Infrastructure Security Engineer - Remote

Role Overview

Senior Infrastructure Security Engineer (Remote)

Design and evolve security foundations for a fast-moving, AI-native organization—enabling the team to move faster safely by building secure systems, automation, and detection capabilities.

Responsibilities

• Architect security systems across AWS, GCP, and Azure that scale with rapid product iteration.
• Build automated guardrails and self-healing infrastructure to reduce whole classes of vulnerabilities.
• Implement Zero Trust from first principles: identity, access, and policy as code.
• Develop Detection-as-Code pipelines, treating detection logic like production software (versioned, tested, deployable).
• Explore AI-native approaches for threat modeling, anomaly detection, and incident response.
• Partner with engineering and research teams to embed security into the development lifecycle.
• Communicate security decisions so they are legible, reviewable, and composable.
• Continuously evolve security posture as threats and paradigms change.

Requirements

• Deep experience securing distributed, multi-cloud systems across AWS, GCP, Azure.
• Strong programming ability (Python, Go, Rust, or similar) with an automation and systems-thinking bias.
• Experience with Infrastructure as Code (Terraform, Pulumi) and integrating security into CI/CD.
• Strong understanding of identity, least privilege, and Zero Trust architectures.
• Familiarity with modern detection ecosystems (e.g., Sigma, Panther, GuardDuty, SCC) and signal quality challenges.
• Security mindset focused on engineering and systems (not compliance).
• Comfortable with a highly asynchronous, writing-heavy fast-paced environment.

Nice to Have

• Experience securing Kubernetes and containerized workloads at scale.
• Open-source security tool or research contributions.
• Experience applying or experimenting with AI/ML in security contexts.
• Strong opinions on how security should evolve in an AI-first world.