Senior Principal Engineer, Information Security

About the team

Join our Information Security team as we build cutting-edge solutions to protect our technology stack, products, and services! Our company focuses on developing our outstanding solutions, with the team fully coordinated within the organization to prioritize application security in all our projects.

We are looking for individuals who thrive at the intersection of security, technology, and innovation, and who are excited to help scale our platforms to meet the challenges of the future. This is your chance to make a lasting impact by shaping the security posture and architecture of a company dedicated to building its own solutions and staying at the forefront of technology.

About the role

This role will play a critical role in shaping the security posture of the organization, helping to build and scale secure, innovative solutions for a constantly evolving business landscape. Lead by developing security strategies, encouraging technical expertise, and integrating standard methodologies.

Inspire and collaborate with Product, Application Engineering, and Architecture teams to prioritize security. By applying your expertise in cloud security, cyber defense technologies, application security. Your expertise and sophisticated solutions will help the organization stay ahead of emerging threats while maintaining operational agility.

This role requires a seasoned professional with a proven track record to solve sophisticated, undefined problems, influence at the highest levels, and drive transformational change across the organization. You will not only design scalable security architectures and processes but also shape the strategic directly.

As a Senior Principal Engineer, Information Security, you will:

• Act as an inspiring leader, influencing senior leaders and individual contributors to define technical strategies, craft organizational and architectural structures, and establish high engineering standards.

• Develop and deploy brand-new cybersecurity strategies to safeguard critical applications, data, and systems, ensuring alignment with industry standards, business objectives, and the changing threat landscape.

• Serve as an expert in Cyber Defense Technologies, embedding them into application security and the broader engineering organization.

• Architect and drive the adoption of security solutions for cloud environments (with a focus on AWS and GCP), ensuring scalability, operational efficiency, and compliance with security standards.

• Apply Innovative/AI technologies to improve security operations and application security, allowing for proactive threat detection, automation of repetitive tasks, and improved efficiency across the organization.

• Lead the design and implementation of perimeter security solutions to safeguard against external threats while maintaining seamless internal operations.

• Collaborate with team members to build scalable architectures and integrate secure-by-design principles.

• Evaluate and recommend AI capabilities to enrich the security portfolio and align with the company’s technology strategy, ensuring the organization remains at the forefront of innovation.

• Mentor and guide engineers across the organization, fostering a culture of technical excellence, continuous learning, and security-first principles.

• Collaborate across teams and organizations to ensure alignment on application security, software architecture, and operational strategies that scale with the demands of the future.

• Analyze undefined, complex problems with ambiguous risks, and develop innovative solutions that can have impacts on the business and potentially the industry.

This role has been categorized as a Remote position. “Remote” employees do not have a permanent corporate office workplace and, instead, work from a physical location of their choice, which must be identified to the Company. U.S. employees may live in any of the 50 United States, with limited exceptions.

In California, Colorado, Connecticut, Hawaii, Illinois, Maryland, Minnesota, Nevada, New York, Washington state, and Washington DC the standard base pay range for this role is $220,200.00 - $351,800.00 Annually. This base pay range is specific to California, Colorado, Connecticut, Hawaii, Illinois, Maryland, Minnesota, Nevada, New York, Washington state, and Washington DC and may not be applicable to other locations.

In addition to a competitive base salary this position is also eligible for equity awards based on factors such as experience, performance and location. Actual amounts will vary depending on experience, performance and location.

Who you are

• Proven experience in information security, cybersecurity, or related technical fields. Equivalent experience will also be considered.

• A leader with industry-recognized expertise, capable of solving sophisticated, undefined problems and driving ground-breaking change across teams and organizations.

• Hold certifications such as CISSP, CISM, CCSP, or equivalent. Additional certifications like AWS Certified Security Specialist, GIAC certifications (e.g., GCSA, GSEC, or GWAPT), or similar are a plus.

• Deep understanding of AWS Cloud Environments and cloud-native security solutions, with hands-on experience implementing secure architectures in cloud platforms. Familiarity with multi-cloud environments is a bonus.

• Great foundation in application security principles, including secure development practices, threat modeling, and vulnerability management, with experience integrating these into engineering and operational workflows.

• Familiar with the nuances of perimeter security and the ability to design and implement defense mechanisms such as firewalls, web application firewalls (WAFs), and zero-trust network architectures.

• Proficient in designing sophisticated architectures that unify, simplify, and standardize security practices across teams and organizations, ensuring scalability and operational efficiency.

• Proficient in evaluating and offering guidance on the integration of AI/ML technologies, with a focus on maintaining privacy, security, and compliance in adopting AI solutions. Familiarity with AI risks, including model security, bias mitigation, and data privacy, is helpful.

• A leader with a clear perspective and outstanding communication abilities, influencing diverse collaborators and guiding professionals in various fields.

• Continuously curious, staying informed about industry trends and new technologies, and bringing this knowledge to bear to identify strategic advantages for the organization.

• Demonstrated ability to work closely with Product, Application Engineering, and Architecture teams, embedding security standard methodologies and secure-by-design principles across the organization.

• Adept at solving ambiguous, high-impact problems, developing innovative solutions, and delivering ground-breaking results in fast-paced environments.

• Prioritizing operational efficiency, having dealt with problems stemming from subpar architecture or misaligned processes.

Get to know us

Zillow is reimagining real estate to make home a reality for more and more people.

As the most-visited real estate website in the United States, Zillow® and its affiliates help movers find and win their home through digital solutions, first class partners, and easier buying, selling, financing and renting experiences. Millions of people visit Zillow Group sites every month to start their home search, and now they can rely on Zillow to help make it easier to move. The work we do helps people get home and no matter what job you're in, you will play a critical role in making home a reality for more and more people.

Our efforts to streamline the real estate transaction are supported by a deep-rooted culture of innovation, our passion to redefine the employee experience, a fundamental commitment to Equity and Belonging, and world-class benefits. These benefits include comprehensive medical, dental, vision, life, and disability coverages as well as parental leave, family benefits, retirement contributions, and paid time off. We’re also setting the standard for work experiences of the future, where our employees are supported in doing their best work and living a flexible, well-balanced life. But don’t just take our word for it. Read recent reviews on Glassdoor and recent recognition from multiple organizations, including: the 100 Best Companies to Work For, Glassdoor Employees’ Choice Award, Bloomberg Gender-Equality Index, Human Rights Campaign (HRC) Corporate Equity Index, and TIME 100 Most Influential Companies list.

Zillow Group is an equal opportunity employer committed to fostering an inclusive, innovative environment with the best employees. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. If you have a disability or special need that requires accommodation, please contact your recruiter directly.

Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable state and local law.

Applicants who receive job offers from Zillow Group will be asked to sign a Proprietary Rights Agreement which includes confidentiality, intellectual property assignment, customer and employee non-solicitation, and non-competition provisions. If you are contacted for a role at Zillow Group and wish to review a copy of the Proprietary Rights Agreement prior to receiving an offer, you may request a copy from your Recruiter.