Company: IRALOGIX, Inc. Position: Principal Engineer Location: Pittsburgh, PA / Charlotte, NC Job Type: Full-Time/Exempt Industry: Retirement Services/FinTech Software Travel: 0%-5% IRALOGIX is a high-growth, institutional technology platform focused on providing uniquely capable solutions to IRA providers, 401(k) recordkeepers, retirement-focused Advisors, Mutual Fund investment providers, and banks interested in growing their IRA capabilities, revenue, and market share. Through proprietary, ground-up technology, we are changing the landscape and are empowering client companies to provide broader access to the best retirement services possible while significantly lowering administration costs and increasing efficiency, profitability, and competitiveness, far beyond industry expectations. Role: As a PRINCIPAL ENGINEER -SECURITY, reporting directly to the Senior Director of Data and Security, your primary objective will be to mitigate risks across our processes and technologies and improve the security of our core business platform. The role is expected to broadly cover a multitude of domains (both infrastructure and application) and will help define and drive core practices across multiple functions to create a security-first culture. The Security organization is responsible for working with every organization within the company to improve our security capabilities across endpoint management, cloud environments, DevOps tooling and practices, Application code/architecture, and people/process. This function blends both tech and process to highlight risks and gaps enabling our peers to resolve and prevent security issues. Location: This is a remote position, but candidates must reside within a 2-hour drive of either Pittsburgh, PA or Charlotte, NC. Occasional travel to Charlotte or the Pittsburgh office will be required. Responsibilities: The essential responsibilities and duties for this position include, but are not limited to, the following: * Develop strategies to reduce technical risks to the company and driving improvement through metrics * Develop and implement comprehensive security strategies for cloud, application, infrastructure, endpoint, SaaS * Work collaboratively with Product, App, Platform, and other teams to improve security through design / shift left * Develop and enhance processes to ensure control effectiveness beyond tooling/technology * Engage and drive remediation activities * Lead response efforts and partner with Security Operations teams to triage critical security events * Conduct regular security audits and assessments of infrastructure and applications and identify remediation plans * Develop and maintain security controls and ensure compliance for our IT assets and processes * Drive a security-minded culture * Stay updated on emerging security threats and trends, and provide insight and guidance to peer groups * Conduct security training and awareness programs for employees * Provide visibility to regulatory and compliance requirements * Work collaboratively with Compliance functions to ensure coverage and visibility * Ensure that requirements are included in development of security controls and honored as part of design Ideal Education and Experience: * Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent work experience) * 7+ years of experience in security, including cloud, application, infrastructure, and SaaS security * Experience in infrastructure technologies and security controls (systems engineer/integration) * Experience in cloud platform vendor and SaaS technologies (cloud engineer) * Experience in application development practices and security controls (software engineering) * Experience identifying risks and developing remediation strategies to address security issues (risk management) * Experience with security frameworks and standards (e.g., NIST, ISO 27001, CIS) plus regulatory and compliance frameworks * Demonstrated problem-solving skills and the ability to troubleshoot complex issues * Strong communication skills and the ability to work effectively in cross-functional and client-facing environments * Must be US Citizen, Permanent Resident, or eligible to work in the US permanently * Relevant certifications (e.g., CISSP, CISM, CCSP, AWS Certified Security) are highly desirable IRALOGIX is an equal opportunity employer committed to building a team that embraces diversity, represents a variety of backgrounds, and upholds inclusiveness. M/F/V/D