Skip to content
Topaz LabsTopaz LabsDallas, TX

Staff Security Engineer

Owns security for hybrid infrastructure including AWS cloud, on-premise GPU clusters, and corporate endpoints. Conducts penetration testing, secures AI models, and manages identity/tools like Jamf and Active Directory. Requires 7+ years hands-on security experience.

Salary not listed
On-site7+ YOESecurity Engineering

About the role

Responsibilities

  • Secure hybrid infrastructure (AWS & colo): configure firewalls, manage physical network security, harden Linux GPU clusters.
  • Manage corporate & endpoint security: oversee macOS fleet with Jamf, identity management via Active Directory.
  • Conduct hands-on penetration testing on internal networks, office infrastructure, and AI applications.
  • Secure AI supply chain: protect model weights during training, storage, and delivery.

Requirements

  • 7+ years in security engineering (infrastructure, corporate IT, offensive security).
  • Deep experience with AWS security (IAM, VPC), compliance (SOC II, Vanta).
  • Expert in Jamf for macOS and Active Directory for identity.
  • Physical & network security: firewalls, VPNs, switching in offices/colos.
  • Manual penetration testing (network, web app).
  • Proficiency in Python/Bash scripting.

Nice-to-Haves

  • Experience securing on-device software/desktop apps (Windows/macOS).

Skills

AWSIAMVpcJamfActive DirectoryLinuxFirewallsVpnsPenetration TestingPythonBashSoc IiVantaNetwork SecurityGpu Clusters
Reltio

Staff Application Security Engineer

ReltioUnited States

Staff Application Security Engineer defining and driving secure architecture, SDLC, threat modeling, and AI/agentic security guardrails for a cloud-native SaaS platform. Requires 8+ years in appsec or software engineering with technical leadership experience.

114k – 240k/yr
Remote8+ YOESecurity Engineering
Zocdoc

Senior Staff Security Engineer, Vulnerability Management

ZocdocUnited States

Senior Staff Security Engineer owning the roadmap for an AI-driven vulnerability scanning, triage, and automated remediation platform. Requires 8+ years in security engineering with deep cloud/container expertise, offensive security experience, and proficiency in Python/Go/Rust.

200k – 290k/yr
Remote8+ YOESecurity Engineering
Plaid

Staff Software Engineer

PlaidNew York, NY +2

Staff Software Engineer building and leading development of Plaid's core security infrastructure including IAM, key management, encryption, and access control systems. Requires experience with scalable secure systems architecture plus technical leadership.

222k – 328k/yr
Hybrid7+ YOESecurity Engineering
Anthropic

Staff+ Application Security Engineer

AnthropicSan Francisco, CA +2

Staff Application Security Engineer focused on M&A due diligence and secure integration of acquired codebases and systems at Anthropic. Lead security assessments, risk readouts, post-close remediation and automation using Claude, while contributing to core AppSec work. Requires 7+ years AppSec experience, rapid codebase assessment skills, and coding ability.

320k – 485k/yr
Hybrid7+ YOESecurity Engineering
Confluent

Staff Security Risk & Compliance Program Manager

ConfluentTexas

Own and evolve Confluent's internal access management program with focus on machine/workload identity, S2S auth, non-human identities, and AI agent controls. Set the Access Management Standard, own metrics/reporting/OKRs, and drive governance, risk reduction, and cross-functional execution for least-privilege outcomes.

222k – 261k/yr
Remote8+ YOESecurity Engineering