Cloud Security Engineer

About the Role mercor is hiring a Cloud Infrastructure Security Engineer in San Francisco or New York City. This role focuses on protecting cloud-based systems and data across the company. The engineer will design, implement, and monitor security controls to defend cloud infrastructure against threats. What You Will Do Develop and maintain security measures for cloud environments Monitor cloud infrastructure for vulnerabilities and incidents Respond to security threats and support incident investigations Work to ensure compliance with industry security standards Contribute expertise to strengthen overall security posture Location This position is based in San Francisco or New York City.

Role Overview mercor is hiring a Cloud Infrastructure Security Engineer in San Francisco. This role focuses on protecting cloud systems, maintaining data integrity, and applying security protocols to guard against new threats. Collaboration with cross-functional teams is central to designing and maintaining secure cloud environments.

At Thinking Machines Lab, our mission is to empower humanity by advancing collaborative general intelligence. We are dedicated to building a future where everyone can access the knowledge and tools necessary to harness AI for their unique needs and objectives.We are a team of scientists, engineers, and builders who have developed some of the most widely used AI products, including ChatGPT and Character.ai, and contributed to open-weight models like Mistral, along with popular open-source projects such as PyTorch, OpenAI Gym, Fairseq, and Segment Anything.About the RoleWe are seeking an Infrastructure Engineer to take charge of evolving the security infrastructure that supports our foundational models. In this pivotal role, you will collaborate across computing, storage, networking, and data platforms to ensure our systems remain secure, reliable, and scalable. You will design controls, architecture, and tooling that embed security into the platform's core functionalities. Working closely with research and product teams, you will enable them to operate swiftly while safeguarding our models, data, and environments.Note: This is an "evergreen role" that we maintain for ongoing interest. While we receive numerous applications, there may not always be an immediate position that perfectly matches your skills and experience. We encourage you to apply, as we continuously assess applications and reach out to candidates when new opportunities arise. Feel free to reapply if you gain more experience, but please refrain from applying more than once every six months. Additionally, we occasionally post openings for specific roles to meet project or team-specific needs, and in those cases, you are welcome to apply directly in conjunction with this evergreen role.What You’ll DoDesign security patterns for platforms and services, including network segmentation, service-to-service authentication, RBAC, and policy enforcement in Kubernetes and cloud environments.Oversee identity, access, and secrets management for users and services: workload and cross-cloud identity, least-privilege IAM, and secrets management.Create secure platforms for data ingestion, processing, and curation, encompassing classification, encryption, access controls, and safe sharing practices across teams.Develop threat models and review designs with researchers and engineers to facilitate safe and scalable feature launches.Automate security checks and implement guardrails: policy-as-code, secure infrastructure baselines, CI/CD validation, and tools that streamline secure operations.

At Lyft, we are dedicated to connecting people and creating a community where every team member feels valued and empowered to reach their full potential.As a pivotal player in transforming how our communities move, Lyft's engineering team is rapidly expanding. We are seeking passionate Software Engineers specialized in Security to join our dynamic Security team. Together, we will enhance our ability to deliver secure services at scale.Lyft is entrusted with the sensitive information of both drivers and passengers, and we take the responsibility of safeguarding that data seriously. Our Security team spearheads initiatives across the organization to protect our systems and uphold user trust.Our work encompasses designing and building a robust security architecture, collaborating with various teams during the development and launch of new products, anticipating potential challenges, and managing security incidents effectively. Our impact spans the entire organization, covering all aspects of the technology stack, including infrastructure, web applications, mobile apps, IT, and even autonomous vehicles. We adopt an engineering-focused approach to security, aiming to automate and streamline our processes while ensuring frequent updates. Explore more about our innovations on our blog at https://eng.lyft.com/tagged/security.The Cloud Security team is dedicated to enhancing Lyft's security posture by architecting a comprehensive security model tailored for our cloud infrastructure, protecting both our employees and intellectual property.As a Senior Software Engineer, you will play a crucial role in shaping this team and driving high-impact security initiatives. Your responsibilities will include leading security reviews, implementing detection measures, addressing vulnerabilities, enforcing the principle of least privilege, and establishing secure configurations for our multi-cloud and container environments.

