Security Engineer (Cloud Infrastructure)

TL;DR

Security Engineer (Cloud Infrastructure): Building and implementing robust protections for products, infrastructure, and people across hirify.global and Poe platforms with an accent on cloud infrastructure security and automation. Focus on developing secure IaC pipelines, hardening OS and cloud environments, and establishing comprehensive threat models for compute paved roads.

Location: Must be based in the United States or Canada. Candidates must be available for meetings during coordination hours (Mon-Fri: 9am-3pm Pacific Time).

Salary: $172,279 - $249,640 USD (for US candidates); $206,461 - $256,433 CAD (for Canada candidates)

Company

hirify.global is a remote-first company operating a global knowledge sharing platform and Poe, an AI platform for interacting with various large language models.

What you will do

• Partner with engineering teams to review cloud and compute architecture design changes.
• Establish threat models for cloud and compute paved roads to identify potential security risks.
• Develop and adopt open-source tools to monitor and harden cloud infrastructure and OS.
• Implement security policies and monitor conformance across the organization.
• Write automation code for threat detection, incident containment, and network access management.
• Conduct initial incident triage and participate in the overall incident response process.

Requirements

• Strong software engineering capabilities with expertise in at least one security domain.
• Hands-on experience securing large-scale AWS environments and building IaC pipelines (Terraform or CloudFormation).
• Deep understanding of IAM policies, network segmentation, VPC design, and cloud-native monitoring.
• Proficiency in Linux/System security, including container security, POSIX Capabilities, and SECCOMP.
• Ability to integrate security tools (SAST, DAST, dependency scanning) into CI/CD pipelines.
• Must be based in the US or Canada and available during PT coordination hours.

Nice to have

• Experience with Kubernetes clusters or serverless architectures.
• Knowledge of OSQuery and eBPF.
• Product security experience, including OWASP Top 10, XSS, CSRF, and SQL injection.

Culture & Benefits

• Remote-first work environment with remote work reimbursement.
• Comprehensive medical, dental, and vision coverage.
• Equity refreshers and paid time off.
• Employee assistance programs and a culture of transparency and experimentation.