Infrastructure Security Engineer - Remote

Role Overview

Sr. Infrastructure Security Engineer (Remote)

YO IT Consulting is looking for an infrastructure security engineer who designs security foundations to help a fast-moving, AI-native organization move faster safely. The role blends systems engineering, security research, and automation to embed security across cloud infrastructure and the development lifecycle.

Responsibilities

• Architect and evolve security systems across AWS, GCP, and Azure.
• Build automated guardrails and self-healing infrastructure to prevent entire classes of vulnerabilities.
• Design and implement Zero Trust capabilities (identity, access, and policy as code).
• Develop Detection-as-Code pipelines with versioned, tested, and deployable detection logic.
• Explore AI-native approaches for threat modeling, anomaly detection, and incident response.
• Partner with engineering and research teams to embed security into the development lifecycle.
• Communicate security decisions clearly so they are legible, reviewable, and composable.

Requirements

• Deep experience securing distributed, multi-cloud systems (AWS, GCP, Azure).
• Strong programming ability in Python, Go, Rust, or similar, with an automation/system-thinking bias.
• Experience with Infrastructure as Code (e.g., Terraform, Pulumi) and integrating security into CI/CD.
• Solid understanding of identity, least privilege, and Zero Trust architectures.
• Familiarity with modern detection ecosystems (e.g., Sigma, Panther, GuardDuty, SCC) and signal-quality challenges.
• Mindset treating security as an engineering/systems problem rather than compliance.
• Comfortable in a highly asynchronous, writing-heavy, fast-paced environment.

Nice to Have

• Experience securing Kubernetes and containerized workloads at scale.
• Contributions to open-source security tools or security research.
• Experience applying or experimenting with AI/ML in security contexts.
• Strong opinions on how security should evolve in an AI-first world.