Security Engineer

Posted 5 months agoViewed

View full description

💎 Seniority level: Senior, 5+ years

📍 Location: USA

💸 Salary: 152000 - 175000 USD per year

🔍 Industry: AI and cloud computing

🏢 Company: RunPod, Inc.

⏳ Experience: 5+ years

🪄 Skills: DockerPythonSoftware DevelopmentCloud ComputingCybersecurityKubernetesGoCollaborationProblem SolvingLinux

Requirements:

Bachelor's degree in Computer Science, Cybersecurity, or a related field.
5+ years of experience in information security roles, with a focus on cloud security.
Strong programming skills in at least one language (ideally, Python, Go, or C).
Extensive knowledge of Linux kernel internals, containerization technologies, and virtualization.
Deep understanding of workload/network isolation techniques in multitenant cloud environments.
Experience securing and hardening cloud infrastructure, particularly in environments with untrusted workloads.
Familiarity with GPU architecture and security considerations in GPU cloud computing.
Strong background in network security, application security, and cloud-native security practices.
Experience with security testing tools and methodologies (e.g., OWASP, Burp Suite, static/dynamic analysis tools).
Familiarity with common cybersecurity frameworks (e.g., NIST, CIS Controls) and their application to cloud environments.
Excellent problem-solving skills and ability to think creatively about security challenges in cloud computing.
Successful completion of a background check.

Responsibilities:

Design and implement secure architectures for RunPod's multitenant GPU cloud platform, ensuring strong isolation between customer workloads.
Conduct thorough security assessments, including threat modeling, code reviews, and penetration testing of our cloud infrastructure and services.
Develop and implement security fixes and improvements in collaboration with software engineering teams.
Implement and manage security tools and systems (e.g., SIEM, WAF, EDR).
Create and maintain security documentation, including policies, procedures, and technical guidelines specific to GPU cloud security.
Provide security guidance and training to development teams to foster a security-first culture in cloud development.
Participate in incident response activities and contribute to post-incident analysis and improvements.
Collaborate with operations team to ensure adherence to relevant standards (e.g., SOC 2, ISO 27001, GDPR).

Apply

Related Jobs

Apply

🔥 Senior Product Security Engineer

Posted about 5 hours ago

📍 United States of America

🧭 Full-Time

💸 131420.0 - 216870.0 USD per year

🔍 Software Development

🔧 Requirements

Experienced knowledge and understanding of Linux Operating System
Proficiency in common programming languages like C/C++, Python, Java, Go
Familiarity with Source Code Management tools like Git
Strong understanding of security vulnerabilities including the confidentiality, integrity, and availability triad
Significant experience in security technologies and methodologies like authentication and authorization, encryption, and risk assessments
Ability to work on your own in a fast-paced environment with a multicultural team distributed across multiple countries and time zones
Outstanding written and verbal communication skills in English

💡 Responsibilities

Respond to security vulnerabilities, weaknesses and incidents, within the Red Hat portfolio of Products and Services.
Contribute to customer facing security documentation, reference, and other data as used by the Common Vulnerabilities and Exposures (CVE) pages.
Research the impact of new flaws affecting Red Hat's offerings and communicate risk to stakeholders with different technical understanding, like senior leadership, engineers, architects, etc.
Coordinate with key stakeholders internally and externally, as appropriate, ensuring an effective management of the vulnerabilities and the security incidents
Provide technical leadership, mentor junior engineers, and drive collaboration to deliver high-impact solutions while fostering a culture of innovation and excellence.
Contribute in the industry coordination working groups to shape the industry wide vulnerability disclosure and coordination standards as well as to adopt and implement those standards within the organization

DockerPythonCybersecurityGitJavaKubernetesGoRESTful APIsLinuxRisk Management

Posted about 5 hours ago

Apply

🔥 Cloud Security Engineer (Contract)

