Security Software Engineer, Infrastructure Security (Staff or Senior)

Join MongoDB as a Security Software Engineer specializing in Infrastructure Security. In this pivotal role, you will work collaboratively within a top-tier team to enhance our security posture, safeguard our infrastructure, and ensure the safety of our systems against evolving threats. Your expertise will be instrumental in designing, developing, and impleme…

About SonarSource:At SonarSource, we are dedicated to enhancing code quality and security, empowering developers to create superior applications efficiently. Our platform analyzes all code—whether authored by your team, generated by AI, or sourced from third-party libraries—ensuring applications are secure, reliable, and maintainable. With a foundation in the open-source community, our solutions accommodate over 30 programming languages and frameworks, serving more than 7 million developers and 400,000 organizations globally, including industry leaders like the DoD, Microsoft, NASA, MasterCard, Siemens, and T-Mobile.We are passionate about building exceptional products supported by a strong internal culture. Our team is incredibly committed to our mission and obsessed with our users, colleagues, and the open-source community. We uphold high standards and foster a culture of positivity, accountability, and passion.Our decision-making is deliberate, with a clear intention to act swiftly and effectively. As a cohesive unit, we strive to achieve our goals with operational efficiency.At Sonar, CODE represents more than just an acronym – it embodies our daily philosophy.

Saronic Technologies is at the forefront of transforming maritime autonomy, committed to crafting cutting-edge solutions that enhance seafaring operations through innovative autonomous platforms.As a pivotal force within our security team, we invite applications for a Senior Security Engineer, specializing in software and systems security. This role holds the responsibility of safeguarding Saronic's software platforms, ensuring the integrity of our systems and deployment infrastructure from development to production. Our technology stack includes NixOS and Rust, and we require a candidate with a deep understanding of securing software throughout its entire lifecycle—from reproducible builds and dependency management to CI/CD pipeline security, runtime hardening, and safe deployment in both vessel and cloud environments. In this capacity, you will serve as the technical authority on the secure building, shipping, and operation of our software.Key Responsibilities:Oversee the application security framework for Saronic's software platforms, encompassing Rust-based services, system software, and related applications.Lead initiatives for secure code reviews, including SAST, DAST, and fuzz testing, while establishing secure coding standards for Rust development, focusing on memory safety, safe FFI boundaries, and robust error handling.Perform threat modeling for software systems and convert findings into actionable security requirements integrated with design reviews and sprint planning.Manage vulnerabilities in software dependencies, including tracking, prioritization, and remediation of risks in third-party crates and libraries.Secure and strengthen NixOS configurations for vessel platforms and development infrastructure, utilizing Nix's reproducibility and declarative model for security enforcement.Create system hardening profiles in NixOS, incorporating kernel hardening, service isolation, mandatory access controls, and configurations that minimize the attack surface.Establish and enforce package management and dependency policies within the Nix ecosystem, ensuring auditable, reproducible build closures free from unauthorized or vulnerable packages.Design secure system update and rollback mechanisms leveraging NixOS capabilities, ensuring fleet-wide consistency and integrity.Implement security controls throughout the CI/CD pipeline, focusing on source integrity, build isolation, artifact signing, and deployment verification with ephemeral, isolated, and hardened build environments.

Role Overview SonarSource is hiring an Infrastructure Security Engineer in Austin, Texas. This role focuses on protecting the company’s software development tools and infrastructure. The position involves working closely with teams across the organization to strengthen security practices and respond to incidents. What You Will Do Design and implement security controls for infrastructure and internal systems Work with colleagues in different departments to improve overall security Identify vulnerabilities and recommend solutions Respond to and investigate security incidents What We Look For Experience in infrastructure security or a related field Ability to assess risks and propose practical safeguards Strong communication skills for cross-team collaboration Problem-solving mindset and attention to detail

Role Overview Roku, Inc. is hiring a Security Software Engineer in Austin, Texas. This position focuses on designing and building secure software solutions to safeguard both users and the Roku platform. What You Will Do Create and implement software with security as a core requirement Work with teams across engineering, product, and operations to strengthen security protocols Help shape and improve the security architecture for Roku’s streaming products

