Cloud Security Engineer

About the Role Hex Technologies is seeking a skilled Cloud Security Engineer to enhance our security team. In this pivotal role, you will be responsible for safeguarding our cloud infrastructure and ensuring its resilience. You will lead cloud security initiatives and work closely with infrastructure and engineering teams to protect our cloud-native applicat…

About the Role mercor is hiring a Cloud Infrastructure Security Engineer in San Francisco or New York City. This role focuses on protecting cloud-based systems and data across the company. The engineer will design, implement, and monitor security controls to defend cloud infrastructure against threats. What You Will Do Develop and maintain security measures for cloud environments Monitor cloud infrastructure for vulnerabilities and incidents Respond to security threats and support incident investigations Work to ensure compliance with industry security standards Contribute expertise to strengthen overall security posture Location This position is based in San Francisco or New York City.

Role Overview mercor is hiring a Cloud Infrastructure Security Engineer in San Francisco. This role focuses on protecting cloud systems, maintaining data integrity, and applying security protocols to guard against new threats. Collaboration with cross-functional teams is central to designing and maintaining secure cloud environments.

The Senior Cloud Security Engineer role at Aurora Innovation centers on building and maintaining resilient, automated security systems that support the company’s self-driving technology. Based in San Francisco, this position works within the Cloud Security engineering team and collaborates closely with both infrastructure and application groups. Day-to-day work covers a mix of infrastructure security, workload protection, and hardening CI/CD pipelines. The team uses a blend of open-source tools, such as OPA, Trivy, and Spire, alongside commercial products, with an emphasis on custom automation that strengthens Aurora’s security posture. Deciding when to adopt off-the-shelf solutions or develop new ones is part of the job. Key Responsibilities Secure cloud environments by: Managing IAM roles and policies Enforcing security controls Building security boundaries for resources and services Providing security guidance for Cloud and Kubernetes Create automation to address security challenges at their source Design, build, and configure security infrastructure on platforms such as AWS, Azure, or GCP Work with cross-functional teams to implement and maintain security best practices This position values hands-on problem solving, a thoughtful approach to tool selection, and a collaborative mindset. The work directly supports Aurora’s mission to deliver safe and efficient self-driving solutions.

At Lyft, we are dedicated to connecting people and creating a community where every team member feels valued and empowered to reach their full potential.As a pivotal player in transforming how our communities move, Lyft's engineering team is rapidly expanding. We are seeking passionate Software Engineers specialized in Security to join our dynamic Security team. Together, we will enhance our ability to deliver secure services at scale.Lyft is entrusted with the sensitive information of both drivers and passengers, and we take the responsibility of safeguarding that data seriously. Our Security team spearheads initiatives across the organization to protect our systems and uphold user trust.Our work encompasses designing and building a robust security architecture, collaborating with various teams during the development and launch of new products, anticipating potential challenges, and managing security incidents effectively. Our impact spans the entire organization, covering all aspects of the technology stack, including infrastructure, web applications, mobile apps, IT, and even autonomous vehicles. We adopt an engineering-focused approach to security, aiming to automate and streamline our processes while ensuring frequent updates. Explore more about our innovations on our blog at https://eng.lyft.com/tagged/security.The Cloud Security team is dedicated to enhancing Lyft's security posture by architecting a comprehensive security model tailored for our cloud infrastructure, protecting both our employees and intellectual property.As a Senior Software Engineer, you will play a crucial role in shaping this team and driving high-impact security initiatives. Your responsibilities will include leading security reviews, implementing detection measures, addressing vulnerabilities, enforcing the principle of least privilege, and establishing secure configurations for our multi-cloud and container environments.

Join Perplexity as a Senior Cloud Security Engineer and play a pivotal role in transforming how users search and interact with the internet. As a key member of our innovative security team, you will spearhead initiatives to construct and sustain secure and scalable cloud infrastructure, enabling our engineers to innovate swiftly and securely.Core ResponsibilitiesCollaborate with infrastructure and engineering teams to embed security measures into development processes and advocate for secure-by-default practices.Develop Terraform modules that incorporate essential security features, including logging, encryption, and automated threat detection.Implement cloud-native detection capabilities utilizing AWS GuardDuty, Security Hub, and tailor-made detection rules to uncover credential breaches, crypto-mining, and lateral movements.Ensure compliance with SOC 2 Type II and ISO 27001 by automating the collection of cloud control evidence.Conduct security assessments of cloud resource configurations using tools like AWS Config and Open Policy Agent, addressing discrepancies in line with CIS Benchmarks and internal security policies.Fortify CI/CD and supply chain pipelines through controls such as artifact signing, secret scanning, and dependency monitoring.Implement zero trust principles via stringent network segmentation, authentication, and authorization across cloud environments.Engage in security on-call rotation, responding to security alerts and incidents for prompt resolution and root cause analysis.

