We're hiring a
Principal Security Architect I, Cloud & Infrastructure to own the security architecture of CMT's products, from our mobile SDKs and APIs to the services that power our platform. This is a highly autonomous individual contributor role where you'll set the technical direction for product security and influence engineering teams to deliver secure solutions.
You'll stay hands-on with architecture while shaping security strategy across the organization through technical leadership, collaboration, and sound engineering judgment rather than people management.
You'll also define how we securely build AI-powered products and adopt AI development tools, establishing the guardrails that enable innovation while reducing security risk.
Responsibilities:- Own the end-to-end security architecture for CMT's products, including mobile SDKs, backend services, APIs, data pipelines, and partner integrations
- Define security standards, reference architectures, and engineering guardrails, and drive adoption across teams
- Embed security into the SDLC through threat modeling, secure design reviews, and actionable engineering requirements
- Lead threat modeling and translate findings into prioritized engineering work
- Define application security strategy for testing, secure coding, secrets management, and software supply chain security
- Own security architecture for protecting sensitive driver and location data
- Define security architecture and guardrails for AI/ML features and AI development tools
- Own the AppSec and Product Security roadmap, including technology strategy and prioritization
- Serve as the senior security authority for architecture reviews, risk decisions, and technical guidance
- Support customer and partner security reviews and mentor engineers on secure design
- Complete any additional tasks as they arise
Qualifications:- Bachelor's degree or equivalent years of experience and/or certification in a related field
- 7+ years of experience in security, with deep, hands-on expertise in application and product security architecture
- Proven ability to provide technical leadership and drive security initiatives through influence
- Strong software engineering foundation with experience reviewing code and system architecture
- Deep knowledge of threat modeling, secure SDLC, OWASP, authentication, cryptography, API security, and mobile security
- Experience securing products that process sensitive personal data and support regulatory requirements
- Working knowledge of AI/ML and LLM security, including secure AI adoption
- Excellent written and verbal communication skills
Nice to Haves:- Experience with mobile SDK security, reverse engineering, and anti-tampering
- Familiarity with data-intensive architectures and ML-driven products
- Experience developing AI governance or secure AI adoption programs
- Experience in telematics, IoT, connected vehicles, fintech, or other high-trust industries
- Relevant certifications such as CSSLP, OSCP, or GWEB
Compensation and Benefits:- Fair and competitive salary based on skills and experience, and annual performance bonus
- Equity may be awarded in the form of Restricted Stock Units (RSUs)
- Medical, Dental, Vision and Life Insurance, matching 401k, short-term & long-term disability and parental leave
- Unlimited Paid Time Off including vacation, sick days & public holidays
- Flexible scheduling and work from home policy depending on role and responsibilities
Additional Perks:- Work on a mission with real impact: crashes prevented, injuries avoided, lives protected around the world
- Join an industry leader - 65 million drivers protected, powering 140+ programs across 25 countries
- Be part of the team inventing the future of mobility and road safety
- Move fast, own outcomes, do work that matters
- High ownership, small teams, and direct access to leadership - no layers between your work and its impact
- Unlimited PTO, flexible scheduling, competitive salary, annual performance bonus, RSUs, and full benefits including medical, dental, vision, and 401k match
- Summer Fridays provide team members with half days to recharge
- Join one of our employee resource groups: Black, AAPI, LGBTQIA+, Women, Book Club, and Health & Wellness
- Comprehensive wellness, education, and employee assistance programs