Senior Infrastructure Engineer (Core Infra – Security & Networks)

If this sounds right up your alley, please submit an application. We look forward to getting to know you!

Also, feel free to check out why:

• Business Insider

  named us an “enterprise startup to bet your career on”

• Forbes’ Cloud 100

  recognized us as one of the top 100 private cloud companies in the world

• Deloitte Tech Fast 500

  ranked us as the 17th fastest growing tech company in the Bay Area, and 96th in North America

• Quartz

  ranked us the #1 best company for remote workers

Responsibilities

We’re looking for an experienced Infrastructure Engineer to join our Core Infra team and work on securing and scaling the foundation of our global platform. This role combines hands-on infrastructure engineering with a focus on security compliance, networking, and systems reliability. You’ll be deeply involved in auditing, configuring, and improving how our distributed systems run across AWS(currently) and GCP(plans).

• Own and improve core infrastructure security and networking configuration across AWS (primary) and GCP.

• Implement and maintain secure logging pipelines - ensuring logs are tamper-proof, compliant with internal and external security standards, and safely stored.

• Review and audit infrastructure code, IAM policies, and access controls to ensure compliance and best practices.

• Conduct manual infrastructure audits (repositories, Terraform code, network configs, accounts) beyond automated tools.

• Configure network security - VPCs, subnets, routing, VPNs, firewalls, private endpoints - to guarantee secure service access and isolation.

• Work with Kubernetes networking (EKS) - optimize CNI, traffic routing, and service mesh (Linkerd).Collaborate with the Security Operations team, translating compliance requirements into real, working infrastructure controls.

• Support on-call rotations during working hours (deployments & incident handling). Night shifts are optional and compensated.

• AWS (EKS, EC2, VPC, IAM), GCP, Terraform / TFlow + Atlantis, GitHub Actions / ArgoCD, Kubernetes (EKS + Karpenter + Linkerd), Vault / AWS Secrets Manager, Nginx / HAProxy / Envoy, Kafka, Redis / MemoryDB, ClickHouse, PostgreSQL, Quickwit (observability), Docker images (build-time only).

• Strong background in infrastructure and networking engineering (not just security tools).

• Experience with cloud networking (VPC design, routing, ingress, firewalls) in AWS or GCP.

• Familiarity with Kubernetes networking internals and service mesh optimization.

• Hands-on security mindset - able to “engineer” secure systems, not just audit them.

• Experience writing and reviewing Terraform and infrastructure-as-code.

• Comfortable performing manual security/infrastructure reviews and fixing what’s found.

• Practical experience with logging, observability, and compliance hardening.

• Experience with multi-region infrastructure (Asia, EU, US).

• Understanding of SLA-driven systems (99.99%) and production reliability at scale.