CoreWeave is seeking a Security Engineering Manager to lead the Platform Security team. This position is based in Livingston, NJ, New York, NY, Sunnyvale, CA, Bellevue, WA, or San Francisco, CA. The team’s mission is to embed security into CoreWeave’s Kubernetes-based platform and public cloud environments, supporting high-performance infrastructure for AI and machine learning workloads. Role overview This manager will oversee and expand the Platform Security engineering team, reporting to the Senior Director of Security Foundations. The focus is on hands-on leadership and technical execution, with an emphasis on building and implementing security controls rather than policy development. The role requires close collaboration with Infrastructure, Platform Engineering, Site Reliability Engineering, and other security teams to ensure security measures keep pace with business growth and evolving needs. What you will do Lead and grow the Platform Security engineering team. Integrate security into Kubernetes infrastructure and public cloud platforms such as AWS, GCP, and Azure. Define and execute strategies for cloud security posture, workload isolation, platform guardrails, image integrity, and multi-cloud security. Develop and implement security controls across CoreWeave’s infrastructure. Work closely with other technical teams to align platform security with business needs. The Platform Security team The Platform Security team at CoreWeave engineers systems that enforce security at the infrastructure layer. Their work spans both CoreWeave’s own Kubernetes-based platform and third-party public cloud environments. The team supports GPU-accelerated infrastructure for demanding AI and machine learning workloads, ensuring that both customer and internal services remain secure as CoreWeave’s global presence expands.

As digital transformation accelerates, the need for robust cloud security solutions becomes vital. Britive stands at the forefront of this evolving landscape, offering an innovative privileged access management platform designed to deliver comprehensive Privileged Access Visibility, Dynamic Privilege Management, and Secrets Governance across diverse cloud environments, platforms, and SaaS applications.Our cutting-edge, patent-pending technology is already in use by numerous Fortune 500 companies, solidifying our reputation as one of the most promising startups in the Cloud Security sector. Founded by seasoned veterans in the CyberSecurity field, Britive is supported by leading venture capital firms, ensuring a solid foundation for growth and innovation.About YouYou are a dedicated Software Engineer eager to create and enhance our multi-tenant SaaS applications on the AWS platform. With a solid software engineering foundation and an in-depth understanding of AWS tools and services, you are ready to contribute from day one. Your positive, proactive attitude and enthusiasm for delivering technical solutions in a dynamic startup environment will be key to your success.Your ImpactKey Responsibilities:Design and develop a large-scale application stack operating on AWS.Collaborate with cross-functional teams to implement new features and enhancements.Maintain and optimize existing systems for improved performance and scalability.Ensure high-quality code through best practices and thorough testing.

Join Hive as a Cybersecurity Engineer and play a pivotal role in fortifying our security infrastructure. We are seeking a proactive and skilled individual with a strong background in information security. In this role, you will be responsible for safeguarding sensitive company data, managing potential security incidents, and implementing robust security and data governance measures. You will collaborate across various teams to lead security operations, conduct risk assessments, respond to incidents, and maintain security projects. Our ideal candidate is passionate about AI and committed to enhancing our security framework to meet evolving challenges.

RDQ226R609 - This position is open to candidates located anywhere in the United States. At Databricks, we are passionate about empowering data teams to tackle the world’s most challenging issues, from detecting security threats to advancing cancer drug development. We achieve this by building and operating an exceptional data and AI infrastructure platform, allowing our clients to concentrate on the critical challenges that define their missions. As a key member of the Security Continuous Monitoring team, you will be instrumental in developing and scaling Databricks Security systems on our platform. Your responsibilities will include designing, testing, and implementing data pipelines to evaluate the security configurations of Cloud, SaaS, and on-premise tools. You will create and deploy reliable supporting security tools for managing and assessing security posture, integrate with third-party applications, and engage with cloud APIs (AWS, Azure, GCP, Terraform). You will lead and oversee projects from conception to completion, facilitating data collection and integration with our vulnerability and threat detection initiatives. In this role, you will be an individual contributor on the Security Continuous Monitoring team, reporting directly to the Director of Continuous Monitoring.

