Security Site Reliability Engineer
Pura · Pleasant Grove, UT · 2 mo ago
On-siteInformation TechnologyFull-time
Your Role at Pura
You'll be the first dedicated Security SRE at Pura, reporting to the CISO. This is a high-impact, high-autonomy role where you'll own the security posture of our AWS and GCP environments. You'll work alongside our AppSec engineer and Security Director to protect the infrastructure that powers millions of connected devices, our API backends, and our growing suite of internal tools.
This isn't a "monitor dashboards and escalate" role. You'll be hands-on — hardening infrastructure, enforcing secure patterns in Terraform, establishing security oversight of patching processes, and responding to the accelerating pace of vulnerability disclosures driven by AI-powered security research.
Qualifications
- Must have:
- 3+ years in SRE, DevOps, or Infrastructure Engineering with a security focus (or security engineering with strong infrastructure skills)
- Hands-on experience with AWS (IAM, VPC, EKS/ECS, Security Hub, GuardDuty, CloudTrail, Config)
- Working experience with GCP (doesn't need to be as deep as AWS)
- Strong Terraform skills — you've written modules, not just applied them
- Experience with Kubernetes security — RBAC, network policies, pod security standards, image scanning
- Solid understanding of Linux systems administration and OS-level hardening
- Comfortable scripting in Go, TypeScript, Python, or Bash for automation and tooling
- Nice to have:
- Experience with Wazuh (our SIEM platform)
- Familiarity with policy-as-code frameworks (OPA, Sentinel, Checkov)
- Experience with container security scanning (Trivy, Snyk Container, Aqua, etc.)
- Background in incident response from an infrastructure perspective
- Experience securing IoT backend infrastructure or high-volume device API traffic
- Experience with ISO 27001 or similar compliance frameworks
- Relevant certifications (AWS Security Specialty, CKS, etc.)
Who you are
- You default to automation over manual processes
- You think in terms of blast radius and defense in depth
- You can explain infrastructure security concepts to application developers without condescension
- You're comfortable being the first person in a role and building the playbook
- You stay current on cloud security threats and vulnerability disclosures
- You're excited to grow — this role has a clear path to senior as the security program matures