Saronic Technologies is at the forefront of transforming maritime operations with innovative autonomous solutions. Our commitment to advancing autonomy at sea drives us to develop intelligent platforms that significantly enhance efficiency and safety in maritime environments.As a Security Engineer specializing in Cloud Security, you will play a pivotal role in shaping our security framework. We are looking for a seasoned professional who will take charge of the design, implementation, and ongoing enhancement of robust security measures within our cloud infrastructure. Your expertise will empower every team at Saronic to progress swiftly and deploy confidently, with security integrated seamlessly from the outset. You will serve as the primary technical authority on the architecture, governance, and defense of our AWS environments, including both commercial and GovCloud platforms.

Join Fluidstack as Our Senior Data Center Physical Security EngineerAt Fluidstack, we are pioneering the infrastructure that fuels abundant intelligence. Collaborating with leading AI laboratories, governments, and enterprises such as Mistral, Poolside, Black Forest Labs, and Meta, we are committed to unlocking compute capabilities at lightning speed.We are driven by a sense of urgency to realize artificial general intelligence (AGI). Our team is dedicated, passionate, and focused on delivering top-tier infrastructure. We view our customers' successes as our own, taking immense pride in the systems we construct and the trust we cultivate. If you are motivated by a meaningful mission, strive for excellence, and are prepared to work diligently to accelerate the future of intelligence, we invite you to join us in constructing what lies ahead.Role OverviewAs the Senior Data Center Physical Security Engineer, you will spearhead the design and implementation of a robust multi-layer physical security framework that safeguards Fluidstack’s most critical asset—our data. Your responsibilities will encompass everything from perimeter fortification to rack-level tamper detection, all seamlessly integrated within a zero-trust monitoring system. You will lead initiatives to protect AI infrastructure against the most sophisticated adversaries globally.Key ResponsibilitiesOversee all facets of security systems for data centers, ensuring coordination with all other discipline requirements.Devise and execute strategies for the design and deployment of data center security systems.Assist in the development and enforcement of security system standards in compliance with US DoD and international standards.Consult on design specifications, master drawings, and legal documentation.Engineer access control, CCTV, intrusion detection, and biometric systems in alignment with SOC 2 and ISO 27001 standards.Develop zoning and mantrap layouts, authentication flows, and visitor management SOPs.Specify encryption and retention policies for video footage, logs, and alarms.Integrate security events with DCIM and corporate SIEM platforms.Promote resilience through dual-path communications and battery backup, along with regular penetration testing programs.Ideal CandidateA minimum of 10 years' experience designing hyperscale, enterprise, or mission-critical physical security systems.Extensive knowledge of ONVIF, SIA DC-09, OSDP, Wiegand, and BACnet standards.Hands-on experience with Genetec, LenelS2, Honeywell, or Avigilon ecosystems.

At Saronic Technologies, we are pioneering advancements in maritime autonomy, committed to designing cutting-edge solutions that optimize operations on the seas through innovative autonomous platforms.As a pivotal part of our commitment to security, we are in search of a seasoned Senior Security Engineer to take charge of the product security and authorization lifecycle for our autonomous surface vessel programs. You will play a critical role as the lead security engineer for multiple vessel initiatives, overseeing the security posture from conceptual design through production, authorization, and operational deployment. This role demands hands-on security engineering expertise—focusing on implementation rather than governance, risk, and compliance (GRC) or project management.Given the evolving landscape of compliance frameworks for autonomous vessels, you will define and implement security architectures that comply with emerging standards. You will be responsible for identifying relevant frameworks, architecting vessel security to meet these standards, and ensuring successful authorization processes are completed. In areas where standards are not yet established, you will have the opportunity to create them.

safelease is seeking a Security Engineer based in Austin, TX, with a hybrid work arrangement. This role centers on protecting the company’s digital infrastructure and ensuring the safety of systems and data. Role overview The Security Engineer will work closely with teams across the organization. The focus is on designing, implementing, and maintaining security protocols to defend against potential threats. Collaboration Expect to partner with colleagues from different departments to strengthen overall security measures and support ongoing improvements. Location This position is hybrid, requiring some presence in the Austin office.

