Principal Security Engineer Jobs (NOW HIRING)

At Bloom Energy, our vision for a world powered by clean, reliable, and affordable energy is more than just a dream-we're making it reality.

For over two decades, we've been at the forefront of the global energy transition, pioneering solutions that empower critical industries to thrive in a rapidly digitizing, energy-intensive world. From revolutionizing power for AI-driven data centers to ensuring resilience for hospitals, electric grids, manufacturing facilities, and utilities, our solid oxide fuel cell (SOFC) and solid oxide electrolyzer (SOEC) technologies are redefining what's possible by delivering energy abundance for all. With more than 30,000 fuel cell modules deployed worldwide, we are the trusted partner for Fortune 100 companies and innovators alike. Our cutting-edge solutions enable unparalleled "time-to-power" capabilities, reliability, and sustainability, ensuring our customers remain ahead in a world where soaring energy demand and intensifying energy scarcity are rapidly becoming the new norm.

At Bloom, we thrive on collaboration, bold thinking, and relentless innovation. We believe that, together, we can create a brighter, more sustainable future while tackling the most pressing challenges of the 21st century.

We are looking for a Principal Security Engineer to join our team in one of today's most exciting technologies. This role will report to our Chief Security Officer and based in San Jose, CA. This is a fully on-site, in office role 5 days a week.

• Security Architecture Design:Develop and implement robust security architectures for enterprise-level systems, ensuring alignment with business objectives and regulatory requirements.
• Policy Development:Create, update, and enforce security policies, standards, and procedures to protect the organization's information assets.
• Risk Management:Conduct comprehensive risk assessments and vulnerability analyses to identify potential security threats and develop mitigation strategies.
• Collaboration:Work closely with IT, development, and business teams to integrate security measures into all aspects of the organization, including software development, network infrastructure, and cloud services.
• Incident Response:Lead and coordinate incident response efforts, providing expertise during security breaches and ensuring effective resolution and documentation.
• Continuous Improvement:Stay updated on the latest security technologies, trends, and threats, and recommend improvements to enhance the organization's security posture.
• Mentorship:Mentor and guide junior security team members, fostering a culture of continuous learning and professional development.

Requirements:

• Educational Background:Bachelor's degree in engineering, Computer Science, Information Technology, or a related field.
• Experience:Minimum of 8-10 years of experience in security, with at least 3 years in a senior or architect role.
• Technical Proficiency:Strong knowledge of security frameworks (e.g., NIST, ISO 27001) and proficiency in security technologies such as firewalls, intrusion detection systems, SIEM, SOAR, XDR, Email Security, DLP, CASB, CNAPP, Vulnerability Scanning, Threat Intelligence and automated Penetration Testing.
• Cloud Security:Experience with cloud security (AWS, Azure) and understanding of cloud-native security practices.
• Zero Trust Security:Proficiency in designing and implementing Zero Trust security models, including secure network strategies, strong authentication policies, and risk management frameworks.
• Cyber Resiliency:Expertise in building cyber resiliency, including developing incident response plans, conducting threat intelligence analysis, and ensuring business continuity during and after cyber incidents.
• Network Security:Strong understanding of network protocols, secure network architecture, and experience with configuring and managing firewalls, intrusion detection systems, and encryption solutions.
• Identity and Access Management (IAM):Expertise in IAM principles and best practices, including user identity management, role-based access control (RBAC), single sign-on (SSO), multi-factor authentication (MFA), and identity governance.
• Data Security:Proficiency in data security strategies, including data encryption, data loss prevention (DLP), secure data storage, and data integrity measures.
• Endpoint Protection:Proficiency in endpoint protection strategies, including anti-malware solutions, host-based intrusion detection systems (IDS/IPS), endpoint hardening, and mobile device management.
• IoT Security:Solid knowledge of IoT security principles, including cryptography, identity and access management, and secure network architecture for IoT devices.
• Develops:Experience with DevSecOps practices, including integrating security into the software development lifecycle, automating security processes, and using tools for continuous security monitoring.
• Product Security:Experience in product security, including identifying and mitigating security risks within products, collaborating with development teams, and ensuring products meet industry best practices for security.
• Problem-Solving Skills:Excellent analytical and problem-solving skills, with the ability to work under pressure and handle complex security issues.
• Communication Skills:Strong communication and leadership skills, with the ability to effectively convey security concepts to both technical and non-technical stakeholders.

Bloom Energy is an equal opportunity employer and makes employment decisions on the basis of merit. We are committed to compliance with all applicable laws providing equal employment opportunities. All qualified applicants, will receive consideration for employment without regard to race, sex, color, religion, national origin, protected veteran status, or on the basis of disability. Bloom Energy makes reasonable accommodations, consistent with applicable laws, for the known physical or mental

limitations of an otherwise qualified applicant or employee with a disability, who can perform the essential job functions, unless undue hardship would result.

At Bloom Energy, we are committed to supporting the well-being of our employees and their families. Our comprehensive benefits package for eligible employees includes competitive Medical, Dental, and Vision plans with a large employer contribution, a 401(k) Retirement Plan with company match, generous Mental Health Support services, Legal services, virtual Physical Therapy access, and Fertility & Family Forming benefits.

Bloom Energy is committed to fair and equitable compensation practices.

FULL TIME ROLE ONLY: The total compensation for this position includes standard company benefits and is based on various factors including, but not limited to, relevant skills and experience.

#LI-JM