Staff Security Software Engineer

The Senior Cloud Security Engineer role at Aurora Innovation centers on building and maintaining resilient, automated security systems that support the company’s self-driving technology. Based in San Francisco, this position works within the Cloud Security engineering team and collaborates closely with both infrastructure and application groups. Day-to-day work covers a mix of infrastructure security, workload protection, and hardening CI/CD pipelines. The team uses a blend of open-source tools, such as OPA, Trivy, and Spire, alongside commercial products, with an emphasis on custom automation that strengthens Aurora’s security posture. Deciding when to adopt off-the-shelf solutions or develop new ones is part of the job. Key Responsibilities Secure cloud environments by: Managing IAM roles and policies Enforcing security controls Building security boundaries for resources and services Providing security guidance for Cloud and Kubernetes Create automation to address security challenges at their source Design, build, and configure security infrastructure on platforms such as AWS, Azure, or GCP Work with cross-functional teams to implement and maintain security best practices This position values hands-on problem solving, a thoughtful approach to tool selection, and a collaborative mindset. The work directly supports Aurora’s mission to deliver safe and efficient self-driving solutions.

About the Role Hex Technologies is seeking a skilled Cloud Security Engineer to enhance our security team. In this pivotal role, you will be responsible for safeguarding our cloud infrastructure and ensuring its resilience. You will lead cloud security initiatives and work closely with infrastructure and engineering teams to protect our cloud-native applications. Key Responsibilities: Design, implement, and oversee security solutions and controls for AWS environments and Kubernetes clusters, ensuring effective isolation and sandboxing for Hex’s RCE-as-a-Service platform. Develop, deploy, and maintain infrastructure-as-code utilizing Terraform, while upholding stringent security standards. Perform comprehensive security assessments, threat modeling, and audits on AWS cloud infrastructure and Kubernetes deployments. Collaborate with development and operations teams to integrate security best practices into CI/CD pipelines. Monitor and respond to cloud security incidents, identify root causes, and propose remediation measures. Provide in-depth expertise on compliance requirements related to cloud security, including SOC 2, ISO 27001, GDPR, HIPAA, and PCI DSS. Mentor fellow engineers and advocate for cloud security initiatives throughout the organization. Qualifications: 5+ years of experience in cloud security engineering, particularly with AWS. Proven expertise in Kubernetes security, including cluster hardening, role-based access control (RBAC), network policies, and container vulnerability management. Expertise in Terraform with hands-on experience. Familiarity with AWS security services such as IAM, GuardDuty, Security Hub, CloudTrail, and WAF. Knowledge of CNAPP solutions like Wiz and SIEM solutions such as Panther. Strong understanding of secure software development lifecycle practices, CI/CD security, and DevSecOps methodologies. Relevant certifications such as AWS Certified Security – Specialty, Certified Kubernetes Security Specialist (CKS), and Terraform Associate certification are highly desirable. Additional security certifications from SANS or OffSec are a plus. Exceptional problem-solving, communication, and leadership skills.

About the Role mercor is hiring a Cloud Infrastructure Security Engineer in San Francisco or New York City. This role focuses on protecting cloud-based systems and data across the company. The engineer will design, implement, and monitor security controls to defend cloud infrastructure against threats. What You Will Do Develop and maintain security measures for cloud environments Monitor cloud infrastructure for vulnerabilities and incidents Respond to security threats and support incident investigations Work to ensure compliance with industry security standards Contribute expertise to strengthen overall security posture Location This position is based in San Francisco or New York City.

Role Overview mercor is hiring a Cloud Infrastructure Security Engineer in San Francisco. This role focuses on protecting cloud systems, maintaining data integrity, and applying security protocols to guard against new threats. Collaboration with cross-functional teams is central to designing and maintaining secure cloud environments.

