Principal Software Engineer, Pulumi

• 8+ years of professional software engineering experience in security, infrastructure, or distributed systems
• Proven experience building and maintaining security-focused software solutions, especially in secrets management, cryptography, or access control
• Deep understanding of modern security architectures, zero-trust models, and distributed systems security
• Expertise in programming languages such as Go, Python, or Rust
• Experience with cloud-native environments, containers, and orchestration tools like Kubernetes and Docker
• Strong understanding of multi-cloud architectures (AWS, GCP, Azure) and hybrid environments
• Familiarity with compliance frameworks (SOC 2, HIPAA, PCI-DSS) and secure coding standards
• Excellent leadership and collaboration skills, with a proven ability to mentor engineers and advocate for secure engineering principles

Desirable

• As a Principal Software Engineer specializing in Security and Secrets Management, you will lead the evolution of our Environments, Secrets, and Configuration (ESC) platform, building the next generation of secrets management and orchestration
• Your work will be at the forefront of designing scalable, secure, and user-friendly solutions that enable developers to manage sensitive data, credentials, and configurations across diverse environments
• Your work will directly impact how organizations securely manage sensitive data, access credentials, and cryptographic keys at scale, safeguarding our users and partners
• This is a hands-on technical leadership role where you will collaborate across engineering, product, and security teams to build cutting-edge solutions in cloud-native environments
• Architect and lead the development of innovative secrets management solutions within the Pulumi ESC platform, enabling seamless and secure handling of sensitive data
• Develop secure, high-performance services that provide configuration, encryption, and access control across multi-cloud and on-prem environments
• Collaborate with engineering and security teams to enforce the highest standards of secure development practices throughout the software lifecycle
• Lead design and implement fault-tolerant, scalable systems to manage secrets in highly distributed environments
• Conduct security assessments and threat modeling, and provide technical leadership on projects to continuously enhance the platform’s security posture
• Mentor engineering teams on best practices for secure code development and zero-trust architectures
• Stay at the cutting edge of security and secrets management trends, pushing Pulumi to deliver innovative, reliable, and user-friendly solutions
• Influence and drive cross-functional initiatives to shape the future of secrets orchestration and configuration management at Pulumi

• Time Off - Unlimited personal time off (PTO). We ask that employees take at least 3 weeks off during the year in addition to the 13 US holidays we recognize
• Parental Leave - 20 weeks paid parental leave for the birthing parent or primary caregiver, and 16 for non-birthing parent or secondary caregiver
• Remote-First - We are a 100% remote-first company with employees in nearly 20 states, and growing internationally; we encourage asynchronous communication and autonomy. We also provide an annual work from anywhere fund to help cover the employee costs of working remotely
• Professional Development & Growth - We encourage a lifelong learning mindset and every employee is given an annual professional development budget
• Equity - As a small but growing startup, we all act like owners and you will earn equity in the company
• Additional Funds - We offer employees a monthly wellness fund to be spent on anything physical and/or mental wellbeing related. We also provide a quarterly happiness fund to be used toward anything that makes our employees happy!
• Health - We offer competitive medical, dental, vision, and supplemental insurance. It is free for our direct employees to be on our insurance
• 401K - With employer match

Total funding: $106.5m

The Infrastructure-as-code space is new and growing, thanks to the increasing complexity of cloud services, and their increasing adoption by developers and teams who would rather not manage them. Pulumi works to bring together infrastructure, developer, and security teams to help build and operate these cloud applications, better.