Join Upside:At Upside, we are on a mission to revolutionize brick-and-mortar commerce. Our advanced technology combines the nuances of online retail—profit measurement, attribution, and incrementality—to enhance the value for users on their daily purchases while simultaneously attracting new, profitable customers to brick-and-mortar businesses. Millions of users have benefited from earning 2 to 3 times more cashback than any competing product, and hundreds of thousands of physical businesses have realized tangible profits through our platform. Each year, billions in commerce are processed through Upside, returning value directly to our retail partners, the consumers they serve, and vital sustainability efforts.Your Impact:In this role, you will report to the Director of Information Security, collaborating closely with technology stakeholders. Utilize your expertise in secure coding practices and payment systems to identify and address application vulnerabilities. As an individual contributor, you will bring innovation to our AppSec team, strengthen our security posture, and empower our engineering teams to code securely.Innovate with AI to deliver robust security solutions that mitigate application vulnerabilities.Conduct security code tests (SAST, SCA) and work with engineers to resolve unsafe code.Develop threat models and collaborate with technology teams to document and assess risks.Advise leadership on security architecture, design, and best practices in application security.Train and enhance the skills of engineers in safe coding and vulnerability management techniques.Assist with penetration testing initiatives and manage bug bounty programs.Support the administration of AWS Control Tower and IAM provisioning.Engage with the security community to stay informed about trends and advancements.Qualifications:A minimum of 6 years of experience in application or product security, including reviewing Python code.Proven experience in innovating and implementing solutions for vulnerability management.In-depth knowledge of AWS security architecture, including Lambda and AWS Control Tower.Strong comprehension and application of AI technologies.A Bachelor's degree in Computer Science or Engineering is highly preferred.Outstanding interpersonal and customer service skills.

At Reltio®, we are dedicated to transforming data into a powerful driver of business success. Our cutting-edge, AI-driven data unification and management solutions—including entity resolution, multi-domain master data management (MDM), and innovative data products—enable organizations to break free from data silos. The Reltio Data Cloud™ provides timely and interoperable data, empowering data and analytics leaders to respond to business needs with unmatched agility. Renowned enterprises across diverse industries worldwide depend on our award-winning data unification and cloud-native MDM capabilities to enhance efficiency, mitigate risks, and accelerate growth.Our core values define our approach at Reltio. With a steadfast commitment to putting our customers first, we work tirelessly to ensure their success. We celebrate our differences as we believe we are better together as one unified team. We strive to simplify processes and share our expertise, collaborating effectively to eliminate challenges. Accountability and excellence are paramount to us as we take ownership of our actions. We are committed to continual innovation, ensuring that each day is better than the last. If you resonate with these values, we welcome you to join Reltio and contribute to our mission of excellence.Reltio has received numerous accolades for our technology, culture, and workforce. Founded on the principles of a distributed workforce, we offer flexible work options to support the balance of personal and professional lives. If you are eager to work with unparalleled technology and be part of a collaborative team focused on enabling digital transformation through connected data, let’s connect!

Join Samsara as a Senior Security Engineer I in our Enterprise Security team. In this pivotal role, you will be responsible for safeguarding our systems and data while ensuring compliance with industry standards. You will work alongside a team of experts to enhance our security posture, develop and implement security policies, and respond to security incidents.

Saronic Technologies is at the forefront of transforming maritime autonomy, committed to crafting innovative solutions that elevate maritime operations through advanced autonomous and intelligent platforms.In the realm of security, Saronic acts as a critical force multiplier. We are on the lookout for a seasoned Security Engineer, specializing in hardware, embedded systems, and firmware security, to take charge of the security posture of our vessel hardware platforms, spanning from silicon to system level. In this role, you will serve as the technical authority on hardware root of trust, secure boot processes, firmware integrity, embedded system hardening, and securing third-party hardware integrations. Your efforts will ensure that each component on our vessels remains resilient against tampering, exploitation, and supply chain weaknesses, designed in from the ground up and maintained throughout the fleet's lifecycle.

