Skip to content
CrusoeCrusoeSan Francisco, CA

Staff Software Engineer, Security

Staff Security Software Engineer designing and building scalable security infrastructure, identity systems, and compliance automation platforms. Requires 8+ years software engineering experience with deep Kubernetes, Go/Rust, and cloud platform expertise.

215k – 260k
On-site8+ YOESecurity Engineering

About the role

What You'll Be Working On

  • Architect & Build: Design, implement, and maintain highly scalable, distributed software systems that form Crusoe's core security engineering foundation.
  • Strategic Partnership: Partner closely with product security, infrastructure security platform engineering, and specialized security domain teams to translate complex business and regulatory needs into durable, automated technical solutions while retaining complete engineering ownership.
  • Data & Control Pipelines: Develop high-throughput control integrations and data pipelines to collect, normalize, and analyze security telemetry across identity systems (IAM), logs, vulnerability scanners, and continuous compliance (CCM/GRC) tools.
  • Metrics & Visibility Engines: Architect advanced metrics engines, real-time dashboards, and analytics insights pipelines that provide continuous visibility into overall compliance health, technical risk posture, and emerging security threats.
  • Technical Leadership: Provide technical direction, mentorship, and architectural oversight across the security engineering team, fostering a culture of high engineering standards, operational excellence, and continuous technical innovation.
  • Scaling product security controls: Integrate and scale automated security checks within CI/CD pipelines to ensure consistent security enforcement.
  • Platform Security Infrastructure: Architect and manage critical platform security services at scale, specifically PKI infrastructure, SPIFFE/SPIRE for identity, and HashiCorp Vault for secrets management, ensuring secure credential handling and identity management across our distributed environment.
  • Production-Grade Systems: Engineer secure, high-throughput distributed systems, utilizing deep Linux knowledge and Kubernetes expertise to solve complex infrastructure-level challenges.

On This Team, You Will

  • Tackle complex security and compliance puzzles at cutting-edge scale within cloud and distributed infrastructure.
  • Collaborate with a brilliant, multidisciplinary team of engineers who are redefining compliance adherence for modern infrastructure.
  • Have the freedom, autonomy, and responsibility to innovate, experiment, and heavily influence how Crusoe establishes its core security assurance pipelines.

What You'll Bring to the Team

  • Education: Bachelor’s degree in Computer Science, Information Security, a related technical field, or equivalent practical job experience.
  • Software Engineering: 8+ years of professional software development experience, with at least 5+ years of hands-on, production-grade programming experience in languages like Go, Rust.
  • Orchestration & Containers: 4+ years of hands-on experience deploying on, securing, and managing applications at scale on Kubernetes and public cloud environments.
  • System Architecture: Proven track record of designing, building, and operating high-QPS, fault-tolerant, and mission-critical distributed systems.
  • Cloud & Infrastructure: Strong hands-on experience with major public cloud infrastructure provider platforms (GCP or AWS).
  • CI/CD & IaC: Deep familiarity with modern continuous integration and continuous deployment pipelines, alongside robust Infrastructure-as-Code (IaC) tooling practices.
  • Data Flow Design: Strong experience engineering technical architectures involving complex data flows, event-driven architectures, fine-grained access controls, data retention management, and secure third-party integrations.

Technical Expertise

  • Infrastructure & Systems: Expert-level proficiency in distributed systems, infrastructure automation, and developing robust, automated abstractions (like Kubernetes operators or platform-level service meshes) to manage infrastructure complexity.
  • Kubernetes Internals: Deep operational experience managing Kubernetes at scale, troubleshooting complex cluster issues, developing operators, and optimizing the control plane.
  • Security Platform Engineering: Demonstrated experience implementing and maintaining identity and secrets management solutions such as HashiCorp Vault and SPIFFE/SPIRE in production environments.

Bonus Points

  • Advanced understanding of authentication, authorization at scale in distributed systems.
  • Experience engineering security tools or telemetry platforms within large-scale AI/ML or high-performance computing environments.
  • Active contributor to open-source security engineering projects or frameworks.

Benefits

  • Competitive compensation and equity packages
  • Restricted Stock Units
  • Paid time off, paid holidays & leave of absence programs
  • Comprehensive health, dental & vision insurance
  • Employer contributions to HSA account
  • Paid parental leave
  • Paid life insurance, short-term and long-term disability
  • Professional development & tuition reimbursement
  • Mental health & wellness support
  • Commuter benefits (parking & transit)
  • Cell phone stipend
  • 401(k) Retirement plan with company match up to 4% of salary
  • Volunteer time off
  • Global travel insurance & emergency assistance
  • Daily meals allowance
  • Additional perks & programs specific to location

Compensation will be paid in the range of up to $215,000 - $260,000 + Bonus. Restricted Stock Units are included in all offers.

Skills

GoRustKubernetesGCPAWSHashicorp VaultSpiffe/SpirePkiCI/CDInfrastructure As CodeDistributed SystemsLinux
Abridge

Senior/Staff Infrastructure Security Engineer

AbridgeSan Francisco, CA +1

Senior/Staff Infrastructure Security Engineer building self-service security platforms, automating DevSecOps workflows, and designing high-scale security data pipelines and IaC guardrails in a greenfield cloud-native environment at an AI healthcare company. Requires 8+ years software engineering experience with deep cloud and IaC expertise.

214k – 252k
Remote8+ YOESecurity Engineering
Abridge

Senior/Staff Application Security Engineer

AbridgeSan Francisco, CA +2

Leads application security initiatives including threat modeling, secure code reviews, penetration testing, and vulnerability management for AI healthcare platform. Mentors engineering teams on secure practices with 7+ years experience in AppSec, cloud, and AI security.

214k – 252k
Hybrid7+ YOESecurity Engineering
Reddit

Staff Software Engineer, Identity & Access Management

RedditUnited States

Staff Software Engineer on the IAM team designing, delivering, and supporting digital identity, authentication, and access systems. Requires 10+ years backend experience, deep IAM expertise, and proficiency in Go/Python/Java/TypeScript.

217k – 304k
Remote10+ YOESecurity Engineering
Reddit

Staff Product Security Engineer

RedditUnited States

Leads design and delivery of secure frameworks, guardrails, and workflow-native controls to prevent vulnerabilities in production, especially for AI-assisted development. Requires 8+ years in software/product security, staff-level impact, and proficiency in Go, Python, or JS/TS.

217k – 304k
Remote8+ YOESecurity Engineering
Databricks

Senior Staff Software Engineer - Security Infrastructure

DatabricksBellevue, WA

Leads security infrastructure engineering at Databricks, plugging critical gaps in large-scale systems, with 15+ years experience in distributed systems and 9+ in data security areas like Kubernetes security and cryptography. Requires MS/PhD and strong leadership.

217k – 288k
On-site15+ YOESecurity Engineering