Future builds digital personal training experiences that connect people with expert coaches through a seamless app. Since 2017, the company has grown from an idea in a San Francisco café to the largest provider of personal training sessions in the US. In January 2025, Future merged with Autograph, founded by Tom Brady, and is expanding its reach through new partnerships and AI-driven coaching tools. Future continues to invest in technology, grow its coaching roster, and form partnerships with leading athletes. The team is focused on shaping the future of fitness by making expert coaching accessible to more people. Role overview This remote Cloud Infrastructure Engineer position centers on designing, building, and maintaining the cloud platform that underpins Future’s products. The role is hands-on and impacts daily operations for engineering teams, focusing on reliability, security, and efficiency. What you will do Develop and maintain infrastructure-as-code best practices using AWS CDK, keeping cloud resources version-controlled, repeatable, and peer-reviewed. Design and manage AWS infrastructure components, such as ECS, RDS Aurora, API Gateway, S3, and networking, with attention to reliability, performance, and cost efficiency. Build and support an observability stack, including structured logging, distributed tracing, and monitoring, to provide insights into system performance. Requirements Strong experience with AWS and a focus on building resilient, automated systems. Commitment to operational excellence, security, and cost efficiency. Emphasis on enabling engineering teams to deliver work quickly and confidently.

Join Scale AI as a talented Infrastructure Security Engineer, where you'll play a pivotal role in safeguarding the integrity and security of our platform. This position focuses on securing expansive cloud environments, managing and fortifying various compute clusters, and reviewing infrastructure as code. Your proficiency in cloud security, infrastructure automation, and advanced security practices will be crucial in upholding and advancing our security framework.Your responsibilities include:Securing infrastructure across major cloud hosting platforms (e.g., AWS, Azure, GCP).Implementing and maintaining comprehensive security configurations and policies for cloud environments.Conducting regular security assessments and audits to identify vulnerabilities and propose enhancements.Developing and enforcing security best practices for infrastructure automation and orchestration.Collaborating with Developer Experience, IT, and product teams to integrate security into every phase of the infrastructure lifecycle.Reviewing and securing infrastructure as code (e.g., Terraform, CloudFormation).Mentoring team members on infrastructure security best practices and emerging threats.

Join Perplexity as a Senior Cloud Security Engineer and play a pivotal role in transforming how users search and interact with the internet. As a key member of our innovative security team, you will spearhead initiatives to construct and sustain secure and scalable cloud infrastructure, enabling our engineers to innovate swiftly and securely.Core ResponsibilitiesCollaborate with infrastructure and engineering teams to embed security measures into development processes and advocate for secure-by-default practices.Develop Terraform modules that incorporate essential security features, including logging, encryption, and automated threat detection.Implement cloud-native detection capabilities utilizing AWS GuardDuty, Security Hub, and tailor-made detection rules to uncover credential breaches, crypto-mining, and lateral movements.Ensure compliance with SOC 2 Type II and ISO 27001 by automating the collection of cloud control evidence.Conduct security assessments of cloud resource configurations using tools like AWS Config and Open Policy Agent, addressing discrepancies in line with CIS Benchmarks and internal security policies.Fortify CI/CD and supply chain pipelines through controls such as artifact signing, secret scanning, and dependency monitoring.Implement zero trust principles via stringent network segmentation, authentication, and authorization across cloud environments.Engage in security on-call rotation, responding to security alerts and incidents for prompt resolution and root cause analysis.

