Principal Platform Security Architect (Edge Systems, Cloud & Container Infrastructure)

Posting Open Date: November 5, 2025Anticipated Posting Close Date*: December 5, 2025• Job posting may close early due to the volume of applicants. Principal Platform Security Architect (Edge Systems, Cloud & Container Infrastructure)As a Principal Platform Security Architect at Fastly you will help ensure we provide a secure edge for one of the biggest online platforms in the world, handling extensive amounts of traffic at very low latency. Fastly's Security Architecture Team fosters security throughout all areas of Fastly's applications and infrastructure.Fastly believes that security is everyone's responsibility and you will be empowering all of Fastly to live up to that responsibility. Qualified candidates will excel at analyzing the design of our core networks, systems, and cloud infrastructure to identify complex threat scenarios, and influence prioritization of mitigations. This is a role which has a high impact on human lives. You will be supported by a friendly security team, where you can learn and develop. We check our egos at the door. You'll make sure our customers benefit from a service built to the highest security standards in the industry.We pride ourselves in our involvement in the larger security community and encourage our team to present at network and security conferences and participate in the open source community. We are a distributed security team with the commitment and tools in place to make it work. What You'll Do:• Shape Fastly's overall security strategy, leveraging the security team's collective expertise to define capabilities that reduce organizational risk and enhance resilience against cyber-attacks. • Conduct architecture and design reviews as part of Fastly's threat modeling processes, working closely with engineering teams to embed secure-by-design principles into production systems and new features.• Lead the security design and oversight of Fastly's cloud infrastructure, container platforms, core networking, and low-level systems, ensuring controls effectively mitigate identified threats, maintain operational integrity over time, generate alerts on failures, and automatically remediate when appropriate. • Investigate and assess new threats and attack vectors, collaborating with system owners to implement detection mechanisms, mitigation strategies, and remediation workflows. • Become a subject-matter expert in Fastly's technology stack, proactively identifying and addressing gaps in security posture based on emerging threats and trends.Partner with platform engineering teams to enhance build integrity, secure the software supply chain, and verify deployment provenance across systems. What We're Looking For:• 10+ years of relevant experience and a Bachelor's degree in Computer Science or equivalent. • Proven leadership in security strategy, including influencing organizational direction, mentoring engineers on secure design principles, and embedding a security-first mindset across teams. • Extensive experience performing threat modeling and secure design reviews, translating identified risks into actionable security controls for both new and existing systems.• Experience designing and reviewing secure architectures for distributed, high-performance systems, ensuring resiliency, scalability, and adherence to security best practices. • Deep expertise across the full information security stack, with hands-on experience in security engineering or security research for large-scale production systems. • Proven ability to implement and manage cloud governance controls, such as AWS Service Control Policies (SCPs), IAM roles and permission boundaries, and GCP organization policies and constraints to meet security and compliance objectives.• Track record securing Kubernetes environments, including hardening multiple CNIs, integrating cloud-native runtime security tooling, and implementing container image scanning and compliance workflows. • Proven expertise in cloud and infrastructure security, including Kubernetes, Terraform Enterprise/Sentinel, Open Policy Agent (OPA), AWS, GCP, BGP, Anycast, and Secure Boot. • Advanced Linux administration experience at scale, including knowledge of intrusion and manipulation techniques, system hardening, process isolation, and security best practices.• Excellent communication and collaboration skills, capable of engaging with both technical teams and non-technical stakeholders to articulate risks, trade-offs, and security recommendations. Work Hours:• This position will require you to be available during core business hours. Work Location(s) & Travel Requirements:This position is open to the following preferred office locations:• New York, NY• San Francisco, CA• Denver, COFastly currently embraces a largely hybrid model for most roles which allows employees flexibility to split their time between the office and home.This position may require travel as required by your role or requested by your manager. SF / LA Fair Chance Ordinance StatementPursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Salary:The estimated salary range for this position is $228,280 to $273,936. Starting salary may vary based on permissible, non-discriminatory factors such as experience, skills, qualifications, and location.This role may be eligible to participate in Fastly's equity and discretionary bonus programs. Benefits:We care about you. Fastly works hard to create a positive environment for our employees, and we think your life outside of work is important too. We support our teams with great benefits that start on the first day of your employment with Fastly. Curious about our offerings? We offer a comprehensive benefits package including medical, dental, and vision insurance. Family planning, mental health support along with Employee Assistance Program, Insurance (Life, Disability, and Accident), a Flexible Vacation policy and up to 18 days of accrued paid sick leave are there to help support our employees.We also offer 401(k) (including company match) and an Employee Stock Purchase Program. For 2025, we offer 11 paid local holidays, 11 paid company wellness days. Apply tot his job