Doxel

Senior Platform Engineer, Security

Doxel$175K — $220K *
Enterprise Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 6+ years in platform engineering, infrastructure/DevOps, or site reliability with hands-on infrastructure building experience
  • Proficient in infrastructure-as-code (Terraform) for creating reusable, self-service patterns
  • In-depth cloud experience, preferably with Google Cloud, focusing on IAM and networking
  • Extensive experience with Kubernetes and securing container workloads in production
  • Strong programming or scripting skills in Python, Go, or similar languages
  • Security-oriented mindset with an emphasis on least-privilege design
  • Ability to drive platform adoption and influence teams without formal authority

Responsibilities

  • Collaborate with the DevOps team to create streamlined workflows with embedded shift-left security policies
  • Oversee cloud security posture on GCP, establishing secure defaults within infrastructure-as-code
  • Evaluate application and infrastructure attack surfaces, prioritizing fixes based on threat impact
  • Set best practices for AI usage and provide security insights on product AI features
  • Enhance security and compliance through a risk-based approach implementing frameworks like SOC2 and ISO27001

Benefits

  • Comprehensive health, dental, and vision benefits for employees and families
  • Unlimited PTO policy
  • 401(k) retirement program
  • Flexible work environment
Full Job Description
The Role

As a Senior Platform Engineer, with an emphasis on Security, your main mission is to build out Doxel's internal platform and define the golden paths that engineers rely on, replacing today's hand-rolled infra. Own cloud security posture on GCP, bake security into CI/CD and the supply chain, and help shape how Doxel uses AI safely.

What You'll Do

  • Work with DevOps team to build out golden paths that streamline developer and builder workflows streamlining and applying shift left security policies on CI/CD deployment, internal tooling, LLM, and data science workflows
  • Own cloud security posture on Google Cloud, landing-zone guardrails, least-privilege IAM, secrets and key management, codified as infrastructure-as-code so secure defaults are baked into golden paths rather than bolted on after
  • Continuously evaluate attack surfaces across the application, infrastructure, and cloud, prioritize findings by exploitability and blast radius, and feed the highest-leverage fixes back into the platform
  • Set and enforce AI-usage best practices, guardrails for agentic coding tools internally and Provide a security point of view on product AI/LLM features (prompt injection, data egress, model supply chain), in partnership with engineering leadership
  • Action on improving security and compliance through a risk based approach implementing SOC2, ISO27001, and ISO27701 security and compliance frameworks.
    Drive adoption and raise the security bar across engineering through better defaults, not mandates.


What You Bring

  • 6+ years in platform engineering, infrastructure/DevOps, or site reliability, with real depth building infrastructure, not just operating it
  • Strong infrastructure-as-code skills (Terraform) and a track record of replacing ad hoc infra with reusable, self-service patterns
  • Hands-on cloud depth, ideally Google Cloud (AWS or Azure translates), including IAM, networking, and least-privilege design
  • Strong experience with Kubernetes and containerized workloads in production.
    Practical experience embedding security tooling into CI/CD (SAST, SCA, secret scanning, supply chain controls) and building secure-by-default pipelines
  • Strong programming or scripting ability (Python, Go, or similar) for building platform and automation tooling
  • A security mindset: you design for least privilege and think about how things get abused, even when security is not the headline of the task
  • Demonstrated ability to drive platform adoption and influence engineering teams without formal management authority.


Preferred

  • Experience standing up an internal developer platform or paved-road program from scratch
  • Working knowledge of AI/LLM security risks and a point of view on using AI tools safely
  • SOC 2, ISO 27001, or similar compliance experience in a fast-moving company.
  • Experience securing data warehouses or large data pipelines (Snowflake a plus)
  • Familiarity with construction tech, BIM/3D data, or other domain-rich data products


$175,000 - $220,000 a year

Doxel provides comprehensive health/dental/vision benefits for employees and their families including an Unlimited PTO policy, a 401(k) program, and a flexible work environment among other benefits.

About Doxel

Doxel is a construction technology company that uses artificial intelligence to help construction teams track progress and identify issues in real-time. The company's software uses computer vision and machine learning to analyze construction sites and provide insights to project managers. Doxel's technology can help reduce construction costs and improve project timelines by identifying issues early on. The company was founded in 2016 and is based in San Francisco, California.
Learn more about Doxel
Size
50 employees
Industry
Founded
2016

Similar Jobs

More Jobs at Doxel

More Enterprise Technology Jobs

Find similar Senior Platform Engineer, Security jobs: