Principal Security Architect - Remote USA or Canada - EST or CST

Sprinklr is a leading enterprise software company for all customer-facing functions. With advanced AI, Sprinklr's unified customer experience management (Unified-CXM) platform helps companies deliver human experiences to every customer, every time, across any modern channel. Headquartered in New York City with employees around the world, Sprinklr works with more than 1,000 of the world’s most valuable enterprises — global brands like Microsoft, P&G, Samsung and more than 50% of the Fortune 100.

Learn more about our culture and how we make our employees happier through The Sprinklr Way.

Job Description
 

Location: Remote United States - EST or CST

About the Role: Join Sprinklr's diverse security team, spread across geographical regions, as we tackle interesting security challenges. Our team thrives to optimize and streamline security practices across the entire Sprinklr suite of products and infrastructure within a dynamic cultural environment.

Reporting to the VP of Product Security, you will play a crucial role in shaping Sprinklr’s security architecture and strategy. Your responsibilities will include assessing security risks, leading architectural changes, and influencing the company-wide product security program and roadmap. 

Key Responsibilities: 

• Proactively assess security risks through product deep dives, threat modeling, and design reviews. 

• Lead initiatives to mitigate significant platform security issues with wide-reaching impact.  

• Define baseline security standards for applications and public clouds. 

• Collaborate with engineering teams on post-incident activities and roadmap creation. 

• Identify and promote common security design patterns. 

• Drive Sprinklr’s Secure Software Development Lifecycle and onboard product teams. 

• Identify opportunities for security tooling and automation. 

• Work independently with developers, cloud engineers, product owners, and other colleagues to understand product architecture and provide security requirements. 

• Effectively drive projects to closure, even when working with development teams that may have competing priorities. 

• Collaborate closely with Security, Legal, Privacy, and R&D/Engineering teams on security fixes and enhancements. 

• Handle urgent or reactive security situations. 

• Stay informed on external vulnerabilities and security trends. 

Skills & Qualifications: 

• 10+ years in product or application security. 

• Expertise in large-scale, distributed SaaS applications.  

• Proficiency in threat modeling, secure design reviews, and project management. 

• Deep understanding of security controls for modern architectures, including API security, containerization and at least one CSPs (AWS, Azure, or GCP), with optional expertise in Kubernetes. 

• Knowledge of IAM concepts, Single Sign-On (OAUTH, SAML), secrets management, and microservices architecture. 

• Experience in network segmentation, VPNs, source code review. 

• Ability to rationalize security risk and articulate business risk to stakeholders. 

• Influencing engineering …