Posted about 24 hours ago

📍 United States

🧭 Contract

💸 100.0 - 125.0 USD per hour

🔍 EdTech

🏢 Company: Magpie Literacy

🔧 Requirements

Strong experience with AWS cloud infrastructure
Experience with Terraform
Understanding of modern cloud security practices and threat modeling
Familiarity with CI/CD security

💡 Responsibilities

Respond to vulnerabilities across our platform and support CI security efforts
Collaborate with engineers to ensure remediation efforts are properly tracked and executed
Drive improvements in our detection and alerting capabilities
Help implement Compliance as Code strategies to automate and prove security best practices
Support ongoing audit efforts by helping us track and document routes, access, and activities across the platform
Coordinate with engineers to perform scans and remediations
Implement comprehensive logging and audit trails (access logs, system logs, application logs, etc.)

AWSBashCloud ComputingCybersecurityCI/CDTerraformCompliance

Posted about 24 hours ago

Apply

🔥 Senior Security Engineer

Posted 1 day ago

📍 United States

🏢 Company: ActivTrak👥 101-250💰 $50,000,000 Series B over 4 years agoInformation Services Business Intelligence SaaS Information Technology Software

🔧 Requirements

5+ years experience in information security, with hands-on experience in security operations and compliance frameworks such as SOC2.
Experience implementing and maintaining security tools and controls, including SDLC and GRC tools.
Strong knowledge of security best practices and technologies, including access control, intrusion detection, and incident response.
Experience with cloud security, specifically in Google Cloud Platform (GCP).
Strong communication skills with the ability to explain complex security concepts to various stakeholders.
Hands-on experience with security monitoring tools, vulnerability scanning, and security testing.
Understanding of common security frameworks and ability to map controls to compliance requirements.
Experience with automation and scripting for security operations.

💡 Responsibilities

Execute our comprehensive security program, including implementing policies, procedures, and guidelines that align with industry standards and best practices.
Work with cross-functional teams to implement security measures that align with business objectives.
Deploy, maintain, and monitor security technologies, tools, and systems to enhance the organization's security posture.
Support the sales engineers by providing technical expertise on security requirements for potential and existing customers.
Assist in customer-facing sales calls to address specific technical security concerns.
Help develop security presentations and training materials to support internal and customer security objectives.
Conduct daily monitoring, triage, and escalation of security alerts from various security systems.
Validate and document submissions from our Responsible Disclosure program.
Maintain situational awareness of emerging vulnerabilities for our technology stack and escalate as needed.
Conduct scheduled and on-demand security assessments to identify and evaluate potential security risks and assist in developing mitigation plans.
Implement product security features and capabilities in collaboration with the product development team.
Perform scheduled and on-demand vulnerability scanning and penetration testing against networks and applications.
Investigate, triage, and respond to security incidents, ensuring proper documentation and escalation.

Cloud ComputingCybersecurityGCPCI/CDLinuxDevOpsComplianceRisk ManagementScripting

Posted 1 day ago

Apply

🔥 Senior Security Engineer, Infrastructure Security

Posted 1 day ago

📍 Canada, United States

🧭 Full-Time

💸 156000.0 - 210000.0 USD per year

🔍 Security

🔧 Requirements

Minimum of 6 years combined experience as a software, infrastructure, and/or security engineer.
Demonstrated success at designing, implementing, deploying, securing, and monitoring highly-available, critical production systems with broad company impact.
Hands-on experience with a variety of technologies and approaches in both the cloud infrastructure and security spaces; e.g. service identity, workload hardening, networking, authentication and authorization, software supply chain, etc.
Expertise with AWS Service Control Policies and permission boundaries.
Experience with software development (Golang preferred).

💡 Responsibilities

Design, build, and maintain tooling, software, and systems for securing our cloud infrastructure.
Own the delivery and success of infrastructure security projects that span engineering teams.
Work with cross-functional partners to define the best security solutions for our infrastructure and reduce unnecessary friction, while maintaining a high degree of software development velocity.
Provide technical leadership and mentorship to fellow engineers on the team.

