Secures large cloud environments (AWS, Azure, GCP), orchestrates and secures compute/GPU clusters, and reviews infrastructure as code like Terraform. Requires expertise in cloud security, Kubernetes, NodeJS/TypeScript, and IaC tools.
238k – 297k
On-siteSecurity Engineering
About the role
Responsibilities
Secure infrastructure across large cloud hosting providers (e.g., AWS, Azure, GCP).
Implement and maintain robust security configurations and policies for cloud environments.
Conduct regular security assessments and audits of infrastructure to identify vulnerabilities and areas for improvement.
Develop and enforce security best practices for infrastructure automation and orchestration.
Collaborate with DeveloperExperience, IT, and product teams to integrate security into all stages of the infrastructure lifecycle.
Review and secure infrastructure as code (e.g., Terraform, CloudFormation).
Educate and mentor team members on infrastructure security best practices and emerging threats.
Requirements
Proven experience as a Security Engineer with a focus on product security.
Proficiency in NodeJS, TypeScript, and Kubernetes.
Experience with orchestrating and securing GPU clusters.
Proficiency in infrastructure as code tools such as Terraform and CloudFormation.
Excellent communication skills, with the ability to clearly explain technical concepts and their implications to both technical and non-technical stakeholders.
Demonstrated ability to influence security strategies and drive improvements within an organization.
Senior Security Engineer focused on building detection systems, incident response automation, and maturing telemetry pipelines across cloud environments. Requires 5+ years in detection engineering or security operations and production-grade coding skills.
Conducts deep investigations into sophisticated threat actors misusing AI models and targeting OpenAI, leveraging OSINT, telemetry, and scripting to identify disruptions. Builds scalable tooling and automations to enhance detection and safety, partnering cross-functionally for impact.
234k – 385k
RemoteSecurity Engineering
Application Security Engineer
RetoolSan Francisco, CA
Application Security Engineer identifies systemic security gaps, builds tooling and automation like custom linters and static analysis, conducts code reviews and threat modeling, and drives vulnerability remediation in a TypeScript/Python codebase. Requires 5+ years hands-on AppSec experience and strong engineering depth.
232k – 318k
On-site5+ YOESecurity Engineering
Technical Abuse Investigator
OpenAISan Francisco, CA +1
Investigates and disrupts malicious use of OpenAI's AI platform using complex datasets and technical tools. Builds scalable solutions like SQL/Python pipelines to enhance team efficiency; requires 5+ years abuse investigation experience and technical projects.
Safeguards Enforcement Analyst focused on account takeover and credential abuse. Investigate compromise incidents, design remediation workflows, partner with engineering on detection, enforce AI usage policies, and develop scalable enforcement programs for platform safety.