At Lyft, we are dedicated to connecting people and creating a community where every team member feels valued and empowered to reach their full potential.As a pivotal player in transforming how our communities move, Lyft's engineering team is rapidly expanding. We are seeking passionate Software Engineers specialized in Security to join our dynamic Security team. Together, we will enhance our ability to deliver secure services at scale.Lyft is entrusted with the sensitive information of both drivers and passengers, and we take the responsibility of safeguarding that data seriously. Our Security team spearheads initiatives across the organization to protect our systems and uphold user trust.Our work encompasses designing and building a robust security architecture, collaborating with various teams during the development and launch of new products, anticipating potential challenges, and managing security incidents effectively. Our impact spans the entire organization, covering all aspects of the technology stack, including infrastructure, web applications, mobile apps, IT, and even autonomous vehicles. We adopt an engineering-focused approach to security, aiming to automate and streamline our processes while ensuring frequent updates. Explore more about our innovations on our blog at https://eng.lyft.com/tagged/security.The Cloud Security team is dedicated to enhancing Lyft's security posture by architecting a comprehensive security model tailored for our cloud infrastructure, protecting both our employees and intellectual property.As a Senior Software Engineer, you will play a crucial role in shaping this team and driving high-impact security initiatives. Your responsibilities will include leading security reviews, implementing detection measures, addressing vulnerabilities, enforcing the principle of least privilege, and establishing secure configurations for our multi-cloud and container environments.

Join Perplexity as a Senior Cloud Security Engineer and play a pivotal role in transforming how users search and interact with the internet. As a key member of our innovative security team, you will spearhead initiatives to construct and sustain secure and scalable cloud infrastructure, enabling our engineers to innovate swiftly and securely.Core ResponsibilitiesCollaborate with infrastructure and engineering teams to embed security measures into development processes and advocate for secure-by-default practices.Develop Terraform modules that incorporate essential security features, including logging, encryption, and automated threat detection.Implement cloud-native detection capabilities utilizing AWS GuardDuty, Security Hub, and tailor-made detection rules to uncover credential breaches, crypto-mining, and lateral movements.Ensure compliance with SOC 2 Type II and ISO 27001 by automating the collection of cloud control evidence.Conduct security assessments of cloud resource configurations using tools like AWS Config and Open Policy Agent, addressing discrepancies in line with CIS Benchmarks and internal security policies.Fortify CI/CD and supply chain pipelines through controls such as artifact signing, secret scanning, and dependency monitoring.Implement zero trust principles via stringent network segmentation, authentication, and authorization across cloud environments.Engage in security on-call rotation, responding to security alerts and incidents for prompt resolution and root cause analysis.

At Crusoe, we are on a mission to accelerate the accessibility of energy and intelligence for everyone. Join us in creating the infrastructure that enables individuals to innovate boldly with AI, all while maintaining a commitment to scale, speed, and sustainability.Become a key player in the AI revolution through sustainable technology at Crusoe. Here, you will spearhead groundbreaking innovations, make a significant impact, and collaborate with a team dedicated to shaping the future of responsible cloud infrastructure.Role Overview:Crusoe AI is seeking a Senior Product Security Engineer to play a pivotal role in protecting our cloud products and applications, particularly those centered on AI/ML, throughout their entire lifecycle.In this position, you will lead the establishment and enforcement of security best practices within the development lifecycle. Your responsibilities will include performing comprehensive threat modeling, executing security assessments, and working closely with product and engineering teams to strengthen our security posture, ensuring the robustness of our innovative solutions and the protection of customer data.Your Daily Responsibilities:Collaborate with product and engineering teams to embed security best practices into the software development lifecycle.Conduct threat modeling, security architecture evaluations, design assessments, and code reviews for new product initiatives. Perform penetration testing, vulnerability assessments, and security evaluations of product features and systems.Create and implement security automation tools to monitor and test code and software for vulnerabilities.Establish and maintain secure coding protocols and procedures tailored for cloud and Kubernetes environments.Proactively detect and mitigate risks in user-facing processes and critical infrastructure.Lead security education, training, and mentorship initiatives to cultivate a culture of security awareness across all teams.Identify and manage security vulnerabilities, ensuring they are documented, prioritized, and addressed promptly.Qualifications for Success:You possess 4-6+ years of experience in Information Security, with a specialization in application or product security.You have proficiency in cloud platforms such as AWS, GCP, or Azure, and expertise in Kubernetes orchestration as well as automation scripting (e.g., Python).

We are seeking a highly skilled Senior Security Engineer to join our innovative team at Decagon in San Francisco. In this pivotal role, you will be responsible for safeguarding our digital infrastructure and ensuring the security of our systems against potential threats. You will work closely with cross-functional teams to design and implement security solutions, conduct risk assessments, and develop incident response strategies.As a Senior Security Engineer, you will have the opportunity to leverage your expertise in security protocols, threat detection, and vulnerability management to enhance our security posture. Your contributions will be essential in creating a secure environment for our operations and clients.