AWSSoftware DevelopmentAWS EKSCloud ComputingCybersecurityKubernetesGoCI/CDRESTful APIsLinuxDevOpsTerraformNetworkingScriptingSoftware Engineering

Posted 1 day ago

Apply

🔥 Sr. Infrastructure Security Engineer (Remote)

Posted 3 days ago

📍 United States

🧭 Full-Time

🏢 Company: Rula👥 251-500💰 Series C 9 months agoPersonal Health Mental Health Addiction Treatment Health Insurance Wellness Health Care Home Health Care

🔧 Requirements

4+ years of experience as an infrastructure security or cloud security engineer
3+ years of AWS engineering experience (security or non-security role)
Experience using an AWS SDK for Python, Javascript, or Go
Experience using Infrastructure-as-Code tools, such as Terraform or CloudFormation

💡 Responsibilities

NOT STATED

AWSPythonAWS EKSCloud ComputingCybersecurityKubernetesTerraform

Posted 3 days ago

Apply

🔥 Senior Security Engineer (SecOps)

Posted 7 days ago

📍 United States

💸 145000.0 - 160000.0 USD per year

🔍 Software Development

🏢 Company: Harness

🔧 Requirements

At least 7 years of relevant industry experience in roles such as systems engineer, security engineer, cloud security specialist, or site reliability engineer.
Expert-level professional knowledge in enterprise applications and infrastructure.
Extensive experience working in a cloud-native environment, with proficiency in platforms like AWS, GCP, and Azure.
Familiarity with industry regulations and compliance certifications, including ISO 27001, SOC 2, FedRAMP, and SOX.
A desire to contribute to a high-growth environment and take a leading role in building new programs from the ground up.
Strong attention to detail and a willingness to ask questions when uncertain.
Comfort with ambiguity, with a proactive approach to bringing clarity in uncertain situations.

💡 Responsibilities

Take a leading role in the design of the next level of secure operations for Harness' cloud and business infrastructure
Take charge of implementing and overseeing security tooling, encompassing the detection and alerting systems for identifying malicious activity and insecure configurations
Utilize automation to effectively manage and enhance the security posture of Harness' multi-cloud Kubernetes-based infrastructure
Use Harness CI/CD to integrate security processes like vulnerability management into the SDLC
Contribute to the development, review, and implementation of technical security and compliance-related engineering requirements across global Engineering teams
Detect, respond, and mitigate security related events and incidents.
Collaborate with fellow Developers and Product Managers to analyze and implement security standards, methods, and architectures

AWSCloud ComputingCybersecurityGCPKubernetesAzureCI/CDRESTful APIsLinuxDevOpsTerraformComplianceAnsibleScripting

Posted 7 days ago

Apply

🔥 Application Security Engineer

Posted 8 days ago

📍 AMER, EMEA, APAC

🧭 Full-Time

🔍 Security

🏢 Company: asymmetric.re

🔧 Requirements

Familiarity and practical experience with Application Security Testing (AST) tools.
Proven experience as a consultant, engineer, or auditor, ideally working on/with web applications.
Prior experience working with open source development practices.
Willingness and aptitude to work with and write in multiple languages, mainly Go, Rust, Python, and JavaScript.
Experience with reverse engineering and/or fuzzing.
Experience with code reviews.

💡 Responsibilities

Design and implement security and defense-in-depth controls to prevent and limit vulnerabilities.
Develop security tooling and developer workflows to aid in the early detection of vulnerabilities.
Collaborate with core contributors to conduct internal security audits of off-chain infrastructure.
Harden CI/CD pipelines and constrain the attack surface of off-chain components.
Collaborate with core contributors to reduce supply-chain risk.
Triage and respond to potential security incidents across all parts of the stack.
Work in a diverse decentralized team environment with web3 professionals.
Clearly communicate security risks and solutions.
Adhere to the highest standards of integrity, trust, and professionalism.

