Lead Principal SaaS Operations Engineer

Lead Principal SaaS Operations Engineer

RSA provides trusted identity and access management for 12,000 organizations around the world, managing 25 million enterprise identities and providing secure, convenient access to millions of users. RSA specializes in empowering security-first organizations in financial services, healthcare, energy, technology services, and other industries to thrive in a digital world, delivering complete capabilities for modern authentication, access, lifecycle management, and identity governance. Whether in the cloud or on-premises, RSA connects people with the digital resources they depend on everywhere they live, work, and play.

For decades, RSA has pioneered many of the encryption, authentication, and identity federation technologies that still power the internet. And now RSA is transforming the industry yet again, paving the way for the future of digital identity through the RSA Unified Identity Platform; next-generation hybrid and cloud solutions; the first ever and only multi-functional, passwordless hardware authenticator; and a frictionless, mobile-optimized experience for the modern workforce. If you are self-motivated and looking for a fast-paced challenge doing something that truly matters, come join our winning team! For more information, go to rsa.com.

RSA is seeking a Principal SaaS Operations Engineer to serve as a technical leader and hands-on expert within the Global SaaS Operations organization supporting the RSA ID Plus and SecurID Cloud Platforms.

This role bridges operations engineering and DevOps practices, driving architecture, automation, and reliability initiatives across RSA’s cloud environments. The ideal candidate combines deep cloud expertise with strong execution and leadership in cross-functional projects, mentoring other engineers, and improving operational maturity at scale.

Principal Responsibilities:

• Act as the technical lead across SaaS Operations initiatives — mentoring team members, setting technical direction, and leading incident response and recovery efforts.

• Design, automate, and optimize cloud operations in Azure and AWS environments with emphasis on scalability, reliability, and security.

• Partner with DevOps and Cloud Engineering to implement CI/CD pipelines, IAC frameworks (Terraform, Ansible, Jenkins), and automated configuration management.

• Develop and maintain monitoring, alerting, and observability across distributed systems using Azure Monitor, Dynatrace, and Prometheus/Grafana stacks.

• Lead root cause analysis (RCA) and continuous improvement processes following incidents, ensuring lessons learned translate into durable engineering improvements.

• Architect and enforce secure operational practices, including key management, access controls, and change management workflows.

• Support multi-cloud networking: routing, firewalls, load balancers, VPNs, DNS, and proxies.

• Drive automation for backup, DR, and compliance validation, aligning with FedRAMP, SOC 2, and DISA STIG frameworks.

• Collaborate with Engineering and Product teams to operationalize new services and define production readiness standards.

• Participate in on-call rotation and act as escalation point for critical incidents.

Required Qualifications:

• 10+ years in SaaS Operations, Site Reliability Engineering, or DevOps within large-scale production environments.
• Experience operating in FedRAMP, DoD IL, or regulated cloud environments.

• Extensive Linux/UNIX administration experience (SUSE, RHEL, Ubuntu) with practical scripting in Python, Bash, or PowerShell.

• Expertise with Azure (preferred) and AWS cloud ecosystems — including virtual networking, IaaS/PaaS services, monitoring, and automation.

• Proven ability to build and maintain CI/CD pipelines using Jenkins, GitHub Actions, or Azure DevOps.

• Hands-on experience with infrastructure-as-code and configuration management (Terraform, Ansible, Puppet, or Chef).

• Strong knowledge of networking fundamentals and security best practices.

• Proficiency in monitoring and logging systems (Dynatrace, ELK stack, CloudWatch, Azure Monitor, PagerDuty, etc.).

• Solid understanding of high availability and DR architectures.

• U.S. Citizenship required (due to FedRAMP and DoD compliance work).

Preferred Skills:

• Familiarity with identity, authentication, and federation technologies (SAML, OIDC, OAuth).

• Experience with database operations (PostgreSQL, MSSQL, Redis).

• Working knowledge of Kubernetes, containers, and serverless frameworks.

• Understanding of FinOps principles for cost optimization and accountability in cloud operations.

• Excellent written and verbal communication skills, capable of interfacing with engineering, compliance, and leadership audiences.

Soft Skills:

• Demonstrated technical leadership without formal authority — mentoring, guiding, and elevating peers.

• Analytical and detail-oriented with strong problem-solving capabilities.

• Calm and decisive under pressure; experienced in mission-critical environments.

• Passion for automation, innovation, and continuous improvement.

RSA is committed to the principle of equal employment opportunity for all employees and applicants for employment and to providing employees with a work environment free of discrimination and harassment. All employment decisions at RSA are based on business needs, job requirements and individual qualifications, without regard to race, color, religion, national origin, sex (including pregnancy), age, disability, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, protected veteran status, genetic information, or any other characteristic protected by federal, state or local laws. RSA will not tolerate discrimination or harassment based on any of these characteristics. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. All RSA employees are expected to support this policy and contribute to an environment of equal opportunity.

If you need a reasonable accommodation during the application process, please contact rsa.global.talent.acquisition@rsa.com. All employees must be legally authorized to work in the US. RSA and its approved consultants will never ask you for a fee to process or consider your application for a career with RSA. RSA reserves the right to amend or withdraw any job posting at any time, including prior to the advertised closing date.

Base Pay Range: 150k - 240k

Full-time, non-Sales US employees are also eligible for annual discretionary bonuses that are funded based on prior year company performance. RSA Sales team members are eligible to participate in company commission plans.

In addition, RSA offers its eligible US employees a comprehensive array of benefit programs including flexible paid-time-off, health, disability, and life insurance, and a 401(k) retirement plan with company matching contributions.