CoreWeave is seeking a Security Engineering Manager to lead the Platform Security team. This position is based in Livingston, NJ, New York, NY, Sunnyvale, CA, Bellevue, WA, or San Francisco, CA. The team’s mission is to embed security into CoreWeave’s Kubernetes-based platform and public cloud environments, supporting high-performance infrastructure for AI and machine learning workloads. Role overview This manager will oversee and expand the Platform Security engineering team, reporting to the Senior Director of Security Foundations. The focus is on hands-on leadership and technical execution, with an emphasis on building and implementing security controls rather than policy development. The role requires close collaboration with Infrastructure, Platform Engineering, Site Reliability Engineering, and other security teams to ensure security measures keep pace with business growth and evolving needs. What you will do Lead and grow the Platform Security engineering team. Integrate security into Kubernetes infrastructure and public cloud platforms such as AWS, GCP, and Azure. Define and execute strategies for cloud security posture, workload isolation, platform guardrails, image integrity, and multi-cloud security. Develop and implement security controls across CoreWeave’s infrastructure. Work closely with other technical teams to align platform security with business needs. The Platform Security team The Platform Security team at CoreWeave engineers systems that enforce security at the infrastructure layer. Their work spans both CoreWeave’s own Kubernetes-based platform and third-party public cloud environments. The team supports GPU-accelerated infrastructure for demanding AI and machine learning workloads, ensuring that both customer and internal services remain secure as CoreWeave’s global presence expands.

As digital transformation accelerates, the need for robust cloud security solutions becomes vital. Britive stands at the forefront of this evolving landscape, offering an innovative privileged access management platform designed to deliver comprehensive Privileged Access Visibility, Dynamic Privilege Management, and Secrets Governance across diverse cloud environments, platforms, and SaaS applications.Our cutting-edge, patent-pending technology is already in use by numerous Fortune 500 companies, solidifying our reputation as one of the most promising startups in the Cloud Security sector. Founded by seasoned veterans in the CyberSecurity field, Britive is supported by leading venture capital firms, ensuring a solid foundation for growth and innovation.About YouYou are a dedicated Software Engineer eager to create and enhance our multi-tenant SaaS applications on the AWS platform. With a solid software engineering foundation and an in-depth understanding of AWS tools and services, you are ready to contribute from day one. Your positive, proactive attitude and enthusiasm for delivering technical solutions in a dynamic startup environment will be key to your success.Your ImpactKey Responsibilities:Design and develop a large-scale application stack operating on AWS.Collaborate with cross-functional teams to implement new features and enhancements.Maintain and optimize existing systems for improved performance and scalability.Ensure high-quality code through best practices and thorough testing.

About UsXOXO AI is an innovative research laboratory dedicated to shaping the future of intelligence for everyday life. Our dynamic team of skilled engineers, designers, and researchers is committed to discovering transformative solutions for challenges that extend beyond the workplace.Following a significant breakthrough in infrastructure, architecture, and model layers, we are on the lookout for dedicated builders to develop the interface and application layer that will actualize our visionary goals.About the RoleWe are seeking a seasoned Security Engineer to safeguard our systems and uphold user trust. Your role will involve fortifying our cloud infrastructure, enforcing access restrictions, and establishing tools and response mechanisms that ensure security as we scale. Collaborating with the founders and our engineering team, you will embed security as a fundamental principle in our development processes.What You’ll DoCollaborate with engineering, product, and research teams to integrate security throughout the development lifecycle, including threat modeling, design reviews, and secure defaults.Strengthen cloud infrastructure and enforce network topology standards such as subnets, firewalls, routing, and organizational security policies.Implement isolation and segmentation strategies to limit potential damage and prevent lateral movement.Develop and maintain security tools and automation for engineers, including CI/CD checks, scanning, and guardrails, driving findings to remediation.Enhance observability, detection, and incident response for security-related events such as intrusions, abuse patterns, DDoS attacks, and bots, ensuring rapid containment.Design and manage identity and access management systems for both users and services, alongside third-party integration controls, prioritizing private connectivity and the principle of least privilege.

