Platform Security Engineer

Future Secure AI

$120K — $150K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5+ years in product/application security or security-focused software engineering.
  • Proficiency in at least one general-purpose programming language (e.g., Python, Go, TypeScript).
  • Hands-on experience securing AWS environments and Kubernetes architectures.
  • Knowledge of SDLC security, including threat modeling and CI/CD pipeline security.
  • Ability to translate security requirements into developer-friendly workflows.

Responsibilities

  • Run security design reviews and threat models for new features and AI systems.
  • Scope and conduct penetration tests against the product.
  • Design security controls for AWS and Kubernetes environments, including IaC guardrails and secrets management.
  • Harden the path from commit to production, focusing on source and pipeline security.
  • Build security tooling and workflows for the IDE and pipeline to aid secure decisions.
  • Stand up and manage dependency controls and artifact management solutions.
  • Drive secure-development practices across engineering teams.

Benefits

  • A high-performance culture.
  • Access to state-of-the-art technology.
  • Opportunity to experience world-class leadership.
  • Significant potential for growth and impact.
  • Flexible work environment.
Full Job Description
About the Role

We are hiring a Platform Security Engineer to own the security of how we build and ship software: the product and its AI systems, the cloud it runs on, and the supply chain and CI/CD that get it there. This is a hands-on engineering role, not an advisory one. You'll work alongside our platform engineer and partner directly with product and platform engineering to design security in early and build the guardrails that make secure the default. Security is core to the product and the company, and we are engineering-led: we buy managed protection where it makes sense and spend headcount on engineers who automate and extend the stack. You'll be one of the first hires on this team, owning a domain rather than a slice of someone else's.

Responsibilities
  • Run security design reviews, threat models, and code reviews for new features and AI/agentic systems, designing out vulnerability classes rather than chasing them one at a time
  • Help scope and act on penetration tests against the product
  • Design and build security controls for our AWS and Kubernetes (EKS) environment, including IaC guardrails (e.g., Terraform), secrets management (e.g., HashiCorp Vault), and tooling to detect and prevent cloud misconfiguration
  • Harden the path from commit to production, including source and pipeline security (e.g., GitHub Enterprise, Actions and self-hosted runners) and the artifact and build chain
  • Build security tooling and workflows that integrate into the IDE and pipeline so engineers make secure decisions quickly
  • Stand up and run dependency and SCA controls and a dependency firewall (e.g., Socket, Snyk) and artifact management (e.g., JFrog Artifactory)
  • Drive SBOM, code signing, and admission control (e.g., Cosign, Kyverno)
  • Drive secure-development practices and AI-assisted-development governance across engineering
  • Participate in the shared incident-response and on-call rotation as an incident handler, with leadership-level incident command for major incidents

Minimum Qualifications
  • 5+ years in product/application security or security-focused software engineering
  • Proficiency in at least one general-purpose language (e.g., Python, Go, TypeScript) and a real build-vs-buy mindset
  • Hands-on experience securing modern cloud environments (AWS) and containerized/microservice architectures (Kubernetes)
  • Working knowledge of SDLC security: threat modeling, code review, and CI/CD pipeline security
  • Ability to translate security requirements into developer-friendly workflows and influence engineering teams you don't own

Preferred Qualifications
  • Experience securing AI/ML systems, LLM applications, or agentic AI
  • IaC security (Terraform, CDK, CloudFormation) and security automation
  • Supply-chain security depth (SLSA, sigstore/Cosign, dependency firewalls)
  • Bug bounty or offensive-security experience

Why Join Us?
  • A high-performance culture
  • State-of-the-art technology
  • Experience world-class leadership
  • Scale of impact and purpose
  • A competitive salary and a huge growth trajectory
  • Work with the best in the industry
  • Flexible work environment
  • Diversity and creativity

Disclaimer: We do not wish to be contacted by recruitment agencies. Our hiring process is managed in-house and the best way for candidates to express interest is by applying with your resume through our company website.

Similar Jobs

More Jobs at Future Secure AI

More Information Technology Jobs

Find similar Platform Security Engineer jobs: