Every day, tens of millions of people come to Roblox to explore, create, play, learn, and connect with friends in 3D immersive digital experiences– all created by our global community of developers and creators.
At Roblox, we’re building the tools and platform that empower our community to bring any experience that they can imagine to life. Our vision is to reimagine the way people come together, from anywhere in the world, and on any device.** **We’re on a mission to connect a billion people with optimism and civility, and looking for amazing talent to help us get there.
A career at Roblox means you’ll be working to shape the future of human interaction, solving unique technical challenges at scale, and helping to create safer, more civil shared experiences for everyone.
Roblox is seeking a Principal Client Platform Engineer to serve as the technical architect of our global endpoint ecosystem. Reporting to the Client Services Manager, you will define the long-term strategy for how our fleet scales, secures, and evolves. This role goes beyond day-to-day management — you will establish architectural standards, drive automation-first platform design, and ensure thousands of builders have secure, reliable tools to do their best work. From strengthening our security posture in a complex hybrid environment to mentoring senior engineers, you will shape the technical foundation that powers innovation at Roblox.
You Will:
- Standardize the global security and management strategy for our entire fleet of macOS, Windows, Linux, Android, iOS, and ChromeOS devices to ensure peak performance and ironclad compliance.
- Evolve of our deployment pipeline, driving the automated rollout of patches, OS upgrades, and complex certificate lifecycles for all endpoints.
- Lead the hardening of our endpoint security posture, partnering with InfoSec to architect automated remediation workflows and deploying advanced observability tools like CrowdStrike, and Kolide.
- Design and scale internally owned systems within our hybrid environment.
- Lead complex platform initiatives from architecture through global deployment and operational maturity.
- Collaborate with cross-functional stakeholders across Corporate Engineering, Security, Engineering, and People Ops to align technical roadmaps with broader company goals.
- Navigate and resolve high-level ambiguity, transforming vague technical requirements into scalable engineering solutions.
- Serve as a technical escalation point, diagnosing deep-level architectural failures in hardware, software, and enterprise networking.
- Participate in the team’s on-call rotation, providing senior-level response for critical system availability and high-priority security incidents.
You Have:
- 10+ years of experience in endpoint engineering, systems architecture, or infrastructure engineering.
- Proven experience securing and managing global fleets of 5,000+ devices.
- Deep expertise with endpoint management platforms such as Jamf Pro, Workspace ONE, Google Endpoint Management, Fleet, or Microsoft Intune.
- Strong programming ability in Python, Bash, Go, or Ruby with a focus on automation and systems integration.
- Experience implementing Infrastructure-as-Code and GitOps-based configuration management.
- Advanced knowledge of Identity and Access Management and Zero Trust architecture across Okta, Google Workspace, and Entra ID.
- Strong understanding of PKI, certificate lifecycle management, and enterprise networking security.
- Demonstrated ability to lead large technical initiatives and influence cross-functional stakeholders.
You Are:
- A security-focused architect passionate about solving complex endpoint challenges at scale.
- Comfortable working through ambiguity, with the ability to provide technical clarity and direction in a fast-paced, evolving environment.
- Heavily metrics-driven and customer-centric, using data to validate the effectiveness of security controls and improve the Builder experience.
- A collaborative engineer who builds strong relationships with cross-functional partners and mentors junior & senior team members.
For roles that are based at our headquarters in San Mateo, CA: The starting base pay for this position is as shown below. The actual base pay is dependent upon a variety of job-related factors such as professional background, training, work experience, location, business needs and market demand. Therefore, in some circumstances, the actual salary could fall outside of this expected range. This pay range is subject to change and may be modified in the future. All full-time employees are also eligible for equity compensation and for benefits as described on this page.
Annual Salary Range
$230,980—$267,390 USD
Roles that are based in an office are onsite Tuesday, Wednesday, and Thursday, with optional presence on Monday and Friday (unless otherwise noted).
Roblox provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. Roblox also provides reasonable accommodations to candidates with qualifying disabilities or religious beliefs during the recruiting process.
For US based roles only, please note the Company may not be able to employ candidates for this role who have United States work authorization related to certain U.S. visa categories, or support future H-1B sponsorship at this time.