Principal Information Security Engineer (Identity)

ZscalerSan Jose, CA
$171,500 - $245,000Hybrid

About The Position

We are looking for a Principal Information Security Engineer (Identity) to join our team. This is a Hybrid (onsite three days a week in San Jose, CA) role, reporting to the Director, Information Security Compliance in the Information Security Compliance department. The Principal Information Security Engineer (Identity) will own the architectural backbone of how Zscaler's internal service authentication and authorization operate at scale. In this role, you will design and drive adoption of the credential model, establishing a cryptographic trust foundation while setting identity patterns and standards for engineering teams across the company to consume.

Requirements

  • Foundational understanding of AI/ML technologies and experience leveraging, securing, or positioning AI-driven solutions to optimize outcomes within your functional domain
  • 8+ years of experience in security or security architecture, with at least 3 years explicitly focused on Machine Identity
  • Production-level deployment experience, including hands-on support and operations
  • Demonstrated experience driving cross-team technical programs to delivery, including owning design reviews, resolving cross-functional blockers, and producing clear architectural guidance
  • Working experience with Kubernetes, Virtual Machines (VMs), and bare-metal workloads, along with a strong understanding of their provisioning

Nice To Haves

  • Production deployment experience with SPIFFE/SPIRE, specifically designing and operating deployments for cross-environment workloads and applications
  • Dedicated experience managing identity and security architectures for agentic and AI workloads
  • Proven track record with large-scale authentication and authorization migration programs

Responsibilities

  • Own the end-to-end architectural design of the Machine Identity service
  • Lead Proof of Concepts (PoCs) for critical architectural components including SPIFFE/SPIRE workload attestation, Non-Human Identity (NHI) governance workflows, and system design validation
  • Drive cross-team implementation by owning delivery accountability across partner teams, running design reviews, unblocking technical challenges, and managing timelines
  • Champion engineering adoption by building SDKs and defining seamless migration pathways from human identity to Non-Human Identity (NHI)
  • Design the identity and authorization model for LLM workloads and AI agents operating within the organization

Benefits

  • Various health plans
  • Time off plans for vacation and sick time
  • Parental leave options
  • Retirement options
  • Education reimbursement
  • In-office perks
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service