DockerPythonBlockchainCybersecurityJavascriptGoRustWeb3.jsCI/CDRESTful APIsLinuxDevOps

Posted 8 days ago

Apply

🔥 Application Security Engineer

Posted 8 days ago

📍 United States

🧭 Full-Time

💸 159800.0 - 235000.0 USD per year

🔍 Software Development

🏢 Company: DoorDash USA

🔧 Requirements

5+ years of experience as an application engineer or an information security discipline.
Deep understanding of each OWASP top 10 vulnerability, microservices security and design.
Well versed with scripting languages (e.g., python) and other programming languages (e.g., java).
Experience with implementing and managing CI/CD pipeline security
Experience in payments security or in financial technology
Experience solving complex, systemic issues that require creative thinking and solutions.
Excellent verbal and written communication skills - you can explain security design with respect to cloud infrastructure to security and engineering personnel.

💡 Responsibilities

Work directly with engineering and security leaders to enact security strategies for DoorDash’s financial applications.
Be hands-on and perform manual and automated code reviews to identify vulnerabilities in APIs, microservices and mobile apps (Android and iOS).
Conduct regular application security assessments.
Define, document and implement security standards, guidelines and procedures for secure operations.
As part of architectural and design review committees, provide actionable feedback in engineering design reviews.
Manage the lifecycle of application vulnerabilities, from identification to remediation and reporting and metrics.
Integrate and manage security tools into the CI/CD process.
Ensure applications running within the cloud environment honor the requirements of information security policy and standards for segmentation and configuration.
Develop and implement secure network and process controls for Kubernetes environments.
Develop tools and automated tests for improving our Security efficiency.

AWSPythonCloud ComputingJavaKotlinKubernetesAPI testingMobile testingREST APICI/CDMicroservicesScripting

Posted 8 days ago

Apply

🔥 Senior Security Engineer

Posted 9 days ago

📍 United States

🧭 Full-Time

🔍 Payments, Healthcare

🏢 Company: Truemed👥 1-10💰 $3,500,000 Seed over 1 year agoPayments Wellness Health Care

🔧 Requirements

5+ years of experience in security engineering, compliance, or security operations
Hands-on experience with SOC2 Type II audits
Strong background in vulnerability management, endpoint security, and secure software development practices
Familiarity with MDMs, antivirus tools, SIEMs, and web security best practices
Experience working with GRC teams and responding to enterprise security questionnaires

💡 Responsibilities

Lead SOC2 Type II Compliance
Governance, Risk, and Compliance (GRC)
Security Tooling & Implementation
Incident Response & Risk Mitigation
Cross-Team Collaboration

CybersecurityComplianceRisk Management

Posted 9 days ago

Apply

🔥 Cloud Security Engineer

Posted 9 days ago

📍 United States

🏢 Company: Jahnel Group👥 101-250 Product Design Information Technology Software

🔧 Requirements

8+ years of experience in log security, threat detection, and cloud security.
Strong expertise in Google Cloud Platform (GCP), including Cloud Logging, Cloud Security Command Center (SCC), IAM, and VPC.
Hands-on experience with Google BigQuery for security log analysis and threat intelligence.
Proficiency in SQL, Python, or Go for log analysis and automation.
Experience with SIEM solutions such as Chronicle, Splunk, or Elastic Stack.
Knowledge of security frameworks (NIST, ISO 27001, SOC 2, PCI DSS, GDPR, etc.).
Experience with automating security workflows using Terraform, Cloud Functions, and APIs.
Familiarity with threat intelligence, behavioral analytics, and anomaly detection.
Strong analytical and problem-solving skills with a security-first mindset.

💡 Responsibilities

Leverage SecOps data ingestion pipelines to receive, process, and structure security data within BigQuery.
Configure and fine-tune BigQuery for efficient query performance and data ingestion.
Develop and present end-to-end security analytics use cases using ingested data.
Connect user dashboards to BigQuery as needed for enhanced operational observability.
Provide knowledge transfer sessions to stakeholders and conduct a live demo.

PythonSQLCloud ComputingCybersecurityGCPTerraform

Posted 9 days ago

Apply