Cloud Security Engineer

Benefits

Parental leave

Not verified

Non-birth-parent leave

Not verified

Family-building benefits

• Fertility benefits: Not verified
• Adoption assistance: Not verified
• Surrogacy assistance: Not verified

Mental health support

Not verified

Relocation assistance

Not verified

Childcare support

Not verified

Learning budget

Not verified

Verification

Not verified

Salary

Not verified

401(k) match

Not verified

Was this benefit information wrong? Tell us.

Schedule

Shift type

Not verified

Weekend work

Not verified

Application

Cover letter

Not verified

Assessment

Not verified

Deadline

Not stated

Where they hire

State eligibility is not yet verified.

About this role

Cloud Security Engineer San Francisco, United States, New York City, Seattle About the company Braintrust is the AI observability platform. By connecting evals and observability in one workflow, Braintrust gives builders the visibility to understand how AI behaves in production and the tools to improve it. Teams at Notion, Stripe, Zapier, Vercel, and Ramp use Braintrust to compare models, test prompts, and catch regressions - turning production data into better AI with every release. About the role We're looking for a hands-on Cloud Security Engineer to own the security posture of our multi-cloud infrastructure and customer hosted data planes. You'll work across AWS, Azure, and GCP, harden our Kubernetes and Terraform stack, and keep the platform secure without slowing engineering down. This is a senior IC role. You'll write code, build paved-road controls, ship detections, and partner with customers on deployment. If you're excited to use agentic coding tools to operate at the pace of a much larger team, we'd love to work with you. What you'll do - Own the security architecture for our internal AWS environment and the customer-deployed stacks running in AWS, Azure, and GCP - Write Terraform modules and policy code that make the secure path the default path for every team shipping infra - Harden our Kubernetes footprint: admission controllers, network policies, workload identity, runtime detections, secrets handling - Build and tune detections across cloud control planes, identity providers, and workload telemetry; own the alert pipeline end-to-end and keep signal-to-noise high - Help run incident

Read the full description at jobs.ashbyhq.com. FewerJobs shows a source-linked preview and links to the original posting.