Join Our Innovative TeamThe Applied Engineering team at OpenAI is dedicated to bridging the gap between research, engineering, product, and design, delivering cutting-edge AI technology to consumers and businesses alike.As a pivotal member of our team, you will manage the core infrastructure that underpins products such as ChatGPT and our API. This includes overseeing our Kubernetes clusters, infrastructure deployment, networking stack, cloud abstractions, and more.Our mission is to learn from our deployments and ensure the responsible and safe use of AI technology. We place a higher priority on safety than on unchecked growth.About Your RoleAs a vital contributor to the cloud infrastructure team, you'll be responsible for constructing and maintaining infrastructure abstractions that facilitate swift and scalable product delivery.This position is based in our San Francisco, CA office.Your Responsibilities:Architect and develop robust development and production platforms that ensure reliability and security at scale.Optimize our infrastructure for scalability to meet future demands.Foster a diverse, equitable, and inclusive work culture that encourages open communication and challenges conventional thinking.Participate in an on-call rotation to maintain the reliability of the systems we build and respond to critical incidents as necessary.You Will Excel in This Position If You:Possess over 5 years of experience in building core infrastructure.Have extensive experience with orchestration systems such as Kubernetes at scale.Are skilled in creating abstractions over cloud platforms.Take pride in developing and managing scalable, reliable, and secure systems.Thrive in environments characterized by ambiguity and rapid change.This role is exclusively located at our San Francisco headquarters. We offer relocation assistance to qualified candidates.

Astranis is revolutionizing satellite technology for high orbits, pushing the boundaries of human exploration into the solar system. Our advanced satellites deliver dedicated, secure networks to a diverse clientele that includes large enterprises, sovereign governments, and the US military. With five satellites successfully in orbit and a robust pipeline of launches ahead, we are addressing a significant backlog of over $1 billion in commercial contracts.Astranis is the trusted satellite communications partner for clients demanding exceptional uptime, data security, network visibility, and tailored solutions. Having secured over $750 million in funding from prestigious investors such as Andreessen Horowitz, Blackrock, and Fidelity, we proudly employ a talented team of 450 engineers and innovators. Our state-of-the-art headquarters spans 153,000 sq. ft. in Northern California, USA.Position: Cloud Infrastructure EngineerAs a Cloud Infrastructure Engineer at Astranis, you will play a critical role in designing and implementing infrastructure that is as essential as the satellites it supports, ensuring 24/7 operational reliability. Your expertise will underpin the platforms that Mission Operators rely on to effectively command our satellites and maintain situational awareness. You will also influence our strategic approach to leveraging cloud technology for hosting key applications and enhancing developer productivity.This position supports both commercial and U.S. Government initiatives.

Join Our Mission at WatershedWatershed is a pioneering enterprise sustainability platform, trusted by industry leaders such as Airbnb, Carlyle Group, FedEx, Visa, and Dr. Martens. Our platform empowers organizations to manage climate and ESG data effectively, generate audit-ready metrics for voluntary and regulatory compliance including CSRD, and actively pursue significant decarbonization efforts. We are seeking passionate team members who are eager to contribute to product development in a mission-driven startup environment, and who are excited to help shape a thriving team culture.With offices in San Francisco, New York, Denver, London, Paris, Berlin, Sydney, Mexico City, and a robust remote workforce across the US and Europe, we aim to create a dynamic and inclusive workplace that welcomes your participation!Your RoleAre you passionate about developing both cutting-edge technology and high-performing teams? Watershed is scaling its world-class engineering team, and we’re looking for an Engineering Manager to lead our Cloud Infrastructure team. This team plays a critical role in enabling our growth by managing the foundational infrastructure that supports Watershed’s multi-region deployments on GCP.We seek a leader who will articulate an inspiring vision for the team, tackle a diverse array of complex challenges, and empower each engineer to achieve their best work. As one of the initial managers in a rapidly growing organization, you will not only influence engineering culture but also the broader culture at Watershed. Together with our leadership and HR teams, you will help foster a diverse, inclusive, and dedicated workforce.Key ResponsibilitiesLead the Cloud Infrastructure team as the primary manager, balancing people management, technical leadership, and product strategy.Inspire and guide the team through significant growth phases ($100M+), including recruiting new talent and adapting the team's vision and objectives as business needs evolve.Collaborate closely with engineering peers and cross-functional partners, including Security and Finance, to align direction, set priorities, and ensure seamless collaboration.

