READ THIS FIRST: This role requires real software engineering skills. You will write Python daily. You will debug production systems. You will read and reason through application code to identify vulnerabilities. If your security experience is limited to running scanners, writing reports, or configuring dashboards without writing the code behind them, this is not the right fit.
You'll own "Security by Design" across the core platform, ensuring AWS infrastructure, Kubernetes clusters, and data stores are hardened against evolving threats while maintaining the performance required for real-time AI video generation at scale.
This is not an audit-and-report role. You'll be hands-on: writing automation, embedding security into CI/CD, hardening production systems, and leading incident response with root cause analysis.
Key Responsibilities
• Write Python scripts and tools to automate security operations, dependency upgrades, evidence collection, and vulnerability remediation. Expect to ship code weekly, not monthly.
• Design and implement security controls across AWS (VPCs, IAM, Security Groups) and Kubernetes (EKS). Enforce least-privilege access, network segmentation, and runtime security policies.
• Own the full vulnerability management lifecycle: scanning, prioritization, remediation, and verification across services and dependencies.
• Embed security into CI/CD pipelines: container image scanning, software composition analysis (SCA), and automated security gates that block non-compliant code before production.
• Use Terraform or equivalent IaC tooling to provision and manage infrastructure with security checks baked into the deployment pipeline.
• Build and maintain detection rules, alerting pipelines, and monitoring dashboards for real-time visibility. Lead technical incident response with documented runbooks.
• Secure data pipelines handling user-uploaded media, AI model assets, and generated content: access controls, encryption at rest/in transit, backup integrity, and audit logging.
• Support SOC 2, ISO 27001, and GDPR compliance by automating evidence collection, maintaining security policies, and preparing for audits.
• Define and test backup/recovery procedures to meet RTO/RPO targets. Contribute to business continuity planning with focus on security during failure and restoration scenarios.
Requirements
• 3+ years in infrastructure security, SRE, or DevOps in production environments.
• Strong Python skills. You will be asked to write code, debug existing systems, and reason through unfamiliar codebases during the screening process. This is non-negotiable.
• Hands-on experience securing AWS services and managing containerized workloads in Kubernetes (EKS).
• Strong Terraform or equivalent IaC experience.
• Working knowledge of CI/CD pipeline security and container supply chain integrity.
• Experience with monitoring/alerting tools (Prometheus, Datadog, Grafana, ELK, or CloudWatch).
• Strong written communication for runbooks, findings, and remediation documentation.
• Ability to thrive in a fast-paced, high-autonomy environment where priorities shift rapidly.
• Business-level English (written and spoken).
Nice to Have
• Experience securing infrastructure for large-scale GenAI workloads (GPU clusters, CUDA workflows).
• Service mesh security (Istio, Linkerd).
• Container supply chain tooling (Trivy, Snyk, Cosign).
• Prior experience at a high-growth startup or AI-native org.
• CKS, AWS Security Specialty, or equivalent certifications.
Our simple 3-step process:
Answer a few questions about your experience.
Upload your CV.
Record a brief video introduction (up to 2 minutes).
***All answers must be in English.***
FAQs:
What’s the next step? If successful, you’ll have one more interview before receiving a job offer if you're a good fit.
What happens after submission? We’ll review your application within 2–3 business days and contact you if you qualify for the next stage.
When would I start? As soon as possible, with flexibility to accommodate your circumstances.
How long does it take? About 5-10 minutes to complete.
We look forward to reviewing your application!