Senior Principal Security Architect at CarGurus

This role is designed for a heavyweight security leader with over 12 years of experience who prefers building "paved roads" over just finding bugs. You are likely a former high-level software engineer who transitioned into security, possessing the coding chops to write production-grade Go, Java, or Python libraries. Ideal candidates have deep expertise in cloud-native environments (AWS/GCP) and have successfully implemented zero-trust architectures within complex microservices ecosystems. The compensation is highly competitive, starting at $206k+ plus equity and discretionary bonuses. CarGurus offers a premium hybrid experience in Boston featuring daily free lunches, commuting coverage, and a "people-first" culture that has maintained profitability for 15 years. This is a high-visibility, "force multiplier" position where you will act as a technical peer to the CTO and Heads of Engineering. **You might be a good fit if you:** * Want to architect security at the root level rather than managing a list of vulnerabilities. * Have mastered OAuth2, OIDC, and cryptographic primitives like mTLS and AES-GCM. * Enjoy mentoring senior engineers and acting as the ultimate technical escalation point. * Believe in "secure-by-default" and have experience building shared AuthN/AuthZ libraries.