Sr. Application Security Engineer

About The Position

Requirements

• 5+ years in Application Security or Product Security, with a strong focus on containerized environments.
• Deep understanding of Kubernetes architecture, RBAC, and container runtime security. Understanding the specific risks of multi-tenancy.
• Comfortable reading and writing Go, which is the language of our core product. Ability to spot a vulnerability in a PR without relying solely on automated tools.
• Thrive in fast-paced cutting-edge environments. Excited to solve novel problems related to AI and multi-tenant infrastructure.
• View feedback as a learning mechanism, not a critique, and are willing to understand the unique needs and concerns of our customers.

Nice To Haves

• CKS (Certified Kubernetes Security Specialist) or OSCP.
• Experience securing AI workloads or GPU cloud infrastructure.
• Experience writing custom security tooling or automation scripts in Python or Go.
• Willingness to contribute to our public-facing security documentation and "Trust Center" to help our customers navigate compliance.

Responsibilities

• Perform deep-dive security reviews of our core Go-based applications and Kubernetes controllers, as well as the frontend user interface. With a targeted focus on avoiding privilege escalation within our multi-tenant architecture.
• Lead the threat modeling process for new features, proactively identifying risks associated with shared GPU resources and multi-cloud environments.
• Integrate security checks into our CI and developer workflows. Optimizing these checks for speed, ensuring security never becomes a bottleneck for engineering velocity. Separately, you will manage automated and manual scanning of our entire product stack.
• Own the lifecycle of security vulnerabilities from discovery to remediation. You will triage both external and internal reports, drive the resolution of critical issues across the engineering organization, and communicate effectively across stakeholders.
• Contribute to the ideas and development of new features, many of which are directly related to security topics such as container breakouts and isolation, pushing the envelope of what’s possible in constrained environments.
• Make complex topics easier to understand for all engineers, including new attack vectors and secure coding concepts.

Benefits

• Competitive compensation package, including equity.
• Health, dental, vision, and life Insurance, including plans for you and eligible dependents (benefits vary depending on country).
• Flexible Working Schedule.
• Workplace Flexibility.