Principal Architect, Product Security

At Infoblox, every breakthrough begins with a bold "what if." What if your ideas could ignite global innovation? What if your curiosity could redefine the future?

We invite you to step into the next exciting chapter of your career journey. Bring your creativity, drive, your daring spirit, and feel what it’s like to thrive on a team big enough to make an impact, yet small enough to make a difference. Our cloud‑first networking and security solutions already protect 70% of the Fortune 500, and we’re looking for creative thinkers ready to push that influence even further.

Join us and discover how far your bold "what if" can take the world, your community, and your career.

Here, how we empower our people is extraordinary:
Glassdoor Best Places to Work 2025, Great Place to Work‑Certified in five countries, and Cigna Healthy Workforce honors three years running – and what we build is world‑class: recognized as Cybersec Asia's Best in Critical Infrastructure 2024 – evidence that when first‑class technology meets empowered talent, remarkable careers take shape. So, what if the next big idea, and the next great career story, comes from you?

Become the force that turns every "what if" into "what's next".

In a world where you can be anything, Be Infoblox.

We have an opportunity for a Principal Architect to join our Product Security team in Tacoma, WA, Austin, TX or Atlanta, GA, reporting to Director of Product Security Engineering. In this role, you will play a vital part in ensuring the security and compliance of our products and systems. The Security Architect will work as part of an extended architecture team alongside other cross‑functional teams to identify security gaps, develop robust security controls, and implement industry‑leading practices.

You are the ideal candidate if you are a security thought leader that enjoys identifying gaps and designing corrective measures in collaboration with key stakeholders.

• Serve as the technical security architecture authority, partnering with product architects, principal engineers, cloud partners (AWS, Azure, GCP, OCI), and business leaders to embed secure‑by‑design principles into hardware appliances, multi‑tenant SaaS platforms, and globally distributed cloud infrastructure.
• Architect end‑to‑end security controls and trust boundaries across hybrid infrastructure‑firmware and appliance platforms (TPM, secure boot, supply chain), Kubernetes‑based microservices, APIs, control‑plane services, and multi‑cloud SaaS environments with high availability and resilience.
• Lead the creation and enforcement of security reference architectures and reusable design patterns, covering Zero Trust, confidential computing, data protection, SBOM/SLSA‑based supply chain integrity, workload identity, runtime security (eBPF), and API authn/authz protections.
• Drive and institutionalize architectural threat modeling (STRIDE, PASTA, attack trees, misuse cases) at the feature, platform, and system levels—directly shaping secure designs before code is written.
• Architect secure implementations of DNS, DHCP, IPAM (DDI) and high‑scale network‑centric services, ensuring resilience to poisoning, tunneling, spoofing, DDoS, query amplification, misconfiguration, and protocol misuse.
• Define and integrate security control points throughout CI/CD and platform engineering workflows, using Policy‑as‑Code, IaC scanning, security validation hooks, attestation requirements, and automated enforcement at deployment gates.
• Design, build, and scale security automation and orchestration capabilities using Python/Go, serverless, event‑driven frameworks, OPA/Kyverno, and CI/CD integrations to reduce manual toil and accelerate secure delivery.
• Advise and influence engineering and architecture teams through design reviews, secure coding workshops, architecture governance, shaping long‑term technical roadmaps and product direction.
• Drive adoption of CNAPP, CWPP, WAF, service mesh security, API gateways, SIEM/SOAR, and cloud‑native telemetry for protective monitoring, runtime defense, and incident‑ready detection.
• Translate regulatory and compliance…