Principal Engineer, Security & Access Management (Agentic AI)

Job Description:

DataRobot delivers AI that maximizes impact and minimizes business risk. Our platform and applications integrate into core business processes so teams can develop, deliver, and govern AI at scale. DataRobot empowers practitioners to deliver predictive and generative AI, and enables leaders to secure their AI assets. Organizations worldwide rely on DataRobot for AI that makes sense for their business — today and in the future. 

Team Vision: Our purpose is to safeguard the platform, manage access effectively, build customer trust and ensure compliance. We are focused on critical capabilities upon which feature teams and customers can rely on to deliver efficient, trusted, secure, scalable, easy to consume and manage foundational access and security services. We can achieve this through collaboration across engineering to deliver successfully on these commitments.

We are seeking a seasoned and forward-thinking Principal Engineer for our Security and Access Management team. In this pivotal role, you will be at the forefront of securing our innovative platform that supports industry leading security for Agentic AI. You will be responsible for the architecture, design, and implementation of our authentication and authorization services, ensuring they are scalable, secure, and reliable. The ideal candidate will be a subject matter expert in modern identity protocols and will have a proven track record of shaping the future of security standards. You will work together with both the Engineering Manager and Product Manager of the Security and Access Management team, in a three-way partnership to direct the work of the team. 

Key Responsibilities:

• Technical Leadership & Strategy:

  • Lead the technical direction and architecture for the team, making key decisions on technology stacks, and design patterns for identity and access management.

  • Mentor and guide a talented team of security engineers, fostering a culture of innovation, collaboration, and excellence.

  • Translate the team's vision and business requirements into a clear technical roadmap and tangible deliverables.

  • Collaborate with cross-functional teams, including product, engineering, and compliance, to deliver cohesive and secure solutions.

  • Collaborate with customers to educate, architect and deliver security solutions for Agentic AI workloads.

• Authentication & Authorization Expertise:

  • Design, build, and maintain robust, scalable, and secure authentication and authorization services using modern protocols like OAuth 2.0 and OpenID Connect (OIDC).

  • Serve as the in-house expert on all aspects of identity, from fundamental concepts to intricate implementation details.

  • Stay at the cutting edge of security protocols and standards, driving the evolution of our authentication architecture.

• Agentic AI Security:

  • Pioneer the security strategy for our Agentic AI platform, addressing unique challenges and threats.

  • Conduct threat modeling for AI agents and multi-agent systems to identify and mitigate risks such as prompt injection, model exploitation, and data poisoning.

  • Design and implement security controls for the entire AI model lifecycle, from data ingress to model deployment and inferencing.

  • Design and implement adversarial testing strategies and solutions for DataRobot’s AI platform. 

• Standards & Compliance:

  • Actively participate in the security community, with a preference for candidates who have contributed to RFC documents related to authentication, authorization, or security best practices.

  • Ensure our security practices and services are compliant with relevant industry standards and regulations.

  • Interface between auditors and engineering teams for acquiring and maintaining security certifications such as FedRAMP, HIPAA, and ISO 27001

Required Qualifications:

• Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent practical experience.

• 8+ years of experience in software engineering, with at least 4 years in a security-focused role.

• Deep, hands-on expertise with OAuth 2.0 and OIDC, including a thorough understanding of the specifications and various grant types.

• Proven experience in designing and building highly scalable, distributed, and fault-tolerant systems.

• Strong programming skills in one or more languages such as Go, Python, Java, or Rust.

• Excellent leadership and communication skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences.

• Experience with maintaining software that is delivered in an on-premise or self-managed environment
   

Nice to Have:

• Master's degree or PhD in a relevant field.

• Demonstrable experience authoring, reviewing, or providing significant contributions to IETF RFCs or similar technical standards documents.

• Experience in securing AI/ML systems, with a specific focus on the unique security challenges of Agentic AI.

• Familiarity with other identity and access management standards such as SAML, SCIM, and WebAuthn.

• Experience with cloud-native security and identity services (e.g., AWS IAM, Google Cloud Identity, Azure AD).

• A passion for open-source and a history of contributions to relevant projects.

• Ability to meet the requirements for U.S. Government contract work, which includes U.S. Citizenship. This role is expected to support our FedRAMP initiative, which may require access to controlled environments and information restricted to U.S. citizens.

The talent and dedication of our employees are at the core of DataRobot’s journey to be an iconic company. We strive to attract and retain the best talent by providing competitive pay and benefits with our employees’ well-being at the core. Here’s what your benefits package may include depending on your location and local legal requirements: Medical, Dental & Vision Insurance, Flexible Time Off Program, Paid Holidays, Paid Parental Leave, Global Employee Assistance Program (EAP) and more!

DataRobot Operating Principles:

• Wow Our Customers
• Set High Standards
• Be Better Than Yesterday
• Be Rigorous
• Assume Positive Intent
• Have the Tough Conversations
• Be Better Together
• Debate, Decide, Commit
• Deliver Results
• Overcommunicate

Research shows that many women only apply to jobs when they meet 100% of the qualifications while many men apply to jobs when they meet 60%. At DataRobot we encourage ALL candidates, especially women, people of color, LGBTQ+ identifying people, differently abled, and other people from marginalized groups to apply to our jobs, even if you do not check every box. We’d love to have a conversation with you and see if you might be a great fit. 

DataRobot is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. DataRobot is committed to working with and providing reasonable accommodations to applicants with physical and mental disabilities. Please see the United States Department of Labor’s EEO poster and EEO poster supplement for additional information.

All applicant data submitted is handled in accordance with our Applicant Privacy Policy.