Security Engineer (Infrastructure)

Role Overview

Coder is hiring a Security Engineer (Infrastructure) to secure cloud infrastructure, CI/CD, and platform workflows. You’ll partner closely with Platform Engineering to reduce risk, improve developer workflows, and ensure infrastructure is secure by default.

Responsibilities

• Design and implement scalable security guardrails for multi-cloud infrastructure across AWS and GCP.
• Harden CI/CD pipelines to improve software supply chain security.
• Automate security and compliance tasks and triage/review findings from cloud and infrastructure security tools.
• Collaborate with engineering teams to prioritize risk, resolve security findings, and improve controls over time.
• Promote an everything-as-code approach (including policy/controls as code and secure-by-default patterns).

Requirements

• 3+ years of professional experience in infrastructure security, cloud security, platform security, or a similar role.
• Familiarity with modern cloud security tooling, including CNAPP and CSPM.
• Strong infrastructure-as-code and automation mindset, including experience with Terraform and/or policy-as-code / configuration-as-code.
• CI/CD security experience with GitHub Actions, GitLab CI, or similar systems.
• Hands-on cloud security experience with AWS and/or GCP (preferred: AWS/GCP).
• Working knowledge of compliance frameworks such as SOC 2 or ISO 27001.
• Clear communication and a practical approach to risk reduction.

Nice to Have

• Hands-on experience securing containerized workloads with Docker and/or Kubernetes.
• Experience applying AI tools to improve security workflows, automation, or analysis.