Principal Security Engineer
HubSpot is looking for a talented Principal Software Engineer to shape and deliver secure, robust, and scalable identity and access solutions supporting our growing platform. In this pivotal org-impacting role, you will use your extensive hands-on engineering experience to drive secure software design, influence the technical direction of your organization, and implement best-in-class security practices. You’ll tackle challenging problems and partner closely with cross-functional peers, making a tangible impact on the safety and integrity of our products.
At HubSpot, security isn’t just a checkbox—it’s woven into everything we do. By building secure foundations and scalable systems, you’ll be enabling our teams and customers to grow better, together. If you’re motivated to strengthen security for millions of organizations at scale, you’ll find this opportunity exciting!
Responsibilities
As a Principal Software Engineer, you will play a leading role in building strong security foundations to advance Hubspot’s security posture. You will be a trusted technical leader within your organization, driving the development and improvement of secure software systems. You will partner closely with engineering and security teams to implement practical, hands-on solutions that mitigate risks and strengthen our product offerings. Your deep technical knowledge will help guide architectural decisions and establish best practices across projects in your org. You’ll focus on translating organizational priorities into tangible, secure engineering outcomes. Day-to-day, you’ll contribute code, review designs, and provide technical mentorship to engineers—championing security in everything we do.
You’ll act as a key point of contact for security expertise within the org— ensuring that Hubspot’s products meet both internal guardrails and external customer’s trust and security needs. You will work closely with engineers, product managers, and legal/compliance partners to ensure security is woven into the software development lifecycle, and that organizational objectives remain tightly aligned with secure design and delivery. You will also help shape our approach to securing AI initiatives, sharing your knowledge and fostering technical capabilities for building secure, innovative AI systems.
The secure systems and practices you establish will have a real and lasting impact on upholding the security and integrity of the data entrusted to Hubspot by millions of customers. By proactively identifying and addressing security risks in our products and aligning Hubspot’s product and security strategies, you will directly contribute to a secure experience for every customer—enabling them to focus on running and growing their business with confidence.
Key Expectations
We are looking for an experienced and forward-thinking security leader with the following qualifications:
10+ years of experience in software development and information security, with a focus on identity, access, and applied cryptography.
Proven experience in designing and implementing identity infrastructure and other foundational security services in a cloud-native environment.
Expert knowledge of secure development, public cloud security, and network security.
Deep understanding and practical implementation experience with Zero Trust principles, including identity-centric security, continuous verification, and least-privilege access across distributed environments.
Experience designing and leading the execution of large-scale migrations, ensuring the safe, secure, and seamless transition of critical systems or data while minimizing customer impact.
Demonstrated experience in - or a strong willingness to learn - securing artificial intelligence systems such as AI/ML workflows, training data, models, agents, and deployments, to mitigate emerging AI-specific threats.
Comfortable with leveraging and championing AI development tools (such as GitHub Copilot, Claude, ChatGPT) to enhance productivity and code quality
Proven track record of mentoring and developing other security engineers, fostering technical growth and elevating security expertise across the org.
Excellent communication skills, with the ability to articulate complex security concepts to both technical and non-technical audiences.
A passion for staying current with the latest security trends and a commitment to continuous learning.
Strong understanding of security, privacy, and compliance standards such as SOC 2, ISO 27001, NIST 800-53 and GDPR.
Relevant industry certification (e.g., CISSP, CEH, Azure Cybersecurity Architect, AWS Speciality, etc.)
Pay & Benefits
The cash compensation below includes base salary, on-target commission for employees in eligible roles, and annual bonus targets under HubSpot’s bonus plan for eligible roles. In addition to cash compensation, some roles are eligible to participate in HubSpot’s equity plan to receive restricted stock units (RSUs). Some roles may also be eligible for overtime pay. Individual compensation packages are tailored to your skills, experience, qualifications, and other job-related reasons.
This resource will help guide how we recommend thinking about the range you see. Learn more about HubSpot’s compensation philosophy.
Benefits are also an important piece of your total compensation package. Explore the benefits and perks HubSpot offers to help employees grow better.
At HubSpot, fair compensation practices aren’t just about checking off the box for legal compliance. It’s about living out our value of transparency with our employees, candidates, and community.
