# Security Engineer
**Company:** [Juicebox](https://hotfix.jobs/companies/juicebox)
**Location:** San Francisco, CA
**Salary:** $160K-$250K
**Skills:** AWS, Terraform, IAM, SSO, Idps, Kubernetes, GitOps, SIEM, Wiz, Doppler
**Posted:** 2026-04-20
> Builds foundational security systems for AI SaaS infrastructure, including secure execution for AI agents, AWS guardrails with Terraform, identity management, and observability. Requires strong application security, DevOps, and AWS experience with a focus on automation and developer-friendly tools.
## Job Description
## Responsibilities
- Develop sandboxing and secure execution patterns for AI-powered workflows and agents.
- Implement secure-by-default infrastructure guardrails across AWS using Terraform and GitOps workflows.
- Build automated systems that reduce operational risk.
- Create paved-road security tooling that helps engineers ship securely by default.
- Build a unified identity and access system across internal tooling, infrastructure, and production systems.
- Design secrets management and credential rotation systems with strong auditing and least-privilege guarantees.
- Improve application security around authentication, authorization, API protection, and multi-tenant isolation.
- Build security observability pipelines for logging, detection, and incident response.

## Requirements
- Strong background in application security, infrastructure, DevOps, or platform engineering.
- Experience designing and shipping production systems end-to-end.
- Hands-on experience with AWS infrastructure and security primitives (IAM, networking, RDS, etc.).
- Experience with infrastructure-as-code tools like Terraform.
- Familiarity with identity systems such as SSO, IAM, or IdPs.
- Strong communication skills and the ability to drive projects independently.

## Nice-to-Haves
- Interest in AI/LLM security, prompt injection, data poisoning, model extraction, etc. and mitigations.
- Experience with tools like Wiz, Doppler, or 1Password.
- Experience with SIEM or security event pipelines.
- Kubernetes or service mesh security experience.
- Experience with sandboxing or secure execution environments.
**Apply:** https://hotfix.jobs/jobs/security-engineer-at-juicebox-3e8573ef-e06e-4e0e-907b-299b0e307a11
**Canonical:** https://hotfix.jobs/jobs/security-engineer-at-juicebox-3e8573ef-e06e-4e0e-907b-299b0e307a11