Principal Enterprise Security Engineer

Founded in 2017, Obsidian Security was created to close a critical gap: securing the SaaS applications where modern business happens—platforms like Microsoft 365, Salesforce, and hundreds more. Backed by top investors including Greylock, Norwest Venture Partners, and IVP, we’ve built a complete SaaS security platform to reduce risk, detect and respond to threats, and prevent breaches at the source. Our team includes leaders who helped define the categories of endpoint and identity security at CrowdStrike, Okta, Cylance, and Carbon Black. Now, we’re transforming how SaaS is secured—in the era of agentic AI. Today, Obsidian is trusted by global enterprises like Snowflake, T-Mobile, and Pure Storage. We protect more than 200 organizations across North America, Europe, the Middle East, Southeast Asia, Australia, and New Zealand—including many of the world’s largest Fortune 1000 and Global 2000 companies. With strong global momentum, a growing partner ecosystem including SentinelOne, Databricks, and Google Cloud, and a major fundraise on the horizon, we’re scaling quickly toward long-term growth and IPO readiness. Join us as we define the future of SaaS security! Position Overview: We’re looking for a Principal Enterprise Security Engineer to join our team and help drive our enterprise security to the next level and beyond. The ideal candidate for the role will be a highly technical, passionate, team-oriented technical leader who can evolve our enterprise security program by optimizing, maturing, automating, integrating, and evolving our existing comprehensive security controls, processes, and capabilities. In this operational, hands-on role, you will engineer, architect, implement, and operate scalable security solutions and capabilities across the Obsidian global corporate environments. The ideal person for this role must be mission and values-driven, must have an ownership mentality, and must put the well-being of our customers, our teammates, and our organization at the forefront of how they operate. This person must be able to operate and thrive in a dynamic, high-growth startup environment within an established Cybersecurity, GRC, and IT team and programs. This is a critical, high-impact role that will serve as a catalyst for growth for any seasoned cybersecurity professional. The Principal Enterprise Security Engineer reports to the Chief Information Security Officer, works within the Security Team, partners closely with Product Security, GRC, IT, and Engineering, and will have the support and autonomy to drive maturity and technical excellence within Obsidian’s enterprise security program and operations. Candidates applying for this sensitive and high-impact role should be highly technical team players with experience in cybersecurity engineering, operations, analysis, incident response, threat and vulnerability management, security posture management, and related disciplines. They should also have the ability to operate across a cloud-native organization with a cybersecurity mission and a modern tech stack. This is a multi-faceted role within a fast-moving startup and will require the successful candidate to possess an ownership mentality, sound judgment, personal responsibility, and initiative. Your Responsibilities Will Include: Enterprise Security Operations and Architecture Support IT by enhancing and automating security controls for enterprise IT systems, including Google Workspace, Microsoft 365, Salesforce, Meraki, Jamf, Atlassian, Notion, and Slack. Operate, integrate, monitor, and automate security tooling such as endpoint detection and response, SIEM, SaaS Security Platforms, Email Security Platforms, CNAPP, MDM, EPM, and firewall technologies. Define, implement, and enforce secure and hardened patterns for corporate endpoint deployments and operations. Create automation workflows for security incident detection and response across corporate environments. Secure Identity Access Management and Privi ... (truncated, view full listing at source)