DigitalOcean is a leading cloud infrastructure provider, and they are seeking a Principal Engineer to join their Customer Trust & Engineering organization. This role involves defining the technical roadmap for security products, driving architectural strategy, and mentoring engineers in building a robust security visibility platform.
Responsibilities:
- Own the Platform Vision: Define and drive the multi-year technical roadmap for Audit Logging, SIEM Integration, and Unified Security Visibility — spanning event collection, normalization, enrichment, storage, and customer-facing exposure across DigitalOcean's global cloud platform
- Architect for Hyperscale: Design fault-tolerant, high-throughput audit and telemetry pipelines in Go capable of ingesting and processing billions of security events per day with guaranteed delivery, low latency, and full auditability
- Build Unified Security Visibility: Architect the Unified Security Dashboard and control plane that aggregates signals from threat detection, IAM, network security, and workload protection into a single coherent customer-facing security posture view
- Drive SIEM Integration: Design and deliver first-class integrations with leading SIEM platforms (Splunk, Datadog, Chronicle, Microsoft Sentinel) via standardized log export, streaming APIs, and webhook frameworks — enabling customers to bring their own observability stack without friction
- Evolve the Audit Logging Platform: Lead the redesign of DigitalOcean's audit log infrastructure to support immutable, tamper-evident, compliance-grade event records with fine-grained retention controls, cross-account federation, and real-time streaming access for customers and internal security teams
- Drive Cross-Team Impact: Partner with IAM, Threat Detection, DOKS, Billing, and Platform Engineering to ensure that every product surface emits structured, consistent, high-fidelity security telemetry. Serve as the connective tissue between the security data plane and the broader cloud platform
- Set Engineering Standards: Establish logging schema standards, event taxonomy, and observability engineering practices adopted org-wide. Lead design reviews for changes with cross-cutting platform risk and author RFCs that shape DigitalOcean's technical direction
- Mentor & Grow the Organization: Mentor and develop senior and mid-level engineers across Security Products and adjacent teams. Conduct deep code reviews, model architectural thinking, and build a culture of security-first, observability-native engineering
Requirements:
- You possess over 10 years of software engineering expertise, including 4+ years dedicated to audit logging, security telemetry, SIEM integration, or managing high-throughput data pipelines within cloud or IaaS ecosystems
- You are an expert in Go and have extensive experience designing gRPC-based microservices
- You have deep, hands-on knowledge of Apache Flink, Apache Kafka, or similar high-volume stream processing frameworks, with a focus on exactly-once semantics, durability, and ordering guarantees
- You have a proven history of developing security visibility platforms, such as unified control planes, security dashboards, or complex SIEM integrations across diverse cloud environments
- You understand audit requirements for frameworks like SOC 2, ISO 27001, FedRAMP, and PCI-DSS
- You can build large-scale systems handling replication, consensus, and partitioning with high reliability
- You are proficient with Kubernetes, Terraform (IaC), SQL (MySQL), and analytical or columnar data stores
- You have a track record of leading ambiguous, cross-functional platform initiatives
- You write effective RFCs and can articulate architectural strategies to senior leadership while aligning teams toward a unified goal
- Experience with OpenTelemetry, OCSF (Open Cybersecurity Schema Framework), or other security telemetry standards
- Familiarity with threat detection platforms, behavioral analytics, or UEBA systems
- Experience building customer-facing security dashboards or compliance reporting tools
- Contributions to open-source security, observability, or data pipeline projects