Principal Software Engineer

About The Position

Requirements

• 7–10 years building production backend systems, including 3–5 years in high-scale and/or low-latency environments.
• Proficiency in one or more: Java/Python/C++/Rust/Go (strong preference for Java for control-plane/services).
• Deep systems design expertise: concurrency, memory management, performance tuning, API design, consistency models, and distributed systems fundamentals.
• Proven DevOps leadership at scale: CI/CD, automated testing, canarying, rollout/rollback, configuration management.
• Strong IaC experience (e.g., Terraform) and solid cloud infrastructure fundamentals.
• Domain experience in DDoS or network security services and common attack/defense patterns.
• Advanced networking knowledge: TCP/IP, IPv4/IPv6, BGP, routing policy; DNS fundamentals.
• Demonstrated operational excellence and observability practices (metrics, tracing, alerting).

Nice To Haves

• Expertise with anycast routing, global traffic steering, and multi-region service readiness.
• Experience with SDN, programmable data planes, or hardware mitigation platforms.
• Building high-rate telemetry/streaming pipelines for near-real-time detection (packet/flow analytics).
• Background in resilience engineering, chaos testing, disaster recovery, and capacity planning at hyperscale.
• Containerization/orchestration (e.g., Kubernetes) and secure service-to-service communication (mTLS, policy enforcement).
• Familiarity with zero trust, segmentation, and modern security architectures; exposure to compliance frameworks and audit preparation.

Responsibilities

• Lead architecture and delivery of low-latency backend services for DDoS detection, classification, and mitigation.
• Define and evolve scalable data/control planes (policy, signaling, telemetry, orchestration) with strong fault isolation, resiliency, and compliance-by-design.
• Own traffic engineering strategy (anycast, BGP policy, routing integration) and partner with networking, DNS, and edge platform teams.
• Set operational standards: SLOs/SLAs, on-call health, incident response (including incident commander duties), runbooks, and post-incident learning.
• Drive automation at scale: CI/CD strategy, test frameworks, progressive delivery (canary/blue-green), and infrastructure-as-code.
• Establish robust observability (metrics, logs, traces) and capacity/scale models for high-throughput, highly available services.
• Lead threat modeling, architecture reviews, and audit readiness for Tier 0 services; ensure security and privacy are embedded through the lifecycle.
• Mentor engineers, influence cross-org roadmaps, and collaborate with Product, SRE, and Network Engineering from concept to GA.

Benefits

• Medical, dental, and vision insurance, including expert medical opinion
• Short term disability and long term disability
• Life insurance and AD&D
• Supplemental life insurance (Employee/Spouse/Child)
• Health care and dependent care Flexible Spending Accounts
• Pre-tax commuter and parking benefits
• 401(k) Savings and Investment Plan with company match
• Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.
• 11 paid holidays
• Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.
• Paid parental leave
• Adoption assistance
• Employee Stock Purchase Plan
• Financial planning and group legal
• Voluntary benefits including auto, homeowner and pet insurance