Principal Security Engineer – DevSecOps and Security Architect jobs in United States
cer-icon
Apply on Employer Site
company-logo

PhysicsX · 23 hours ago

Principal Security Engineer – DevSecOps and Security Architect

positionNew York, NY
timeFull-time
remoteHybrid
seniorityLead/Staff
money$200K/yr - $300K/yr
date10+ years exp

PhysicsX is a deep-tech company focused on accelerating hardware innovation through AI-driven simulation software. The Principal Security Engineer will collaborate with engineering teams to implement secure development practices and lead security reviews, ensuring the integration of security into the software lifecycle.

Artificial Intelligence (AI)SemiconductorSoftwareInformation TechnologyAI InfrastructureMachine LearningSimulation
check
H1B Sponsor Likelynote

Responsibilities

Architect and integrate security tooling directly into CI/CD pipelines to automate the detection and prevention of vulnerabilities, ensuring "shift-left" security at scale
Lead threat modeling and secure design reviews for web applications, APIs, and cloud services
Oversee the end-to-end product vulnerability lifecycle, from issue triage, prioritization, remediation support, with clear risk communication
Drive secure coding standards, develop playbooks, and provide hand-on training and mentorship to instill a security-first mindset across the organization
Design and scale secure development practices by collaborating cross-functionally with engineering teams throughout the entire software lifecycle
Engage with customers during security reviews

Qualification

DevSecOpsApplication SecurityThreat ModelingSecure CodingCI/CD IntegrationPythonGoSAST ToolingGitHub/GitLabCommunication

Required

10+ years in security, with a focus on DevSecOps and security design reviews
Hands-on experience with secure coding, OWASP Top 10, threat modeling, and SDLC integration
Experience with GitHub/GitLab, CI/CD, IaC, and containerized environments
Experience deploying and working with SAST tooling (e.g. Semgrep, Snyk)
Experience developing in Python and Go
Track record of balancing pragmatism and security rigor in a fast-paced setting
Strong communication skills

Preferred

Understanding of AI security fundamentals and how application security and AI security intersect
Experience securing cloud infrastructure
Participation in bug bounty programs and managing security disclosure
Familiarity with the BSIMM framework
Experience in cloud security including identity and access management and cloud-native services

Company

PhysicsX

twittertwittertwitter
company-logo
PhysicsX offers an AI-native simulation software stack for engineering and manufacturing across advanced industries.
dateFounded in 2019
location
London, England, GBR
people-size51-200 employees
web-link
https://www.physicsx.ai

H1B Sponsorship

PhysicsX has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (1)

Funding

Current Stage
Growth Stage
Total Funding
$187M
Key Investors
NVenturesAtomicoGeneral Catalyst
2025-11-19Series B· $20M
2025-06-22Series B· $135M
2023-11-27Series A· $32M

Leadership Team

leader-logo
Jacomo Corbo
CEO & Co-Founder
linkedin

Recent News

EU-Startups
London’s PhysicsX nears unicorn status with backing from NVIDIA’s VC Arm and €133 million Series B extension
2025-11-20
Pulse 2.0
PhysicsX: Series B Extended As New Investment From NVentures Pushes Valuation Toward $1 Billion
2025-11-20
Tech Funding News
PhysicsX raises up to $100M from Nvidia to transform aerospace and defence manufacturing with AI — TFN
2025-11-08
Company data provided by crunchbase