Location: San Francisco Transforming Security for Developers.At Aikido, we recognize that traditional security tools are outdated and cumbersome, often impeding development workflows instead of enhancing them. Our mission is to create developer-centric security solutions that effectively minimize risk while allowing teams to focus on delivering exceptional software. We prioritize what truly matters, automating the rest to streamline the development process.Since our inception in 2022, we have gained significant traction, securing $85 million in funding and achieving unicorn status. Our vision is to build self-securing software, and we invite you to be part of our all-star team that thrives on innovation, ownership, and impact.We are seeking a dynamic Cloud Advocate to strengthen Aikido's presence within the cloud and security communities. This pivotal role acts as a bridge between our product team and the community, helping engineers and security teams grasp the significance of our innovations. You will translate intricate concepts related to code, cloud, and runtime security into engaging content and foster meaningful dialogues within the community.If you have a background as a cloud engineer, DevOps engineer, or in a technical customer-facing capacity, and you possess a passion for knowledge sharing and community engagement, we would love to hear from you.

At Thinking Machines Lab, our mission is to empower humanity by advancing collaborative general intelligence. We are dedicated to building a future where everyone can access the knowledge and tools necessary to harness AI for their unique needs and objectives.We are a team of scientists, engineers, and builders who have developed some of the most widely used AI products, including ChatGPT and Character.ai, and contributed to open-weight models like Mistral, along with popular open-source projects such as PyTorch, OpenAI Gym, Fairseq, and Segment Anything.About the RoleWe are seeking an Infrastructure Engineer to take charge of evolving the security infrastructure that supports our foundational models. In this pivotal role, you will collaborate across computing, storage, networking, and data platforms to ensure our systems remain secure, reliable, and scalable. You will design controls, architecture, and tooling that embed security into the platform's core functionalities. Working closely with research and product teams, you will enable them to operate swiftly while safeguarding our models, data, and environments.Note: This is an "evergreen role" that we maintain for ongoing interest. While we receive numerous applications, there may not always be an immediate position that perfectly matches your skills and experience. We encourage you to apply, as we continuously assess applications and reach out to candidates when new opportunities arise. Feel free to reapply if you gain more experience, but please refrain from applying more than once every six months. Additionally, we occasionally post openings for specific roles to meet project or team-specific needs, and in those cases, you are welcome to apply directly in conjunction with this evergreen role.What You’ll DoDesign security patterns for platforms and services, including network segmentation, service-to-service authentication, RBAC, and policy enforcement in Kubernetes and cloud environments.Oversee identity, access, and secrets management for users and services: workload and cross-cloud identity, least-privilege IAM, and secrets management.Create secure platforms for data ingestion, processing, and curation, encompassing classification, encryption, access controls, and safe sharing practices across teams.Develop threat models and review designs with researchers and engineers to facilitate safe and scalable feature launches.Automate security checks and implement guardrails: policy-as-code, secure infrastructure baselines, CI/CD validation, and tools that streamline secure operations.

About UsXOXO AI is an innovative research laboratory dedicated to shaping the future of intelligence for everyday life. Our dynamic team of skilled engineers, designers, and researchers is committed to discovering transformative solutions for challenges that extend beyond the workplace.Following a significant breakthrough in infrastructure, architecture, and model layers, we are on the lookout for dedicated builders to develop the interface and application layer that will actualize our visionary goals.About the RoleWe are seeking a seasoned Security Engineer to safeguard our systems and uphold user trust. Your role will involve fortifying our cloud infrastructure, enforcing access restrictions, and establishing tools and response mechanisms that ensure security as we scale. Collaborating with the founders and our engineering team, you will embed security as a fundamental principle in our development processes.What You’ll DoCollaborate with engineering, product, and research teams to integrate security throughout the development lifecycle, including threat modeling, design reviews, and secure defaults.Strengthen cloud infrastructure and enforce network topology standards such as subnets, firewalls, routing, and organizational security policies.Implement isolation and segmentation strategies to limit potential damage and prevent lateral movement.Develop and maintain security tools and automation for engineers, including CI/CD checks, scanning, and guardrails, driving findings to remediation.Enhance observability, detection, and incident response for security-related events such as intrusions, abuse patterns, DDoS attacks, and bots, ensuring rapid containment.Design and manage identity and access management systems for both users and services, alongside third-party integration controls, prioritizing private connectivity and the principle of least privilege.

