Infrastructure & Cloud Security Engineer
Engineers in this role design and implement security controls across GPU compute clusters, multi-cloud environments, and distributed infrastructure that power AI platforms. They work hands-on with Kubernetes, networking, identity systems, and CI/CD pipelines to establish Zero Trust principles and secure model weights, inference endpoints, and customer data at scale. What distinguishes this work is the focus on protecting specialized AI workloads—from GPU execution environments to model deployment systems—while enabling rapid infrastructure scaling. These engineers typically sit within dedicated security teams reporting to the CISO, partnering closely with platform, infrastructure, and ML engineering teams to shift security left and make secure-by-default systems the easiest path for developers.
Skills
What companies are looking for in this role.
Designing and implementing public key infrastructure hierarchies and certificate management systems
Securing containerized workloads and Kubernetes cluster environments
Designing cloud security architecture across multiple cloud providers
Implementing secrets management platforms and access control policies
Implementing identity and access management systems including SSO, MFA, and RBAC
Managing hardware security modules and cryptographic key management systems
Automating vulnerability detection, triage, and remediation workflows
Implementing encryption and key management across infrastructure layers
Conducting threat modeling and security design reviews for complex systems
Designing and hardening network infrastructure security including segmentation and access controls
Securing CI/CD pipelines and software supply chain against deployment attacks
Building zero-trust security architectures and least-privilege access models
Building automation and orchestration frameworks for security enforcement
Leading incident response and root cause analysis investigations
Securing multi-tenant cloud platforms and controlling blast radius
Implementing data loss prevention controls and data classification frameworks
Reading and reasoning about application code to identify security vulnerabilities
Designing host attestation and firmware validation systems for infrastructure trust
Designing security controls for specialized hardware including GPUs and accelerators
Implementing AI-powered threat detection and anomaly detection systems
Securing inference endpoints and protecting machine learning model weights
Designing security architecture for operational technology and industrial control systems
Collaborating with infrastructure and platform engineering teams to shift security left
Communicating technical security concepts clearly to cross-functional stakeholders
Setting pragmatic security standards and building secure-by-default tooling
Driving security architecture and design decisions through technical leadership
Mentoring and growing teams of security engineers
Technology
The tools and technologies that define this role.
Open Jobs
52 open Infrastructure & Cloud Security Engineer jobs across 23 companies.
Other Security roles
Identifies and mitigates security vulnerabilities in applications and products.
Generalist security engineering role spanning multiple security domains. For security engineers who work across application, infrastructure, and cloud security without a single dominant specialization. The default home for "Security Engineer" titles when the function is clearly Security.
Builds detection systems, investigates security incidents, and leads incident response efforts.
Conducts offensive security assessments including red teaming, penetration testing, and adversarial simulation.
Designs and maintains identity infrastructure, authentication systems, and access control policies.