About LangChainLangChain is dedicated to making intelligent agents a common part of our daily lives. We provide the essential framework for agent engineering that enables developers to transition from experimental prototypes to production-ready AI agents that organizations can depend on. Having started as widely embraced open-source tools, we have evolved to also deliver a robust platform for the development, evaluation, deployment, and management of agents at scale.Our tools, including LangChain, LangGraph, LangSmith, and Agent Builder, are actively utilized by teams delivering tangible AI products across both startups and large corporations. Millions of developers rely on LangChain to empower AI teams at renowned companies such as Replit, Clay, Coinbase, Workday, Lyft, Cloudflare, Harvey, Rippling, Vanta, and 35% of the Fortune 500.With $125M raised in our Series B funding round from prominent investors including IVP, Sequoia, Benchmark, CapitalG, and Sapphire Ventures, we are at a pivotal point of innovation, accelerating growth, and empowering every team member to have a significant impact on our products and collaborative culture. At LangChain, your contributions can truly influence how this technology integrates into the real world.About the RoleAs the hands-on security lead, you will work closely with our core product teams to ensure the security of agent workloads from end to end, encompassing everything from SDK to LangSmith/Graph services and customer integrations. You will be responsible for defining our security roadmap, achieving immediate hardening wins, and elevating the standards for how AI infrastructure is secured in production. We are seeking engineers with expertise in either cloud/infrastructure security or application security (expertise in both is a significant advantage!).Lead product & platform security: Design and implement application/infrastructure security controls across LangSmith, LangGraph, and the LangChain SDK ecosystem (Python/TS/Go).Implement secure-by-default authentication and authorization: Enhance SSO/SAML/OIDC/SCIM, manage token lifecycles, establish service-to-service authentication, and ensure tenant isolation for both cloud and self-hosted customers.Vulnerability management: Oversee scanning, triage, and patching SLAs; coordinate with engineering teams to ensure swift remediation without delaying delivery.Develop secure code, conduct reviews, and create tools: Implement secure design principles, write pull requests, execute penetration tests, and introduce lightweight checks (linters, dependency/supply-chain scanning, SBOM/SLSA provenance) to facilitate security at scale.Enhance hardening & operations: Focus on network segmentation/Zero Trust, Kubernetes posture management, secrets management, key rotation, least-privilege IAM, and egress controls.

Join Hive as a Cybersecurity Engineer and play a pivotal role in fortifying our security infrastructure. We are seeking a proactive and skilled individual with a strong background in information security. In this role, you will be responsible for safeguarding sensitive company data, managing potential security incidents, and implementing robust security and data governance measures. You will collaborate across various teams to lead security operations, conduct risk assessments, respond to incidents, and maintain security projects. Our ideal candidate is passionate about AI and committed to enhancing our security framework to meet evolving challenges.

Join Our Team as a Senior Security EngineerAt LiteLLM, the leading AI Gateway trusted by industry giants such as Adobe, Netflix, and NASA, we empower developers with secure and reliable access to LLMs and associated services. We are seeking a talented Senior Security Engineer to establish robust security measures and observability tools as we scale our platform.Your Role:Become a cornerstone of our security team as our inaugural Security Engineer, tackling pivotal security challenges head-on.Key Responsibilities:Perform in-depth security assessments of the LiteLLM proxy codebase to uncover potential supply chain vulnerabilities.Develop and manage automated security scans for our Docker images, PyPI packages, and CI/CD workflows (including dependency scanning and secrets detection).Create and enforce secure-by-default configurations for both cloud and self-hosted environments (API authentication, IAM least privilege, key rotation).Implement and oversee intrusion detection systems and alerts tailored to model and API usage patterns.Lead incident response efforts and post-mortem analyses, including vulnerability assessments and stakeholder communication.Establish a formal CVE triage and disclosure protocol in collaboration with the engineering team.Conduct internal red teaming and adversarial testing to simulate real-world attacks and enhance our defenses.Collaborate with engineering teams to fortify release pipelines (signed builds, provenance checks, reproducible builds).Develop secure coding standards and conduct regular training sessions for developers focused on supply chain and dependency management.Maintain and update threat models as LiteLLM’s products and architecture evolve.

About SentryAt Sentry, we are dedicated to eradicating bad software. Our mission is to empower developers to create better software more efficiently, allowing everyone to enjoy technology once more.With over $217 million in funding and a community of more than 100,000 organizations, including industry leaders like Disney, Microsoft, and Atlassian, we are at the forefront of building performance and error monitoring tools that minimize bug fixing and maximize product development.We embrace a hybrid work model across our global teams, designating Mondays, Tuesdays, and Thursdays as in-office days to foster collaboration. If you are passionate about creating tools that enhance the digital experience, join us in developing the next generation of software monitoring solutions.About The RoleOur security team is committed to safeguarding every aspect of Sentry, from our customer data to our internal code. As a Senior Security Engineer, you will be integral to our mission of enhancing security across our application and Kubernetes platform. Collaborating with engineering teams, you will help strengthen Sentry’s cloud security posture through strategic architecture, threat modeling, and hands-on coding when necessary.Key ResponsibilitiesLead critical initiatives aimed at addressing significant security challenges, from conceptualization to execution.Collaborate on cross-departmental objectives to drive security goals forward.Conduct research and assess new technologies that can bolster our security framework with a focus on scalability.Identify vulnerabilities within our systems and data while developing and implementing robust protective measures.Support cross-functional teams in integrating security solutions that adhere to Secure-by-Design principles.Ideal Candidate AttributesDesire to be a foundational member of an agile, engineering-centric security team.Enjoy collaborating with enthusiastic security, application, platform, and infrastructure engineers eager to innovate.Passionate about advancing security practices to enhance software quality.

