Infrastructure Security Engineer
Antithesis · Vienna, VA · 1 mo ago
On-siteInformation Technology$180k–$200k/yrFull-time
About the role
Antithesis is growing and seeks an experienced Infrastructure & Security Engineer to join our Platform team. The Platform team owns the infrastructure, services, and tools used to build, deploy, and operate Antithesis' core systems and customer environments.
Responsibilities
- Design, build, and operate secure, scalable cloud infrastructure across compute, networking, and storage
- Architect multi-tenant and isolated cloud environments with strong security boundaries
- Lead capacity planning and scaling initiatives to support rapid product and customer growth
- Make critical architectural decisions balancing performance, cost, reliability, and security
- Design and implement network segmentation, private networking, and zero-trust principles
- Build and maintain secure VPC architectures, ingress/egress controls, and service-to-service communication policies
- Implement tenant isolation strategies across infrastructure and workloads
- Conduct threat modeling and proactively reduce infrastructure attack surface
- Build and maintain authentication and authorization frameworks across internal systems
- Implement audit logging, access monitoring, and compliance-aligned controls
- Manage secrets, key management systems, and secure credential workflows
- Establish infrastructure-as-code standards and automation best practices
- Build tooling and paved paths that improve developer productivity and security posture
- Contribute to long-term infrastructure roadmap and technical strategy
- Mentor engineers on infrastructure and security best practices
Requirements
We're looking for engineers who thrive at the intersection of cloud infrastructure, security engineering, and distributed systems. You likely have:
- 5+ years of experience in infrastructure, platform, or security engineering
- Deep experience with cloud providers (AWS, GCP, or Azure)
- Strong knowledge of cloud networking concepts (VPCs, subnets, routing, firewalls, load balancing)
- Experience implementing IAM, RBAC, and least-privilege access models at scale
- Hands-on experience with Infrastructure-as-Code tools (Terraform, Pulumi, CloudFormation, etc.)
- Experience designing highly available, fault-tolerant systems
- Understanding of security best practices across cloud infrastructure
Bonus
Experience in high-growth or multi-tenant SaaS environments
Background in security engineering or compliance frameworks (SOC 2, ISO 27001, etc.)
Experience with secrets management, KMS, or certificate management
Experience implementing monitoring and observability systems