About Juniper SquareAt Juniper Square, our mission is to revolutionize access to private markets. We are transforming the investment landscape for privately owned assets such as commercial real estate, private equity, and venture capital, which represent a significant portion of the financial ecosystem yet remain elusive to many. By digitizing these markets, we are enhancing efficiency, transparency, and accessibility. If you are passionate about leveraging technology to improve market dynamics and want to contribute to a mission-driven organization, we invite you to join us.We offer flexible working arrangements, from fully remote opportunities to full-time positions in our physical offices. Our digital-first approach fosters collaboration among teams across 27 U.S. states, 2 Canadian provinces, India, Luxembourg, and England, with physical office locations in San Francisco, New York City, Mumbai, and Bangalore for those who prefer an in-office environment.Your RoleAs a Senior Corporate Security Engineer at Juniper Square, you will utilize your extensive expertise in IT and cloud security. This is an exciting opportunity to enhance security tools and processes, identify potential threats, respond to incidents, and lead effective remediation efforts. You will play a pivotal role in establishing a robust security team and program aimed at minimizing information security risks across the organization.Key ResponsibilitiesWe are seeking a hands-on technical security leader with deep knowledge of cloud and IT security. Responsibilities include:Developing, training, and monitoring best security practices across application, infrastructure, and endpoint security, including vulnerability management and system configuration.Building and overseeing security tools such as EDR, SIEM, DLP, CASB, and ZTNA.Identifying and addressing high-impact vulnerabilities across the corporate attack surface.Defining and enforcing secure configuration baselines for macOS, Windows, Linux, and mobile device fleets.Collaborating with IT to integrate security into device provisioning, identity lifecycle management, and offboarding processes.

Role OverviewAt Variance, we are at the forefront of teaching machines to execute high-stakes judgment calls on a large scale. This involves developing AI agents that navigate the complex domains of risk investigations, fraud detection, and identity verifications.Our San Francisco-based team is small yet exceptionally talented, comprising former founders and specialists from leading AI laboratories. We cater to an impressive clientele, including Fortune 500 companies, global marketplaces, and regulated financial institutions. If you are passionate about taking ownership, working swiftly, and collaborating closely with founders, you will thrive in our environment.We are seeking a Security Engineer to help establish a robust security foundation. You will collaborate across product, infrastructure, and internal systems to ensure that Variance is secure by design, enabling us to meet the rigorous standards needed to deploy AI in critical workflows for the world’s largest corporations.

About Cogent SecurityCogent Security is at the forefront of cybersecurity innovation, leveraging Applied AI to develop next-generation AI agents. In an era where cyber attacks evolve rapidly, our AI Taskforce analyzes vast amounts of enterprise data to proactively address vulnerabilities and prevent critical breaches.We combine pioneering research with practical execution, ensuring that our innovative solutions meet real-world challenges. Our Cogent Research division acts as our dedicated AI lab, driving the development of advanced security workflows.Since our emergence from stealth mode, we have rapidly grown, collaborating with Fortune 500 companies to secure complex production environments globally.Supported by Greylock, we have gathered a team of top talent from renowned institutions and leading organizations in the AI and cybersecurity sectors.About the RoleAs an Agent Engineer at Cogent Security, you will be pivotal in designing, building, and deploying critical AI agents tailored for complex client environments. Your role is highly cross-functional, involving direct collaboration with customers to understand their unique needs, adapting our platform accordingly, and iterating on scalable solutions to handle millions of real-world security events.You will manage projects from inception to deployment, including data onboarding and integrating feedback into our core agent platform. Your contributions will shape how AI agents detect threats, triage incidents, and automate security workflows for some of the most sophisticated organizations worldwide.This position is ideal for engineers who excel in dynamic environments, enjoy tackling complex technical challenges, and wish to see the tangible impact of their work.

Join Discord, a platform cherished by over 200 million users monthly, where gaming is at the heart of our community. With more than 90% of our users engaging in games, they collectively spend 1.5 billion hours enjoying thousands of unique titles on Discord every month. Our commitment is to enhance the gaming experience by facilitating enjoyable interactions before, during, and after gameplay.At Discord, we empower individuals to connect within diverse communities, and our users trust us to safeguard their conversations. Our Platform Security Engineering team is dedicated to fortifying the systems that underpin Discord, ensuring that the "secure way" becomes the "easy way." We are seeking a Staff Software Engineer to drive this mission forward through your security expertise, software development skills, and operational excellence. In this technical leadership role, you will identify and pursue impactful opportunities to mitigate security risks across our Engineering teams. You will design and implement user-friendly "paved paths" for managing identities, deploying code, configuring cloud infrastructure, and operating services effectively.If you are a security engineer with a profound curiosity, keen on tackling technically and socially complex projects, and motivated to enhance security and privacy at Discord, we encourage you to explore this opportunity further!