Role overview Crusoe Energy Systems, Inc. seeks a Staff Cloud Infrastructure Engineer to shape and support its cloud infrastructure, with a primary focus on VMware environments. This position is located in San Francisco, CA. What you will do Design, implement, and maintain scalable cloud infrastructure using VMware technologies. Work closely with team members to support cloud operations for Crusoe's energy solutions. Apply technical expertise to improve reliability and efficiency throughout cloud systems. The team Join a group of engineers committed to building and maintaining cloud platforms that support innovative energy projects.

The Senior Cloud Security Engineer role at Aurora Innovation centers on building and maintaining resilient, automated security systems that support the company’s self-driving technology. Based in San Francisco, this position works within the Cloud Security engineering team and collaborates closely with both infrastructure and application groups. Day-to-day work covers a mix of infrastructure security, workload protection, and hardening CI/CD pipelines. The team uses a blend of open-source tools, such as OPA, Trivy, and Spire, alongside commercial products, with an emphasis on custom automation that strengthens Aurora’s security posture. Deciding when to adopt off-the-shelf solutions or develop new ones is part of the job. Key Responsibilities Secure cloud environments by: Managing IAM roles and policies Enforcing security controls Building security boundaries for resources and services Providing security guidance for Cloud and Kubernetes Create automation to address security challenges at their source Design, build, and configure security infrastructure on platforms such as AWS, Azure, or GCP Work with cross-functional teams to implement and maintain security best practices This position values hands-on problem solving, a thoughtful approach to tool selection, and a collaborative mindset. The work directly supports Aurora’s mission to deliver safe and efficient self-driving solutions.

At Crusoe, we are committed to accelerating the abundance of energy and intelligence. Our mission is to develop the technology that empowers individuals to innovate boldly with AI, all while ensuring scalability, speed, and sustainability.Join the AI revolution with sustainable technology at Crusoe. In this role, you will spearhead significant innovations, have a direct impact, and collaborate with a team that is leading the charge in responsible and transformative cloud infrastructure.About the PositionWe are in search of a Senior Infrastructure Security Engineer to fortify the core of Crusoe Cloud, our specialized computing platform designed for AI and high-performance tasks. This role is dedicated to designing and integrating robust security measures into our global infrastructure, allowing clients to develop advanced models in a secure and trusted environment.You will work at the convergence of infrastructure, security, and reliability, crafting identity, network, and cloud security systems that can grow alongside a rapidly expanding cloud service provider.Key ResponsibilitiesDesign and implement security controls across the compute, networking, and storage layers of a global cloud platform.Promote Infrastructure-as-Code (IaC) standards (e.g., Terraform) to establish secure defaults, enforce immutability, and implement drift detection.Develop automated security guardrails integrated within CI/CD and deployment pipelines.Collaborate on a centralized Vault-as-a-Platform service for managing secrets, encryption keys, and internal PKI.Oversee certificate lifecycles (X.509, SSH) to facilitate secure machine-to-machine trust.Advocate for the adoption of short-lived, Just-In-Time (JIT) access models to minimize standing privileges and enhance auditability.Secure foundational network components, including global DNS architecture, service discovery, and network authentication systems.Design and uphold authentication controls for network infrastructure to ensure secure and monitored access.Collaborate closely with infrastructure, platform, and SRE teams to pinpoint and address security vulnerabilities in foundational systems.What You Bring8+ years of hands-on experience in infrastructure engineering, with a strong focus on security.Proficiency in cloud security principles and practices.Strong understanding of compliance frameworks and regulations.

