jobloom

JobLoom finds jobs directly from company career sites before many job boards, then routes you into detailed role pages like this one.

security

Posted May 7

Cloud Security Engineer

at Braintrust

San Francisco, United StatesOn-site
AWSGCPAzureTerraformPythonKubernetesTypeScript

Requirements

  • ABOUT THE COMPANY Braintrust is the AI observability platform.
  • By connecting evals and observability in one workflow, Braintrust gives builders the visibility to understand how AI behaves in production and the tools to improve it.
  • Teams at Notion, Stripe, Zapier, Vercel, and Ramp use Braintrust to compare models, test prompts, and catch regressions — turning production data into better AI with every release.
  • You'll work across AWS, Azure, and GCP, harden our Kubernetes and Terraform stack, and keep the platform secure without slowing engineering down.
  • WHAT YOU'LL DO - Own the security architecture for our internal AWS environment and the customer-deployed stacks running in AWS, Azure, and GCP - Write Terraform modules and policy code that make the secure path the default path for every team shipping infra - Harden our Kubernetes footprint: admission controllers, network policies, workload identity, runtime detections, secrets handling - Build and tune detections across cloud control planes, identity providers, and workload telemetry; own the alert
  • - Partner with customers in Slack on self-hosting, network architecture, key management, and tenancy questions - Use agentic coding workflows to automate the repeatable parts of security work: control validation, evidence collection, drift detection, and IR triage IDEAL CANDIDATE CREDENTIALS - 5+ years in cloud security, infrastructure security, or security engineering with a heavy hands-on bent — you ship code and configuration, not just policy - Deep AWS expertise (IAM, VPC, KMS, GuardDuty, CloudTrail)
  • experience: you've run admission controllers, debugged a cluster compromise, or written a network policy that mattered - Proficient in modern backend technologies and comfortable writing real code in Python, TypeScript, or Go - Production incident response experience; you've owned a real incident end-to-end and made the next one less painful - Familiarity with one or more compliance regimes (SOC 2, ISO 27001, HIPAA, FedRAMP) and the discipline to make them work without becoming busywork - Active user of

Benefits

  • BENEFITS INCLUDE - Medical, dental, and vision insurance - Daily lunch, snacks, and beverages - Flexible time off - Competitive salary and equity - AI Stipend EQUAL OPPORTUNITY Braintrust is an equal opportunity employer.

Additional details

  • ABOUT THE ROLE We're looking for a hands-on Cloud Security Engineer to own the security posture of our multi-cloud infrastructure and customer hosted data planes.
  • You'll write code, build paved-road controls, ship detections, and partner with customers on deployment.
  • If you're excited to use agentic coding tools to operate at the pace of a much larger team, we'd love to work with you.
  • experience securing self-hosted enterprise software, multi-tenant SaaS, or LLM-heavy workloads (data exfiltration via prompts, model proxy abuse, agent sandboxing)
  • All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.

Find more real-time jobs on JobLoom.