DevOps & Security Engineer
StudyFetch · Beverly Hills, CA · 6 days ago
Information Technology$170k–$270k/yrFull-time
About the role
The role is an in-person position at a fast-paced company, with periods of intense work around major launches and the GPU buildout. Significant ownership and autonomy are provided with limited oversight. The role suits engineers who have secured and operated production systems that real users depend on.
Responsibilities
- Securing and operating production systems that real users depend on.
- Thinking like an attacker and building like an operator, understanding cloud and Kubernetes security, identity and access, secrets, and network security.
- Carrying real compliance, such as SOC 2 and continuous compliance tooling.
- Automating by default, using infrastructure-as-code and pipelines.
- Operating and securing AI workloads, including GPU/model-serving workloads.
Requirements
- 5+ years in security engineering, DevOps, SRE, or infrastructure, with real depth in securing and operating production systems.
- Experience owning security and operations for a real product as it grows.
- Walk us through an environment you hardened, an incident you ran, which parts were yours, and what you changed afterward.
- Understand cloud and Kubernetes security, identity and access, secrets, and network security.
- Know how to make controls that hold up in an audit without becoming theater.
- Use AI every day and have informed opinions about it, including how to operate and secure AI workloads.
- Candid about tradeoffs and steady under pressure, including launch crunch and live incidents.
Qualifications
- Deep understanding of security posture, end to end.
- Compliance, made real, including SOC 2 and continuous scanning.
- The DevOps backbone, including CI/CD, build and deploy pipelines, and automation.
- Reliability and incident response, including monitoring, alerting, on-call, and postmortems.
- Securing the GPU and colocation buildout, including network segmentation, access controls, monitoring, and hardening.
- Raising the security bar for the team, setting practices for handling secrets, access, and incidents.
Skills
- Security: IAM and least-privilege access, secrets management and rotation, network security, zero-trust access, vulnerability management, audit logging.
- Cloud & orchestration: GCP, Cloudflare, Vercel; Kubernetes (GKE), Helm.
- Networking: VPC design, firewalls, DNS/TLS, datacenter and network segmentation.
- Observability & operations: monitoring, alerting, incident response, on-call.
- Data & AI ops: PostgreSQL and MongoDB, managed caches, operating and securing GPU/model-serving workloads.
Benefits
- 100% employer-paid Medical, Dental, and Vision; 75% dependent coverage.
- 401(k) with employer matching.
- Daily team dinner provided in-office.
Pay
$170,000–$270,000 base salary, plus equity.
Schedule
This is an in-person role.