Your Role at Lila SciencesThe Senior Director of Cloud Security and Compliance will spearhead the comprehensive security, governance, risk management, and regulatory compliance for our cloud environments and research workflows. In this pivotal role, you will architect and oversee cloud security frameworks, data protection strategies, and compliance initiatives across both multi-cloud and on-premises infrastructures. You will collaborate closely with teams in Engineering, Data Science, IT, Legal, and Compliance to establish secure operational patterns, facilitate swift yet secure experimentation, and uphold a resilient governance program that provides verifiable evidence for regulators and clients.Your ContributionsCloud Security Architecture & GovernanceFormulate and uphold a comprehensive cloud security strategy, reference architectures, and security standards for public cloud environments (AWS, Azure, GCP) and hybrid solutions.Implement secure-by-default design patterns for cloud resources, data flows, and analytics, while intentionally setting CI/CD security patterns aside from your primary focus.Establish and manage IAM principles of least privilege, network segmentation, private endpoints, key/secret management, and centralized logging for AWS, Kubernetes, and cloud-native services.Governance, Compliance & Risk ManagementCreate, execute, and continuously enhance policies, standards, and procedures in line with key frameworks (e.g., NIST CSF, NIST 800-53, FedRamp, ISO 27001, SOC 2, GDPR/CCPA).Oversee the data protection program, including data classification, minimization, retention, and lifecycle management; supervise relevant DLP strategies.Conduct third-party risk assessments, manage vendor security inquiries, and oversee security clauses in contracts, ensuring audit evidence is well-maintained.Security Controls & MonitoringDefine and supervise security controls across cloud resources, focusing on identity and access management, encryption, key management, log collection, and telemetry.Work in tandem with Security Operations to implement monitoring systems, alerting protocols, incident response coordination, and audit evidence collection.Compliance & Audit ReadinessPrepare for internal and external audits by mapping controls to frameworks and translating them into actionable engineering artifacts and evidence.Ensure ongoing compliance with SOC 2, ISO 27001, and other regulatory mandates, collaborating with Legal and Privacy on data protection controls.Data and Machine Learning SecurityEnhance security protocols for data and machine learning/AI processes, focusing on privacy protection and secure data handling.

Oleria Security seeks a Senior Implementation Engineer based in San Francisco, CA. This role focuses on integrating and deploying Oleria’s security solutions for clients, ensuring each rollout is reliable and tailored to customer needs. Role overview The Senior Implementation Engineer leads technical deployments of security products. Success in this position means customers experience smooth transitions and ongoing support as their solutions go live. What you will do Take ownership of technical implementation for security products with client organizations Collaborate with engineering, product, and customer success teams to coordinate deployments Diagnose and resolve integration or deployment issues as they arise Contribute to project outcomes and maintain strong customer satisfaction throughout each engagement

Join Airwallex as a Senior Corporate Security EngineerAt Airwallex, we are redefining global financial solutions. As a Senior Corporate Security Engineer, you will play a pivotal role in safeguarding our enterprise systems and employee data from various security threats, including malware and phishing attacks. This is a highly technical position focused on detecting, investigating, and preventing security incidents within a dynamic corporate environment.You will engage in digital forensics, incident response, and the development and deployment of tools designed to protect our diverse range of IT platforms. Collaborate with exceptional teammates to tackle significant challenges while advancing your career as we pioneer the future of global banking.

Join Handshake as a Senior Cloud Engineer, where you'll play a pivotal role in designing and implementing scalable cloud solutions. Your expertise will help us enhance our cloud infrastructure while ensuring high availability and security.We are looking for a passionate and driven individual who thrives in a fast-paced environment, is eager to tackle complex challenges, and enjoys collaborating with cross-functional teams. If you have a deep understanding of cloud architectures and services, we want to hear from you!