Software Engineer - Platform Security

TL;DR

Software Engineer - Platform Security (Cloud/Kubernetes Security): Develop cloud-native security controls for Aura’s managed platform and enforce a security baseline at scale with an accent on Kubernetes guardrails, secure-by-design development workflows, and incident-ready monitoring. Focus on building paved roads for secure containerised services, integrating authentication/authorization and secrets management, and performing security assessments and architecture reviews to improve overall security posture.

Location: London

Company

hirify.global builds the graph intelligence platform and managed cloud infrastructure (Aura) for secure, governed knowledge graphs and AI systems.

What you will do

• Develop cloud-native security controls in Azure, AWS and/or GCP, integrating with open-source and vendor tools as needed.
• Enhance product security across the software development lifecycle by defining security requirements and guardrails for containerised services on managed Kubernetes clusters.
• Provide subject-matter guidance on platform and engineering topics including cloud/Kubernetes services, secure infrastructure-as-code, AuthZ/AuthN techniques (e.g., SPIFFE), and secrets management.
• Collaborate on Cloud/Kubernetes native policies and procedures (e.g., Kyverno, Pod Security Standards).
• Run security assessments, audits, and architecture reviews to introduce new cloud controls and recommend improvements to security posture.
• Support incident detection and response by maintaining cloud monitoring/alerting tooling and developing scripts for troubleshooting security incidents.

Requirements

• Experience with containers and Kubernetes, infrastructure-as-code, and programming languages such as Go, Java and/or Python.
• Security engineering experience with hands-on technical involvement and exposure to decision-making processes.
• Background in cloud, infrastructure and/or network security.
• Hands-on experience with cloud-native authentication mechanisms (OIDC, OAuth2), secrets management, admission controllers, service mesh, mTLS, and cloud IAM solutions.
• Experience securing and hardening Kubernetes clusters, containerised applications, and Linux hosts.
• Ability to architect cloud-native applications, including API and microservices design for containerised environments.

Culture & Benefits

• Hybrid work model.
• Security-by-design ethos with tooling and documentation to help developers ship secure code.
• Work on a managed cloud platform operating at scale with Kubernetes across multiple clouds.
• Inclusive, values-driven environment focused on collaboration and user success.

Hiring process

• Application review with opportunity to discuss fit and experience.
• Interview steps to evaluate security engineering depth and practical problem-solving.