Vast.ai logo

Security Engineer

Vast.ai

Posted about 20 hours ago

We are seeking a skilled Security Engineer to join our dynamic team. We hire people with broad skill sets who also exhibit deep expertise. The ideal candidate will have experience in both offensive and defensive security, strong software development skills, and deep knowledge of Linux systems and containerization. This role provides the opportunity to work on cutting-edge GPU cloud technologies, tackle complex security challenges at scale, and directly enhance the resilience and trustworthiness of our infrastructure and services.

What You'll Do

  • Collaborate with Operations Team: Partner with our operations team to ensure compliance with relevant standards such as SOC 2, ISO 27001, and GDPR

  • Secure Architecture Design: Develop and implement secure architectures for our GPU cloud platform

  • Security Assessments: Conduct security assessments, threat modeling, code reviews, and penetration testing

  • Security Improvements: Develop and implement security fixes and improvements in collaboration with engineering teams

  • Security Tools Management: Implement and manage security tools and systems, including SIEM, WAF, and EDR

  • Documentation: Create and maintain security documentation, including policies, procedures, and technical guidelines

  • Security Training: Provide security guidance and training to engineering teams to foster a security-first culture

  • Incident Response: Participate in incident response activities and contribute to post-incident analysis and improvements

What We're Looking For

  • A problem-solver who thrives in a fast-paced environment

  • Committed to continuous improvement and staying updated with the latest security practices and cloud technologies

  • A team player with strong communication skills, able to bridge the gap between development and security

  • Educational: Bachelor's degree in Computer Science, Cybersecurity, or a related field.

  • Programming: Strong programming skills in at least one language, ideally Python or C.

  • Linux and Virtualization: Extensive knowledge of Linux kernel internals, containerization technologies, and virtualization

  • Isolation Techniques: Deep understanding of workload and network isolation techniques in multi-tenant environments

  • Cloud Security: Experience in securing and hardening cloud infrastructure, particularly in environments with untrusted workloads

  • Network and Application Security: Strong background in network security, application security, and cloud-native security practices

  • Security Testing Tools: Experience with security testing tools and methodologies, such as OWASP, Burp Suite, and static/dynamic analysis tools

  • Cybersecurity Frameworks: Familiarity with common cybersecurity frameworks, including SOC 2, NIST, and CIS Controls

Nice to Have

  • Security Certifications: Relevant security certifications such as CISSP, CCSP, or OSCP.

  • DevSecOps Experience: Experience with DevSecOps practices and tools in cloud environments.

  • Regulatory Compliance: Familiarity with regulatory compliance requirements for operating cloud services.

  • GPU Security: Experience with GPU programming and an understanding of GPU-specific security concerns.

Benefits

  • Comprehensive health, dental, vision, and life insurance

  • 401(k) with company match

Want to see the full job description?

Sign in to view the complete details and apply to this position.

Job details

Workplace

Office

Location

Los Angeles

Salary

145k - 185k USD

per year

Similar

Jobr Assistant extension

Get the extension →