Principal Engineer, Security Systems Architect

What You'll Do

• Azure Cloud Infrastructure Security Design, implement, and maintain secure Azure cloud environments Secure Azure networking components including: VPNs and VPN peering Azure Firewall and Network Security Groups Application Gateways and WAF Implement identity and access controls using Azure AD, RBAC, and managed identities Monitor and respond to cloud security events and vulnerabilities Azure Cloud Architecture & Secure Design Define and review cloud architecture with security best practices in mind Design secure, scalable architectural models including: Environment separation (dev, test, staging, production) Network segmentation and zero-trust principles Provide security guidance for new services and system designs Participate in architecture reviews and threat modeling exercises Compliance & Governance Support compliance efforts and audits for standards and regulations such as: NIS2 ISO 27001 (or equivalent security frameworks) Help define and maintain security policies, standards, and documentation Translate regulatory requirements into practical technical controls Work with internal stakeholders to ensure ongoing compliance Secure Coding & Application Security Promote and review secure coding practices across backend and API development Advise on secure JavaScript and web application development Identify common application vulnerabilities (OWASP Top 10) and mitigation strategies Support developers through code reviews, security guidelines, and training Security Testing Plan and coordinate security testing activities, including: Penetration testing Fuzz testing Vulnerability scanning Analyze findings, assess risk, and drive remediation efforts Work with internal teams or external vendors on security assessments Secure DevOps (DevSecOps) Embed security into CI/CD pipelines and development workflows Integrate security tooling such as: Static and dynamic code analysis Dependency and container scanning Infrastructure-as-Code security checks Define secure release and deployment practices Promote “security by design” and “shift-left” security culture Required Skills & Experience: Strong experience with Microsoft Azure cloud environments Solid understanding of cloud networking and security controls Practical experience with security architecture and secure system design Knowledge of compliance frameworks such as NIS2, ISO 27001 , or similar Understanding of secure software development, APIs, and backend systems Experience with security testing methodologies and tools Familiarity with CI/CD pipelines and DevOps practices Nice to Have Experience with containerized environments (Docker, Kubernetes) Knowledge of Infrastructure-as-Code tools (Terraform, Bicep, ARM) Azure security certifications (e.g., AZ-500) or equivalent Experience working in regulated or high-availability environments What We Offer Opportunity to shape security architecture and practices across the organization Close collaboration with engineering, cloud, and product teams A role with real influence on long-term system design and compliance Location: Flexible / Hybrid / Remote (depending on your setup) #LI-CO1 For positions requiring access to technical data, Analog Devices, Inc. may have to obtain export licensing approval from the U.S.
• Department of Commerce - Bureau of Industry and Security and/or the U.S.
• Department of State - Directorate of Defense Trade Controls.
• As such, applicants for this position – except US Citizens, US Permanent Residents, and protected individuals as defined by 8 U.S.C. 1324b(a)(3) – may have to go through an export licensing review process.
• We foster a culture where everyone has an opportunity to succeed regardless of their race, color, religion, age, ancestry, national origin, social or ethnic origin, sex, sexual orientation, gender, gender identity, gender expression, marital status, pregnancy, parental status, disability, medical condition, genetic information, military or veteran status, union membership, and political affiliation, or any other legally protected group.
• Job Req Type: Experienced Required Travel: Yes, 10% of the time Shift Type: 1st Shift/Days