At Asana, we are committed to proactively mitigating security risks by developing core libraries, platforms, and frameworks that ensure robust security across our organization. We are seeking a highly skilled Senior Software Engineer to become a vital member of our newly established Security Development team. This team is dedicated to crafting resilient, secure-by-default solutions aimed at safeguarding Asana's infrastructure and products. Rather than acting as gatekeepers, we create guardrails that empower our engineering teams to operate swiftly and securely. Your role will involve engineering scalable preventative controls and developing platforms and frameworks that eliminate systemic risks. This position is based in our San Francisco office with a hybrid work schedule, requiring in-office attendance on Mondays, Tuesdays, and Thursdays, while Wednesdays offer a work-from-home option. Fridays may also allow for remote work, depending on your projects and team dynamics. If you are selected for an interview, your recruiter will provide additional insights on the in-office expectations.

The OpportunityBecome a vital part of safeguarding a platform that empowers millions to overcome musculoskeletal pain. At Hinge Health, our engineering team is pioneering AI-assisted development, incorporating cutting-edge technologies such as AI-driven code generation, automated pull request reviews, agent sandboxing, and MCP gateway integrations. We are in search of a Lead Security Engineer to establish robust security frameworks, tools, and standards that allow us to deploy confidently. You will operate at the essential intersection of cloud security, AI-driven engineering, and identity & access management, collaborating closely with teams in Application Security, Site Reliability Engineering (SRE), and Research & Development (R&D) Engineering to craft and implement security-by-design principles across our AWS infrastructure, CI/CD pipelines, and developer tools. This is your opportunity to profoundly influence the healthcare sector's security landscape by ensuring the highest levels of compliance and privacy while facilitating rapid and secure engineering workflows. Who You AreA Security-First Thinker: You inherently design systems that prioritize security from the ground up and understand how to harmonize security rigor with engineering speed.An AI-Savvy Engineer: You are invigorated (not daunted) by the swift integration of AI in development and view it as a chance to innovate security frameworks.A Trust Builder: You effectively convey complex ideas across engineering, compliance, and leadership teams — crafting clear, straightforward technical proposals that foster consensus.A Learn-it-all: You remain proactive about emerging threats and constantly adapt your strategies — from adversarial machine learning to supply chain vulnerabilities in AI pipelines.A Leader at All Levels: You are hands-on with code and architecture but also guide others and assist the team in organizing around quantifiable outcomes.

Join Perplexity, a pioneering organization at the forefront of AI and technology, as we seek a talented and proactive Offensive Security Engineer. In this critical role, you will be part of our innovative security team, adopting an adversarial mindset to fortify our infrastructure, applications, and AI systems. Your expertise will drive red team operations, penetration tests, and attack simulations across various environments—including our cloud infrastructure, web, and mobile applications. You will actively identify vulnerabilities before they can be exploited by adversaries, collaborating closely with engineering teams to implement effective remediations.Key ResponsibilitiesPlan and execute red and purple team engagements, simulating advanced threat actors across our cloud services (AWS, Kubernetes), endpoints, and application surfaces.Conduct thorough and ongoing penetration testing of web applications, APIs, mobile clients, browser extensions, cloud infrastructure, and internal services.Evaluate AI/ML-specific attack surfaces, tackling challenges such as prompt injection, model exfiltration, agent abuse, tool exploitation, and security boundaries of MCP.Develop and maintain custom offensive security tools, exploits, and automation to enhance the efficiency and scope of security testing.Perform open-scope adversary simulations to test detection and response capabilities, working closely with the defensive security team.Lead threat modeling sessions with engineering teams to identify and prioritize potential attack vectors in new features and architectures.Provide clear and actionable insights to both technical and executive audiences, collaborating with engineering teams to validate remediation efforts.Contribute to securing CI/CD pipelines, ensuring supply chain integrity, and managing secrets through offensive assessments.Remain informed about emerging attack techniques, vulnerability research, and adversarial tactics, bringing fresh insights to Perplexity's security strategy.