Skip to content
Topaz Labs

Staff Security Engineer

Owns security for hybrid infrastructure including AWS cloud, on-premise GPU clusters, and corporate endpoints. Conducts penetration testing, secures AI models, and manages identity/tools like Jamf and Active Directory. Requires 7+ years hands-on security experience.

Dallas, TXSecurity EngineeringOnsite7+ YOE
Apply

About the role

Responsibilities

  • Secure hybrid infrastructure (AWS & colo): configure firewalls, manage physical network security, harden Linux GPU clusters.
  • Manage corporate & endpoint security: oversee macOS fleet with Jamf, identity management via Active Directory.
  • Conduct hands-on penetration testing on internal networks, office infrastructure, and AI applications.
  • Secure AI supply chain: protect model weights during training, storage, and delivery.

Requirements

  • 7+ years in security engineering (infrastructure, corporate IT, offensive security).
  • Deep experience with AWS security (IAM, VPC), compliance (SOC II, Vanta).
  • Expert in Jamf for macOS and Active Directory for identity.
  • Physical & network security: firewalls, VPNs, switching in offices/colos.
  • Manual penetration testing (network, web app).
  • Proficiency in Python/Bash scripting.

Nice-to-Haves

  • Experience securing on-device software/desktop apps (Windows/macOS).

Skills

AWSIAMVpcJamfActive DirectoryLinuxFirewallsVpnsPenetration TestingPythonBashSoc IiVantaNetwork SecurityGpu Clusters

Similar roles

Security Engineering jobs
Perplexity

Member of Technical Staff

Conduct original research on AI system security and privacy, develop defenses and evaluation frameworks, and translate findings into production improvements at Perplexity. Requires PhD or equivalent with publications at top security venues and deep expertise in security domains.

220k – 405kSan Francisco, CASecurity EngineeringOn-site7+ YOEGoRust
Reddit

Staff Software Engineer, Identity & Access Management

Staff Software Engineer on the IAM team designing, delivering, and supporting digital identity, authentication, and access systems. Requires 10+ years backend experience, deep IAM expertise, and proficiency in Go/Python/Java/TypeScript.

217k – 304kUnited StatesSecurity EngineeringRemote10+ YOEGoSQL
Rippling

Staff Product Security Engineer

Hands-on staff security engineer building guardrails, tooling, and automations to secure Rippling's web applications. Requires 10+ years in product security, fluency in Python/React/DRF, and experience embedding security into SDLC and CI/CD.

189k – 315kSeattle, WA +2Security EngineeringHybrid10+ YOESSOSAML
Okta

Staff Security Engineer

Staff Security Engineer embedded in TDI to build centralized security posture analytics, automate issue tracking and remediation, and drive AI-powered risk management across AWS, SaaS apps, and enterprise systems.

134k – 185kSan Francisco, CASecurity EngineeringOn-site10+ YOEAWSSnyk
Okta

Staff Software Engineer, Security Engineering

Staff-level engineer designing and building security guardrails for multi-cloud environments, translating security standards into code-driven policies. Requires 8+ years in cloud security with deep expertise in Kubernetes, IAM, and Policy-as-Code.

174k – 239kBellevue, WA +3Security EngineeringHybrid8+ YOEGoEKS