InfoSec - Principal Product Security Engineer (AppSec)

InfoSec - Principal Product Security Engineer (AppSec) Elastic, the Search AI Company, enables everyone to find the answers they need in real time, using all their data, at scale—unleashing the potential of businesses and people. The Elastic Search AI Platform, used by more than 50% of the Fortune 500, brings together the precision of search and the intelligence of AI to enable everyone to accelerate the results that matter. By taking advantage of all structured and unstructured data—securing and protecting private information more effectively—Elastic’s complete, cloud-based solutions for search, security, and observability help organizations deliver on the promise of AI. What Is The Role We’re looking for a Principal Product Security Engineer to help secure Elastic products that are loved by developers and recognized for innovation and impact across industries. The InfoSec Product Security team is accountable for the security of all Elastic software and cloud services. You will foster customer trust and empower Elastic to weave security into the fabric of our product development and Elastic Cloud platforms in a globally distributed company. What You Will Be Doing Act as a principal advisor and trusted partner to Engineering, providing strategic guidance on secure development practices for Elastic products and services Develop and integrate guidance, frameworks, and tooling that enables engineers to safely embrace the full potential of AI/ML capabilities in secure software development Drive and own cross-functional security initiatives to harden the software supply chain and CI/CD infrastructure to enable developer velocity at scale Lead security reviews and assessments to identify weaknesses and provide effective and pragmatic mitigation and remediation strategies Mentor and guide engineers, security champions, and others to elevate the organizational security posture and foster a proactive culture of security ownership across Elastic Provide leadership and domain expertise in product-related security Incident Response processes What You Bring Proven expertise in secure product development practices spanning the entire Software Development Lifecycle A strong track record of leading large, cross‑cutting projects and managing end‑to‑end delivery of security initiatives, demonstrating strategic thought, pragmatic execution, and developer empathy Deep technical expertise, including proficiency in programming and scripting languages, enabling you to engage with application code to assess vulnerabilities A demonstrated ability to communicate clearly and effectively across diverse teams and collaborators, including providing guidance to leadership and collaborating with engineers on complex security challenges Bonus Points Experience with any Elastic products (Elasticsearch, Kibana, Elastic Agent, Beats, Elastic Cloud, Logstash, Elastic Security) Experience contributing to large open‑source projects and engaging with the developer community Experience using, applying, and securing artificial intelligence and machine learning technologies in a software engineering context Compensation and Benefits Compensation for this role is in the form of base salary. This role does not have a variable compensation component. The typical starting salary range for new hires in this role is $199,700—$315,900 USD. In select locations (including Seattle, WA; Los Angeles, CA; the San Francisco Bay Area, CA; and the New York City Metro Area), an alternate range may apply: $239,800—$379,300 USD. With Elastic’s total rewards package you also receive participation in Elastic’s stock program, a company‑matched 401(k) with dollar‑for‑dollar matching up to 6% of eligible earnings, and a range of benefits focused on employee well‑being. Additional Information – We Take Care Of Our People Competitive pay based on the work you do here and not your previous salary Health coverage for you and your family in many locations Ability to craft your calendar with flexible locations and schedules for many roles Generous number of vacation days each year Increase your impact – we match up to $2,000 (or local currency equivalent) for financial donations and service Up to 40 hours each year to use toward volunteer projects you love Embracing parenthood with minimum of 16 weeks of parental leave Equal Employment Opportunity Elastic is an equal‑opportunity employer and is committed to creating an inclusive culture that celebrates different perspectives, experiences, and backgrounds. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, pregnancy, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, disability status, or any other basis protected by federal, state or local law, ordinance or regulation. We welcome individuals with disabilities and strive to create an accessible and inclusive experience for all. If you require an accommodation during the application or recruiting process, please email . We will reply to your request within 24 business hours of submission. #J-18808-Ljbffr