Principal Technologist - Product Security

Wind River is a global leader in delivering software for mission‑critical intelligent systems. For more than four decades, the company has been an innovator and pioneer, powering billions of systems that require the highest levels of security, safety, and reliability. Wind River helps customers across automotive, aerospace, defense, industrial, medical, and telecommunications industries solve complex technology challenges on their journey toward the new intelligent machine economy.

The company's software powers generation after generation of the safest, most secure systems in the world. Examples include playing a key role in NASA space missions such as Artemis I, the James Webb Space Telescope, and multiple Mars rovers. We've achieved recent 5G milestones, including the world's first successful 5G data session with Verizon and building one of the largest Open RAN networks in the world with Vodafone.

The company has received industry recognition for its technology innovation and leadership and for its workplace culture, including global Great Place to Work certification and being named a "Top Workplace" for ten consecutive years.

As a Principal Technologist specializing in Product Security for the Wind River Private Cloud Platform, you will serve as the technical authority driving the secure design, architecture, and lifecycle hardening of Wind River's mission‑critical cloud infrastructure solutions. You will guide security strategy across virtualization, orchestration, and distributed edge computing systems—ensuring the platform meets stringent requirements for telco, aerospace, defense, and industrial deployments.

This role bridges advanced cloud engineering, embedded systems knowledge, and modern cybersecurity practices.

• Define and evolve the security architecture for Wind River Private Cloud Platform, including control plane components, hypervisors, networking stacks, and orchestration frameworks.
• Lead threat modeling, security risk assessments, and mitigation strategies across distributed cloud/edge environments.
• Establish platform security requirements, secure design patterns, and architectural standards.

• Drive secure‑by‑default configurations across compute, storage, networking, and platform services.
• Own the security roadmap for the platform, ensuring alignment with industry standards (NIST, CIS, FIPS, FedRAMP, ISO 27001, etc.).
• Oversee vulnerability management, secure boot, runtime integrity measures, API security, and cryptographic services.
• Partner with product, engineering, and QA teams to embed security throughout SDLC (shift‑left security).

• Serve as the top technical expert and advisor for product security across cloud, containerization, virtualization, and real‑time/edge systems.
• Mentor senior engineers and influence engineering directors and executives on cybersecurity tradeoffs and priorities.
• Represent the organization in security reviews, customer briefings, escalations, and cross‑functional technical committees.

• Guide secure deployment patterns and operational security practices for private cloud customers.
• Support incident investigation, root‑cause analysis, and remediation for platform‑level vulnerabilities.
• Define and enforce policies for SBOM, supply chain integrity, CI/CD security, and secure artifact distribution.

• Collaborate with teams across the Wind River Studio ecosystem (edge platform, analytics, Dev Sec Ops  tooling).
• Represent Wind River in standards bodies and industry working groups (ETSI, CNCF, Linux Foundation, etc.).
• Partner with customer engineering teams on secure deployment architectures for telecom and mission‑critical environments.

• 15+ years in cloud/platform engineering, embedded systems, or cybersecurity with deep architectural ownership.
• Expertise in product security, including threat modeling, secure architecture, and vulnerability management.
• Strong knowledge of:
  • Virtualization technologies (KVM, QEMU, etc.)
  • Linux internals, kernel security, containers (Docker), and Kubernetes
  • Cloud networking,…