Role Overview Orca Security is hiring a Sales Engineer focused on Application Security and Cloud Security in Austin, Texas. This position works closely with the sales team to showcase how Orca’s security solutions address real-world risks for both prospects and existing customers. What You Will Do Partner with sales to present and explain Orca Security’s products to organizations evaluating cloud and application security tools. Listen to client needs, then tailor demonstrations and recommendations to their specific security challenges. Help customers understand how Orca’s platform can strengthen their security posture and support their goals. Impact Expertise in application and cloud security will be central to helping clients achieve their security objectives and get the most value from Orca’s solutions.

Teamwork makes the stream work. Roku is transforming the way the world experiences television.As the leading TV streaming platform in the U.S., Canada, and Mexico, Roku is on a mission to empower every television worldwide. We pioneered the streaming revolution, connecting viewers with the content they adore while enabling content creators to build and monetize vast audiences. Advertisers benefit from our unique capabilities to engage their target consumers.From day one at Roku, your contributions will be meaningful and valued. In our rapidly growing public company, there are no bystanders. This is your opportunity to bring joy to millions of TV streamers globally while gaining invaluable experience across multiple disciplines. About the Team The Roku Trust Engineering team is a tight-knit group dedicated to information security. Our mission is to safeguard our customers, partners, devices, services, infrastructure, and data. We collaborate closely, sharing insights and expertise to remain at the forefront of security. Join us, and you’ll be part of a vibrant team that thrives on challenges and celebrates successes together. About the Role As a Security Engineer within the Trust Engineering team, you will play a crucial role in designing, implementing, and managing Roku’s comprehensive security systems and controls that impact a global user base. Your key responsibilities will involve supporting the development of security protocols, managing and maintaining SIEM/SOAR tools and threat intelligence platforms, conducting technical incident responses, performing vulnerability and risk assessments, and mentoring junior analysts. You will collaborate with teams across Trust Engineering and the broader organization to promote, develop, and influence robust security practices and postures.

About UsBased in the vibrant heart of New York City, Take-Two Interactive Software, Inc. stands as a premier innovator in the development, publishing, and marketing of interactive entertainment for consumers worldwide. Our portfolio includes industry giants like Rockstar Games, 2K, and Zynga, delivering exceptional gaming experiences across console, PC, and mobile platforms through various channels, including retail, digital downloads, and cloud streaming. Our stock is publicly traded on NASDAQ under the symbol TTWO.At Take-Two, we foster a friendly and inclusive atmosphere, promoting creativity, innovation, and efficiency, alongside opportunities for individual and team growth. Our dynamic industry offers countless chances to learn and enhance your skills in a fast-paced environment. While we are dedicated to our work, we also believe in enjoying what we do, making it an excellent place to pursue your passions.Your RoleAs a Cloud Security Engineer, you will play a crucial role in ensuring the security and integrity of our AAA game content development across various divisions. You will analyze and implement robust Cloud Security Systems throughout the Take-Two technology stack. Collaborate with IT Infrastructure, Security Engineering, and Operations teams to automate the discovery and inventory of cloud assets, ensuring optimal visibility and continuous updates to our asset registry. Work closely with Architecture to explore and implement new solutions that enhance our Cloud Security and Security Operations Center (SOC) applications while developing new tools to meet business needs. You will review cloud security change requests both internally and across our domain subsidiaries to ensure secure connectivity with customer clouds, and regularly engage with Security colleagues in label teams to prioritize and address their security needs.