Join Our Innovative TeamAt OpenAI, security is the cornerstone of our commitment to ensuring artificial general intelligence serves all of humanity. The Identity Infrastructure Engineering team is pivotal in this mission, crafting robust identity and access management solutions that safeguard our model weights, customer data, and essential systems across diverse cloud environments. Collaborating closely with teams across Applied Engineering, Research, IT, and Security, we deliver a secure and scalable platform that empowers permissioning, orchestration, and groundbreaking AI research.Your RoleAs a Software Engineer on our Identity Infrastructure Engineering team, you will play a crucial role in designing, deploying, and managing foundational security tools and infrastructure. This position involves leveraging a wide array of technologies to support multi-cloud deployments, ensuring our researchers and engineers can securely build, test, and scale transformative AI systems. We seek individuals who are technically adept, collaborative, and passionate about integrating secure-by-default principles throughout our technology stack.We invite Software Engineers eager to address challenges in:Identity & Access Management: Develop and sustain systems and interfaces that efficiently manage user and service identities, guaranteeing consistent, fine-grained access controls across various cloud providers and internal services.Multi-Cloud Security: Architect and implement tools that protect model weights, proprietary data, and sensitive assets, seamlessly operating within AWS, Azure, GCP, and future cloud environments.Automation & Tooling: Create robust frameworks, APIs, and CLI tools that automate ongoing security tasks (such as credential provisioning and rotation), allowing teams to focus on AI innovation without compromising security.In this position, you will:Develop new features for our IAM platform that integrate seamlessly with evolving cloud services, enabling teams to operate efficiently while adhering to security best practices.Lead security innovations by designing tools, processes, and frameworks that enhance our infrastructure.This role is primarily based in San Francisco, Seattle, or New York City, with remote work options considered. We embrace a hybrid work model, requiring three days in the office weekly, and provide relocation assistance for new hires.

About Crusoe Energy Systems Crusoe Energy Systems manages every layer of AI infrastructure, from energy generation to advanced computational resources. The team focuses on making AI infrastructure more efficient and environmentally conscious, addressing the growing global demand for computing power. Based in San Francisco, Crusoe brings together experts in energy, manufacturing, data center construction, and cloud services. Role Overview: Senior Software Engineer - Cloud Infrastructure This Senior Software Engineer position centers on designing and building cloud infrastructure management systems for Crusoe Cloud, a vertically integrated, AI-focused platform. The engineer will help deliver complete solutions that support the company’s business goals, including system planning, monitoring, deployment, and operations. The role involves hands-on work developing platforms, tools, and frameworks that emphasize reliability, scalability, operational efficiency, and ease of use. As Crusoe Cloud grows, this engineer will play a key part in streamlining infrastructure planning and management processes. What You Will Do Work closely with cross-functional teams to design and implement infrastructure management software and availability platforms for customers using Crusoe’s AI infrastructure. Help improve the reliability, scalability, and security of systems and platforms. Develop workflows that support business objectives and performance targets. Build and maintain high-performing, highly available cloud solutions to meet expanding infrastructure needs. Who Thrives Here Engineers who enjoy solving complex problems, move quickly, and want to work alongside a diverse, supportive team will find this role rewarding. Crusoe values collaboration and a shared drive to advance AI infrastructure. Location San Francisco, CA - US

We are seeking a talented and dedicated Staff Security Engineer to join our dynamic team at fal. In this role, you will be vital in enhancing our infrastructure's security posture while ensuring compliance with industry standards and best practices.Your expertise will contribute to designing, implementing, and maintaining robust security solutions that safeguard our systems and data. You will collaborate closely with cross-functional teams to identify vulnerabilities and develop effective mitigation strategies.

About Resolve AIAt Resolve AI, we are redefining software maintenance and production troubleshooting with our innovative, fully autonomous AI Production Engineer. This pioneering technology autonomously investigates and resolves intricate system challenges from start to finish.Founded by industry leaders Spiros Xanthos and Mayank Agarwal, who were instrumental in the creation of OpenTelemetry and have successfully led previous ventures to Splunk and VMware.We have secured over $150 million in funding from top-tier investors such as Lightspeed, Greylock, and Unusual Ventures, along with individual contributions from renowned figures like Jeff Dean (Google DeepMind), Thomas Dohmke (GitHub), Matt Garman (AWS), Reid Hoffman (LinkedIn), and Fei-Fei Li (Stanford).Your RoleTake charge of security across the entire Resolve AI platform, including application security, cloud infrastructure, internal services, integrations, and agent execution.Design robust security mechanisms tailored for autonomous systems, ensuring agents perform actions safely, audibly, and within established limits.Collaborate closely with engineers across various teams to proactively shape secure system designs from the outset.Integrate security into our software delivery processes: automate security in CI/CD, implement guardrails in our infrastructure, and establish scalable defaults.Assess and enhance our management of identity, permissions, and access across diverse customers, tools, and environments.Monitor emerging risks associated with AI-driven systems and suggest actionable, engineering-focused mitigations.Assist Resolve AI in aligning with enterprise customer expectations by clearly communicating our security posture and engaging in technical security discussions as required.Establish the foundational principles for security practices at Resolve, ensuring they are pragmatic, high-signal, and in line with real-world system operations.

