Principal Security Engineer

Crane CompanyStamford, CT
4dRemote
Match Resume

About The Position

About the Role Crane Company is seeking a hands-on Principal Security Engineer to help architect the next generation of our enterprise security capabilities and help transform the security of our technology environments. This is a rare opportunity to influence security at scale by building secure-by-design patterns, modernizing the global security technology stack, and partnering deeply with IT and cybersecurity teams across cloud, network, infrastructure, and application domains. This role is ideal for those who gets energized solutions to complex problems, rationalizing tools, establishing patterns and guardrails, and elevating the security posture across diverse businesses and platforms with an eye on building for the future. If you enjoy creating clarity in complex technical environments, shaping enterprise-wide engineering standards, and delivering high-impact, measurable improvements to security capabilities this is your role. On-site candidates preferred, but remote candidates will also be considered. Core Function As a Principal Security Engineer, you will serve as a technical authority for secure architecture, platform security, and enterprise security engineering. You will drive the design, integration, and evolution of core security capabilities, ensuring scalable, consistent, and effective controls across Crane Company’s global operating environment, and focused on streamlining M&A processes for secured integrations of technology stacks. This role focuses on building, integrating, and optimizing the underlying technologies that secure our cloud platforms, networks, endpoints, and infrastructure. You will evaluate existing controls, rationalize overlapping solutions, and lead the implementation of modern, centralized security capabilities. Your work will directly influence strategic security investments and architectural decisions, and you will have a strong line to the CISO to drive secure design patterns and enterprise security maturity.

Requirements

  • 10+ years in security engineering, secure architecture, or platform security roles.
  • Deep expertise designing, integrating, and securing enterprise-scale systems across cloud, network, identity, and endpoint domains.
  • Proven experience building or modernizing large-scale security capabilities and consolidating complex toolsets.
  • Strong background in security standards, architectural patterns, and modern control frameworks (Zero Trust, CIS, NIST, MITRE ATT&CK).
  • Hands-on engineering experience with automation, scripting, and API integrations (Python, PowerShell, REST APIs).
  • Strong understanding of cloud-native security (Azure, AWS, OCI), hybrid environments, and infrastructure-as-code.
  • Excellent communication skills, able to influence senior technical and business stakeholders.

Nice To Haves

  • Experience driving secure design reviews and threat modeling practices.
  • Expertise with identity services (AAD/Entra, SSO, MFA, PAM, secrets management).
  • Knowledge of modern security service architecture (EDR/XDR, SIEM, SOAR, vulnerability management, Cloud, sec/ops
  • Professional certifications (e.g., CISSP, CCSP, GIAC Cloud, GDSA, GCSA).

Responsibilities

  • Secure Architecture & Engineering (Primary Focus) Design, implement, and evolve secure-by-design architectures for cloud, network, identity, endpoint, and infrastructure platforms.
  • Partner closely with IT and engineering teams to embed security controls, guardrails, and patterns early in solution design.
  • Lead consolidation and rationalization of the security technology stack, identifying redundancies and driving integration and modernization.
  • Define and maintain security reference architectures, secure configuration baselines, and architectural patterns across platforms in current state, through M&A and supporting business growth.
  • Evaluate emerging technologies to strengthen enterprise security capabilities while simplifying and centralizing the environment.
  • Drive enterprise-wide adoption of zero trust principles, identity-centric controls, and strong segmentation practices.
  • Build scalable automation for security services, control enforcement, and platform provisioning.
  • Security Technology Integration & Centralization Integrate disparate tools and telemetry sources into centralized, unified platforms.
  • Streamline data flows across cloud, on-prem, and hybrid environments to support advanced monitoring and analytics.
  • Engineer interoperability between core security capabilities
  • Develop API-driven automation and orchestration to reduce manual effort and ensure consistent enforcement of controls.
  • Lead technical roadmaps for critical security platforms, ensuring alignment across IT and security stakeholders.
  • Collaboration & Leadership Act as a trusted advisor to IT, cloud, network, and infrastructure teams for secure design and control implementation.
  • Provide senior engineering guidance during major digital transformation initiatives, cloud migrations, and infrastructure modernization projects.
  • Partner with security leadership to shape enterprise security strategy and long-term program development.
  • Communicate complex technical concepts to both technical and executive audiences, influencing architectural decisions.
  • Support for Security Operations Provide expert engineering support to improve detection, prevention, and resilience capabilities.
  • Assist in defining technical requirements for detection content, logging, and security telemetry (architecture-level input, not SOC operations).
  • Inform security operations teams of architectural gaps and recommended improvements.

Benefits

  • Beyond an associate’s base compensation, we reward and reinforce wellbeing with a compelling package of both cash and non-cash benefits, including comprehensive health, wellness incentives, assistance with retirement savings, paid time off, paid holidays, and tuition reimbursement — as well as performance-based bonus programs for certain positions.
  • Crane prioritizes career development for our associates.
  • All associates receive an annual development plan that includes a mixture of on-the-job coaching and formal training experiences to support individual development needs.
  • We firmly believe in associate growth that supports career progression and we will proactively support your ongoing career development.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Principal

Education Level

No Education Listed

Job Search Resources

Similar Principal Security Engineer job opportunities

Principal Security Engineer
AVEVA
AVEVA • Lake Forest, CA10d • Hybrid
Principal Security Engineer
Citizens Bank
Citizens Bank • Tallahassee, FL11d
Principal Software Engineer, Security
Coalition, Inc.
Coalition, Inc.3d
Principal Security Engineer Manager
Microsoft
Microsoft • Redmond, WA12d
Information Security Engineer, Principal
Blue Shield of California
Blue Shield of California • Oakland, CA3d • Hybrid
Principal AI Security Engineer
Lumen Technologies
Lumen Technologies2d • Remote
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service