About Ping Identity:At Ping Identity, we are dedicated to providing secure and seamless digital experiences for users, fostering a concept we call digital freedom. This ethos not only extends to our customers but also permeates our company culture. Join us to cultivate a workplace that values digital freedom.Our advanced cloud identity platform empowers individuals to shop, work, bank, and engage in various activities effortlessly and securely.While safeguarding digital identities is central to our technology, we also prioritize the protection of individual identities within our culture. We champion every identity. Our core value, Respect Individuality, encourages us to embrace our differences, allowing everyone to bring their authentic selves to work.Headquartered in Denver, Colorado, with a global presence, we cater to the needs of the largest and most demanding enterprises, including over half of the Fortune 100. At Ping Identity, we are reshaping perceptions around cybersecurity, digital experiences, and identity management.Job Summary:As a Product Security Engineer focusing on our Federal accounts, you will gain crucial experience within an innovative identity security firm. This role demands a strong passion for application security, a knack for addressing both technical and organizational challenges, and the ability to thrive in a dynamic, Infrastructure-as-Code development environment. Exceptional communication skills and a keen awareness of the latest security best practices are essential.

At SpyCloud, our mission is to create a safer internet by disrupting the criminal underground. Our innovative solutions prevent cyberattacks and safeguard over 4 billion accounts globally. As a leader in the dynamic field of cybersecurity, we invite you to join us in the fight against cybercrime and contribute to a meaningful cause!The ideal candidate will have a robust background in developing internal security tools and data processing pipelines utilizing public cloud infrastructure, with a strong focus on leveraging AI technologies. This role is part of SpyCloud Labs, our specialized Security Research team, dedicated to creating automation and internal tools for the collection of recaptured third-party breach and malware data. This is a full-time remote position that supports a hybrid workforce.

About Semperis Semperis is recognized among America’s fastest-growing cybersecurity companies by Inc. 5000 and has received several Best Workplace awards from Inc. The company’s mission centers on fostering a workplace where employees feel valued, supported, and empowered. Semperis emphasizes purpose, growth, and balance in its employee experience. Role Overview: Senior Cloud Security Engineer Based in Austin, this senior-level role focuses on strengthening enterprise defenses against cyber threats. The position involves close collaboration with experts in cybersecurity and Identity Access Management. U.S. citizenship is required. Main Responsibilities Design, build, and maintain secure cloud infrastructure across Azure, AWS, and GCP, with a strong preference for AWS experience. Lead improvements in Cloud Security Posture Management (CSPM), including setting policies, implementing guardrails, and automating remediation processes. Develop and manage cloud network security controls such as segmentation, cloud-native firewalls, and secure ingress or egress patterns. Define and enforce security best practices for Kubernetes environments (AKS and EKS), including role-based access control (RBAC) and workload isolation. Work with engineering teams to review security architecture and advise on secure solution design.

Saronic Technologies is at the forefront of transforming maritime autonomy, committed to pioneering advanced solutions that enhance operational efficiency through cutting-edge autonomous platforms.Job Overview:We are looking for an exceptionally talented Physical Security Systems Engineer to oversee the design, implementation, integration, and lifecycle management of our enterprise physical security technologies. In this pivotal role, you will contribute to architectural and engineering initiatives encompassing video surveillance, access control, intrusion detection, perimeter security, and identity management, with a pronounced focus on cloud-based systems.Design and implement comprehensive enterprise physical security systems, including:Video Surveillance (IP-based camera systems)Access Control (cloud and on-premises)Intrusion Detection & Alarm SystemsLicense Plate Recognition (LPR)Intercom and Visitor Management SystemsResponsibilities:Architect and manage security system environments (cameras, access control, sensors, intercoms).Support integrations for:Single Sign-On (SSO)SCIM user provisioningRole-based access control (RBAC)Conditional Access policiesAssist in establishing standardized naming conventions, device deployment standards, and comprehensive system documentation.Ensure systems are scalable for multi-site/global deployments.Design secure Power over Ethernet (PoE) and network topology for cameras and controllers.Configure VLAN segmentation for security devices.Collaboration:Work closely with network engineers to:Implement Quality of Service (QoS) policiesEnsure proper bandwidth allocationMaintain secure firewall rules