Information Security Engineer, Corp IT

Fluidstack-posted 29 days ago
$150,000 - $250,000/Yr
Full-time • Mid Level
Austin, TX
101-250 employees
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The Information Security Engineer, Bare Metal will be a critical part of the infrastructure team, responsible for designing, implementing, and maintaining the security of Fluidstack’s bare metal fleet. This role is highly technical and requires deep expertise in hardware, operating systems, and network security in a high-scale, high-performance environment.

  • Bare Metal Lifecycle Security: Own the security throughout the entire lifecycle of the bare metal fleet, from provisioning and hardening to decommission.
  • Image Security and Hardening: Design and implement secure, hardened base operating system images (Linux) for all production and development environments, including automated vulnerability scanning and patch management.
  • Baseboard Management Controller (BMC) Security: Define and enforce security best practices for BMCs, including access controls, credential management, logging, and firmware integrity/patching.
  • Network Security: Collaborate with network engineering to design and implement secure network architectures, including micro-segmentation, intrusion detection/prevention systems (IDS/IPS), and firewall policies for the bare metal environment.
  • Storage and Data Protection: Implement strong security controls for storage systems, focusing on data-at-rest encryption, key management, and secure access protocols for both local and networked storage.
  • Automation: Develop security automation and tooling (e.g., configuration management scripts) to ensure security is enforced consistently and at scale across the fleet.
  • Security Monitoring and Incident Response: Configure and manage security monitoring for bare metal infrastructure and participate in the incident response process for critical security events.
  • Security Review: Conduct regular security audits and threat modeling exercises for new hardware and infrastructure designs.
  • 7+ years of experience in an Information Security or Infrastructure Engineering role, with a strong focus on bare metal, IaaS, or high-scale cloud infrastructure.
  • Deep practical experience with Linux operating system hardening (e.g., SELinux, AppArmor, kernel-level security).
  • Expert-level knowledge of network security principles, including TCP/IP, VPNs, firewall rulesets, and zero-trust concepts.
  • Proven ability to implement and manage encryption technologies, including disk-level encryption (e.g., LUKS) and hardware-level encryption.
  • Strong scripting and automation skills in languages such as Python, Go, or Rust, and experience with configuration management tools (e.g., Ansible, Puppet, Chef).
  • Understanding of hardware security modules (HSMs) and trusted computing concepts (e.g., TPM/TXT).
  • Excellent problem-solving and communication skills, with the ability to work collaboratively across engineering teams.
  • Experience with specific BMC platforms (e.g., OpenBMC, Dell iDRAC, HPE iLO).
  • Familiarity with compliance standards relevant to bare metal environments (e.g., SOC 2, ISO 27001, FedRAMP).
  • Experience with hardware-level root of trust and secure boot implementations.
  • Relevant security certifications (e.g., CISSP, OSCP, CEH).
  • Competitive total compensation package (salary + equity).
  • Retirement or pension plan, in line with local norms.
  • Health, dental, and vision insurance.
  • Generous PTO policy, in line with local norms.
Track Jobs with Teal

Job Search Resources

AI Resume Builder
Network Security Engineer Resume Examples
Network Security Engineer Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service