Principal Security Engineer, Operations
Description For Principal Security Engineer, Operations
CarGurus (NASDAQ: CARG) is revolutionizing the automotive industry by moving the entire car buying journey online. As the largest and fastest-growing automotive marketplace, profitable for over 15 years, we serve tens of millions of consumers and approximately 30,000 dealerships monthly.
The Principal Security Engineer, Operations role is a key technical leadership position within our Information Security team. This role is foundational to our cloud and infrastructure security strategy, focusing on evolving our threat detection, response, and prevention capabilities. The ideal candidate will combine deep experience in both red and blue team methodologies to build resilient detection infrastructure that scales.
Key responsibilities include:
- Designing and implementing scalable detection pipelines across cloud platforms (AWS, Azure, GCP), endpoints, and SaaS platforms
- Maturing our SIEM and centralized logging capabilities with enrichment and high-signal detections
- Developing detection-as-code practices and CI/CD pipelines
- Making architectural decisions for our Cloud Native Application Protection Platform
- Implementing security configurations and cloud-native control enforcement
- Leading incident response as Security Incident Response Team Commander
- Collaborating with AppSec and Cloud Engineering teams
- Contributing to vulnerability management and penetration testing
- Ensuring alignment with industry frameworks (CIS, ISO 27XXX, NIST)
Required qualifications:
- 7+ years in detection engineering or security operations
- Experience with cloud platforms and detection tools (Chronicle, Splunk, Panther)
- Strong red + blue team mindset
- Expertise in cloud control plane monitoring and identity threat detection
- Deep knowledge of adversary TTPs and MITRE ATT&CK framework
- Experience with detection-as-code pipelines
- Strong communication skills for technical and non-technical stakeholders
Benefits include:
- Equity for all employees
- Best-in-class compensation
- Career development programs
- Employee resource groups
- Flexible hybrid work model
- Comprehensive time off policies
- Daily free lunch
- New car discount
- Meditation and fitness apps
- Commuting cost coverage
Join CarGurus to help shape the future of automotive commerce while working with cutting-edge security technologies in a collaborative, people-first culture.
Responsibilities For Principal Security Engineer, Operations
- Design and implement scalable detection pipelines across cloud platforms
- Mature SIEM and centralized logging capabilities
- Develop detection-as-code practices and CI/CD pipelines
- Make architectural decisions for Cloud Native Application Protection Platform
- Implement security configurations and cloud-native control enforcement
- Lead incident response as Security Incident Response Team Commander
- Collaborate with AppSec and Cloud Engineering teams
- Contribute to vulnerability management and penetration testing
- Ensure alignment with industry frameworks (CIS, ISO 27XXX, NIST)
Requirements For Principal Security Engineer, Operations
- 7+ years in detection engineering, security operations, or similar role
- Experience with cloud platforms (AWS, GCP, Azure) and detection tools
- Strong red + blue team mindset
- Expertise in cloud control plane monitoring and identity threat detection
- Deep knowledge of adversary TTPs and MITRE ATT&CK framework
- Experience with detection-as-code pipelines
- Strong communication skills
- History of working on Security Incident Response Teams
Benefits For Principal Security Engineer, Operations
- Equity for all employees
- Best-in-class compensation
- Career development programs
- Employee resource groups
- Flexible hybrid work model
- Comprehensive time off
- Daily free lunch
- New car discount
- Meditation and fitness apps
- Commuting cost coverage
Jobs Related To CarGurus Principal Security Engineer, Operations
