Cloud Security Engineer secures AWS and Kubernetes infrastructure using Terraform IaC, conducts threat modeling and audits, embeds security in CI/CD pipelines, and ensures compliance with standards like SOC 2 and HIPAA. Requires 5+ years experience with AWS and Kubernetes security expertise.
200k – 265k/yr
Remote5+ YOESecurity Engineering
About the role
Responsibilities
Design, implement, and manage security solutions and controls for AWS environments and Kubernetes clusters, including appropriate isolation/sandboxing methods for Hex’s RCE-as-a-Service platform.
Build, deploy, and maintain infrastructure-as-code using Terraform, ensuring robust security standards are enforced.
Conduct security assessments, threat modeling, and audits on AWS cloud infrastructure and Kubernetes deployments.
Collaborate with development and operations teams to embed security best practices into CI/CD pipelines.
Monitor and respond to cloud security incidents, identifying root causes and recommending remediation actions.
Provide expertise in compliance requirements related to cloud security (e.g., SOC 2, ISO 27001, GDPR, HIPAA, PCI DSS).
Mentor engineers and advocate for cloud security across the organization.
Requirements
5+ years of experience in cloud security engineering, with extensive expertise in AWS.
Demonstrated proficiency with Kubernetes security including cluster hardening, RBAC, network policies, and container vulnerability management.
Expert-level knowledge and hands-on experience with Terraform.
Second Security Engineer at Nooks.ai, securing an AI-native sales platform and its AI agents. Own threat modeling, secure SDLC, cloud hardening, compliance (SOC 2), and novel AI security challenges (guardrails, prompt injection). Requires 4-5+ years in infosec with strong app/cloud security fundamentals; startup experience preferred.
200k – 315k/yr
Hybrid5+ YOESecurity Engineering
Platform Engineer, Security
DecagonSan Francisco, CA
Lead application security strategy and implementation for Decagon's conversational AI platform. Partner with engineering teams to build security into AI-powered applications and establish testing programs.
200k – 330k/yr
On-site3+ YOESecurity Engineering
Security engineer, detection and response (US)
WriterSan Francisco, CA
Builds and implements detection systems and automated responses for AI-specific threats like prompt injection and model extraction on distributed GPU infrastructure. Leads incident response, proactive threat hunting, and cross-team security coordination with 3-5+ years in security operations.
200k – 240k/yr
Hybrid3+ YOESecurity Engineering
Software Engineer, Trust
NotionSan Francisco, CA +1
Builds authentication, security features, and AI-powered risk detection systems to ensure user trust and safety at scale. Requires 5-8 years experience in trust/safety/security with cross-functional collaboration.
200k – 280k/yr
Hybrid5+ YOESecurity Engineering
Infrastructure Engineer, Security
Thinking Machines LabSan Francisco, CA
Owns and evolves security infrastructure across compute, storage, networking, and data platforms for foundation models. Architects secure patterns, manages identities/secrets, builds threat models, and automates security checks in Kubernetes/cloud environments. Requires strong systems programming and infra experience.