About SemgrepSemgrep is the vanguard of code security, revolutionizing the way developers create software by enabling frictionless innovation. Our platform aids teams in identifying, flagging, and resolving real security issues prior to deployment, supported by a security system that evolves with every line of code written. Semgrep ensures the integrity of code during development and provides essential guardrails, allowing developers to work swiftly and securely. Trusted by prominent organizations such as Snowflake, Dropbox, and Figma, Semgrep enhances visibility and control for security teams while delivering solutions seamlessly within the developer workflow. Our AI technology minimizes false positives and prioritizes actionable vulnerabilities, achieving validation from 95% of security experts across over 6 million findings.Founded in San Francisco and backed by leading venture capital firms like Menlo Ventures, Felicis Ventures, Lightspeed Venture Partners, Redpoint Ventures, and Sequoia Capital, Semgrep has been recognized by Gartner in Application Security Testing. Discover more at semgrep.dev.About the RoleThe Infrastructure team at Semgrep manages the critical cloud infrastructure that supports both internal and external applications, including our flagship offerings, Semgrep Code and Semgrep Supply Chain. Our mission is to empower Semgrep employees to confidently build, operate, and maintain their systems. We achieve this by offering a cohesive platform that transitions projects seamlessly from code to cloud, utilizing CI/CD systems, Kubernetes in AWS environments, and robust tools for production software operations.In this role, you will immerse yourself in the application security domain, collaborating with seasoned engineers to develop a robust infrastructure platform and build secure, reliable, and high-performing distributed systems. Embrace Semgrep’s transparent culture, where your insights and contributions can directly shape the success of our startup. Your work will play a vital role in positioning Semgrep as a leading static-analysis project, making a lasting impact not only within our organization but also in the broader developer community.Your Responsibilities:Collaborate with senior and staff engineers to design, implement, and deploy infrastructure initiatives.Learn and apply infrastructure best practices in conjunction with team members.Take ownership of projects, platforms, and tools within the team, managing them over several weeks.

About AbridgeAbridge, established in 2018, is dedicated to enhancing understanding in healthcare through our innovative AI-driven platform. Designed specifically for medical dialogues, our technology streamlines clinical documentation, allowing healthcare professionals to concentrate on what truly matters—their patients.Our enterprise-grade solutions convert patient-clinician conversations into structured clinical notes in real-time, supported by robust EMR integrations. By leveraging Linked Evidence and our unique, auditable AI capabilities, we are the only firm that aligns AI-generated summaries with ground truth, ensuring rapid trust and verification for providers. As trailblazers in generative AI for healthcare, we are setting benchmarks for the responsible integration of AI within health systems.We are a diverse team of practicing MDs, AI experts, PhDs, creative minds, and engineers, all united in our mission to empower individuals and simplify care. Our offices are situated in San Francisco's vibrant Mission District, New York's SoHo, and East Liberty in Pittsburgh.The RoleAre you eager to contribute to constructing security frameworks at the forefront of AI in global healthcare? We invite applications for a highly skilled and motivated Senior or Staff Security Infrastructure Engineer to become an integral part of the Abridge Security team as one of its inaugural engineers. This position places you in a pivotal technical leadership role, guiding vital initiatives that will shape our products, infrastructure, and engineering methodologies.You will collaborate with product and engineering teams to seamlessly integrate security measures, automate security functionalities, design and implement scalable infrastructure and data pipelines essential for our security operations, and mentor colleagues to create systems that are secure by default in this AI era.This role demands profound technical knowledge, a proactive builder's mentality, and superior communication skills to foster a security-oriented culture throughout the organization. This is a unique opportunity to architect the future of security at Abridge. If you are passionate about transforming 0 → 1 and view modern security fundamentally as a challenge of large-scale data and automation, you will excel in this environment.