Principal Infrastructure Security Engineer
Tasks
- Architect supply chain security controls
- Configure SDN tenant isolation
- Configure VPC interface endpoints
- Deliver customer managed encryption keys
- Deploy host level controls with eBPF
- Deploy just in time access models
- Design network hardware isolation
- Eliminate static credentials and API keys
- Enforce mutual TLS for service communications
- Establish roots of trust
- Harden BMC administration
- Implement IPSec VPN
- Implement ephemeral credentials
- Implement immutable logging
- Implement secrets as a service platform
- Implement workload identity
- Lead zero trust architecture transition
- Produce security RFCs
- Secure CI CD build environments
- Secure VPC peering
- Secure cloud control plane
- Secure hypervisor and VM layer
- Serve as security executive advisor
- Synthesize risks into engineering action plans
- Use Falco for runtime threat detection
Perks/Benefits
- 401k match
- Cell phone stipend
- Commuter benefits
- Global travel insurance
- HSA contributions
- Mental health and wellness support
- Paid Holidays
- Paid parental leave
- Paid time off
- Professional development
- Tuition reimbursement
- Volunteer time off
Skills/Tech-stack
API Key | API Key Security | Access Management | BMC Hardening | CI/CD | CI/CD Security | CMEK | Cloud Control | Cloud Control Plane | Cloud Control Plane Security | Control plane security | Customer-managed encryption keys | EBPF | Encryption | Encryption Keys | Ephemeral credentials | Falco | Firmware security | GitLab | Granular Machine Identities | HashiCorp Vault | Hypervisor Security | IPSec VPN | Identity and Access Management | Identity and access | Immutable Logging | Just-in-Time | Kernel lockdown | Linux Kernel | MTLS | Machine identities | Mutual TLS | OAuth 2.0 | OIDC | OVN | Privileged Access | Privileged Access Management | Root-of-trust | SDN | SPIFFE | SPIRE | Secrets management | Secure boot | Supply Chain | Supply chain security | TPM | Trusted Platform Module | Trusted platform | VM isolation | VPC Interface Endpoints | VPC Peering | Vault | Workload Identity | Zero Trust
Education
Bachelor of Engineering | Bachelor of Science | Master of Science | PhD
Regions
Countries
States
Related jobs
-
Mid-level Full TimeCosta Mesa, California, United States; Seattle, …7h ago
-
Mid-level Full TimeCosta Mesa, California, United States; Seattle, …7h ago
-
Cyber Security Engineer USD 104K-166K800-53 | AWS | Ansible | Asset Manager | Atlassian Asset ManagerSenior-level Full TimeUnited States7h ago
-
Product Security Engineer USD 135K-170KAccess Control | Application Security | CI/CD | Cloud Security | Continuous DeliveryMid-level Full TimeBoston12h ago
-
Senior Security Engineer (AI Platform) USD 130K-160KAPI Key | API key management | Agentic AI | Anomaly Detection | Cloud ComputingCoworking stipend | Destination summits | Flexible time off | Health insurance coverage | Paid parental leaveSenior-level Full TimeUnited States - Remote R13h ago
-
Senior Product Security Engineer USD 170K-215KAuthentication | Authorization | Automation | CI/CD | CSPMSenior-level Full TimeBoston, MA13h ago
-
Staff Security Engineer, PSIRT USD 185K-230KAWS IAM | Amazon EKS | Android security | Attack surfaces | AuthenticationCaregiver support | Company holidays | ERGs | Fertility and family benefits | Flexible PTOSenior-level Full TimeRemote - USA R13h ago
-
Senior Technical Support Engineer USD 102K-126KAPI Authentication | AWS | Active Directory | Alerting | AnsibleDental insurance | Flexible vacation policy | Health insurance | Parental leave | Professional growth opportunitiesSenior-level Full TimeUS, Remote R14h ago
-
Software Engineer, Connected Warfare (Active Clearance) USD 166K-253KAWS | Azure | C++ | CI/CD | Data AnalysisSenior-level Full TimeHonolulu, Hawaii, United States14h ago
-
AI Assisted Development | CSS | Docker | Docker Compose | Elasticsearch401k contribution | AD and D | Dental insurance | HSA contribution | Health insuranceSenior-level Full TimeAnnapolis Junction, MD14h ago
-
Manager, Mission Software Engineering, EW USD 191K-253K*nix | CI/CD | Container Orchestration | Docker | Electronic WarfareSenior-level Full TimeCosta Mesa, California, United States15h ago
-
API Security | AWS Secrets | AWS Secrets Manager | Access Management | Application Security401k matching | Employer Matching 401k Contributions | Life and disability coverage | Medical/Dental/Vision insurance | Parental leaveSenior-level Full TimeAustin - TX R15h ago
-
Agile | Bash | CI/CD | Confluence | Containerization401k match | Dental insurance | Medical insurance | Paid Holidays | Paid time offSenior-level Full TimeFort Meade, MD17h ago
-
Software Engineer Junior Level USD 120K-150KAWS | Ansible | Apache NiFi | Docker | Elasticsearch401k matching | Career development | Dental insurance | Federal Holidays | Flexible spending accountEntry-level Full TimeLinthicum, MD, US17h ago
-
Mid-level Full TimeReston, Virginia, United States18h ago
-
Ansible | CI/CD | CIS Benchmarks | Ceph | Config mapsSenior-level Full TimeManassas, VA, United States18h ago
-
Software Engineer - Full Stack Developer USD 135K-206KAWS | Accumulo | Agile | Ansible | Ansible AutomationActive Top Secret clearance required | On-site workMid-level Full TimeSan Antonio, TX19h ago
-
Access Management | Audit Logging | Authorization | Cedar | FIDO2Equity compensation | Health benefitsSenior-level Full TimeSan Mateo, CA, United States R20h ago
-
Access Management | Access reviews | Active Directory | Agile | Azure Active DirectoryHybrid work scheduleSenior-level Full TimePortsmouth, New Hampshire, United States R20h ago
-
DevSecOps Engineer | W2 Only | Longterm USD 120K-160KAPI Management | Amazon EKS | Amazon Web Services | Application Firewall | CI_CDAgile team | Onsite 3 days per weekSenior-level Contract Full TimeTulsa, OK, United States20h ago
-
Adversarial Machine Learning | Anomaly Detection | Cloud Security | Machine Learning | PythonSecurity clearance premiumsMid-level Full TimeNaples, United States21h ago
-
Senior Cloud Software Engineer USD 135K-195KAPI Design | AWS | Alerting | Artifact governance | AzureSecurity clearance supportSenior-level Full TimeDayton, OH21h ago
-
Senior-level Full TimeDayton, OH21h ago
-
IT Administrator USD 90K-131KAPI Integration | Automation and response | CI/CD | Cloud platform | DNSMid-level Full TimeKansas City, MO SOC22h ago
-
Security Engineer USD 117K-152KAPI Integration | Automation and response | CI/CD | Cloud Security | DNSOnsite workMid-level Full TimeKansas City, MO SOC22h ago