Annual Cash Compensation Range:
$188,500—$301,600 USD
About the job
Apply for this position
Principal Security Engineer
HubSpot is looking for a talented Principal Software Engineer to shape and deliver secure, robust, and scalable identity and access solutions supporting our growing platform. In this pivotal org-impacting role, you will use your extensive hands-on engineering experience to drive secure software design, influence the technical direction of your organization, and implement best-in-class security practices. You’ll tackle challenging problems and partner closely with cross-functional peers, making a tangible impact on the safety and integrity of our products.
At HubSpot, security isn’t just a checkbox—it’s woven into everything we do. By building secure foundations and scalable systems, you’ll be enabling our teams and customers to grow better, together. If you’re motivated to strengthen security for millions of organizations at scale, you’ll find this opportunity exciting!
Responsibilities
As a Principal Software Engineer, you will play a leading role in building strong security foundations to advance Hubspot’s security posture. You will be a trusted technical leader within your organization, driving the development and improvement of secure software systems. You will partner closely with engineering and security teams to implement practical, hands-on solutions that mitigate risks and strengthen our product offerings. Your deep technical knowledge will help guide architectural decisions and establish best practices across projects in your org. You’ll focus on translating organizational priorities into tangible, secure engineering outcomes. Day-to-day, you’ll contribute code, review designs, and provide technical mentorship to engineers—championing security in everything we do.
You’ll act as a key point of contact for security expertise within the org— ensuring that Hubspot’s products meet both internal guardrails and external customer’s trust and security needs. You will work closely with engineers, product managers, and legal/compliance partners to ensure security is woven into the software development lifecycle, and that organizational objectives remain tightly aligned with secure design and delivery. You will also help shape our approach to securing AI initiatives, sharing your knowledge and fostering technical capabilities for building secure, innovative AI systems.
The secure systems and practices you establish will have a real and lasting impact on upholding the security and integrity of the data entrusted to Hubspot by millions of customers. By proactively identifying and addressing security risks in our products and aligning Hubspot’s product and security strategies, you will directly contribute to a secure experience for every customer—enabling them to focus on running and growing their business with confidence.
Key Expectations
We are looking for an experienced and forward-thinking security leader with the following qualifications:
10+ years of experience in software development and information security, with a focus on identity, access, and applied cryptography.
Proven experience in designing and implementing identity infrastructure and other foundational security services in a cloud-native environment.
Expert knowledge of secure development, public cloud security, and network security.
Deep understanding and practical implementation experience with Zero Trust principles, including identity-centric security, continuous verification, and least-privilege access across distributed environments.
Experience designing and leading the execution of large-scale migrations, ensuring the safe, secure, and seamless transition of critical systems or data while minimizing customer impact.
Demonstrated experience in - or a strong willingness to learn - securing artificial intelligence systems such as AI/ML workflows, training data, models, agents, and deployments, to mitigate emerging AI-specific threats.
Comfortable with leveraging and championing AI development tools (such as GitHub Copilot, Claude, ChatGPT) to enhance productivity and code quality
Proven track record of mentoring and developing other security engineers, fostering technical growth and elevating security expertise across the org.
Excellent communication skills, with the ability to articulate complex security concepts to both technical and non-technical audiences.
A passion for staying current with the latest security trends and a commitment to continuous learning.
Strong understanding of security, privacy, and compliance standards such as SOC 2, ISO 27001, NIST 800-53 and GDPR.
Relevant industry certification (e.g., CISSP, CEH, Azure Cybersecurity Architect, AWS Speciality, etc.)
Pay & Benefits
The cash compensation below includes base salary, on-target commission for employees in eligible roles, and annual bonus targets under HubSpot’s bonus plan for eligible roles. In addition to cash compensation, some roles are eligible to participate in HubSpot’s equity plan to receive restricted stock units (RSUs). Some roles may also be eligible for overtime pay. Individual compensation packages are tailored to your skills, experience, qualifications, and other job-related reasons.
This resource will help guide how we recommend thinking about the range you see. Learn more about HubSpot’s compensation philosophy.
Benefits are also an important piece of your total compensation package. Explore the benefits and perks HubSpot offers to help employees grow better.
At HubSpot, fair compensation practices aren’t just about checking off the box for legal compliance. It’s about living out our value of transparency with our employees, candidates, and community.
Annual Cash Compensation Range:
$188,500—$301,600 USD