Location: United States

Department: Community Support

Job Description:

Airbnb is a mission-driven company dedicated to helping create a world where anyone can belong anywhere. The Community You Will Join:

As a Data Protection Operations Lead, you will join a\Cross-functional team responsible for creating standardized operational security processes and protocols to ensure proper Risk Governance and Compliance for Community Support teams in specific domains, including product, process, and engineering in accordance with company policies and contractual agreements.

The Difference You Will Make:

As a key member of our team, you’ll drive operational excellence, foster innovation, and champion security and productivity. You’ll play a pivotal role in designing and maintaining provisioning frameworks, collaborating with engineering partners to optimize permission models and tooling, and balancing speed with robust security across all processes.

Your Expertise:

• 8+ years of hands-on experience with Access and Privileged Access Management (PAM) operations in a technology-driven environment.
• Demonstrated experience in PAM operational tasks, including safe creation and management, privileged account onboarding, policy development, and least-privilege access model implementation.
• Solid background in identity and access management (IAM) principles and industry best practices.
• Experience with operationalizing Just-In-Time (JIT) privilege models, role-based access controls (RBAC), and enforcing Segregation of Duties (SoD).
• Working knowledge of authentication protocols (e.g., SAML, OAuth, OpenID Connect, Active Directory, LDAP, Kerberos).
• Familiarity with cloud-based privileged access management, including the classification and management of non-human identities (service accounts, API keys, etc.).
• Strong understanding of security standards and regulatory frameworks (NIST, ISO/IEC, FFIEC) relevant to access management.
• Strong SQL abilities, including querying and dashboard creation.
• Clear, concise communication skills, with a proven ability to collaborate across engineering, security, product, and operational teams without a technical background to drive alignment and best-in-class solutions.
• Experience in documenting policies, procedures, and reporting on PAM-related risk and compliance metrics.
• Demonstrated ownership and accountability for continuous improvement in PAM controls and risk management.
• Proactive in identifying and mitigating security risks related to privileged access.
• Comfortable working in a fast-paced environment and contributing to cross-functional or global initiatives.
• Demonstrated ability to build and coach teams.
• Familiarity with access management challenges specific to cloud-native environments (AWS, GCP, Azure).
• Involvement in developing or maintaining Privileged Access Management strategies that address both human and non-human identities, including business users, developers, and service accounts.

Your Location:

This position is US - Remote Eligible. The role may include occasional work at an Airbnb office or attendance at offsites, as agreed to with your manager. While the position is Remote Eligible, you must live in a state where Airbnb, Inc. has a registered entity.

Our Commitment To Inclusion & Belonging:

Airbnb is committed to working with the broadest talent pool possible. We believe diverse ideas foster innovation and engagement, and allow us to attract creatively-led people, and to develop the best products, services and solutions. All qualified individuals are encouraged to apply. We strive to also provide a disability inclusive application and interview process. If you are a candidate with a disability and require reasonable accommodation in order to submit an application, please contact us at: reasonableaccommodations@airbnb.com.

Please include your full name, the role you’re applying for and the accommodation necessary to assist you with the recruiting process. We ask that you only reach out to us if you are a candidate whose disability prevents you from being able to complete our online application.

XML job scraping automation by YubHub

You will work at the intersection of data engineering, identity resolution, privacy, and platform reliability. This is an individual contributor role, where you will work to define and implement a strategic vision for data engineering within the organization.

Responsibilities:

• Design and maintain a scalable identity resolution platform
• Build pipelines and services to ingest, normalize, link, and version identity data across multiple sources
• Ensure deterministic and probabilistic matching logic that is transparent, auditable, and measurable
• Partner with product and analytics teams to expose identity data through reliable, well-documented APIs and datasets
• Build and operate batch and streaming pipelines using modern data stack tools
• Create clear documentation, standards, and runbooks for identity and governance systems
• Own data governance foundations including data lineage, quality checks, schema enforcement, and access controls
• Implement privacy-by-design principles (PII handling, consent enforcement, retention policies)
• Collaborate with legal, privacy, and security teams to operationalize regulatory requirements (e.g., GDPR, CCPA)
• Establish monitoring and alerting for data quality, freshness, and integrity

What we're looking for:

• Production data engineering experience
• Bachelor’s degree in computer science, related field or equivalent experience
• Proficiency in Spark and Scala, with proven experience building data infrastructure in Spark using Scala
• Experience in delivering significant technical initiatives and building reliable, large scale services
• Experience in delivering APIs backed by relationship-heavy datasets
• Experience implementing data governance practices, including data quality, metadata management, and access controls
• Strong understanding of privacy-by-design principles and handling of sensitive or regulated data
• Familiarity with data lakes, cloud warehouses, and storage formats
• Strong proficiency in AWS services
• Excellent written and verbal communication skills
• Successful design and implementation of scalable and efficient data infrastructure
• High attention to detail in implementation of automated data quality checks
• Effective collaboration with cross-functional teams
• Demonstrated ability to use AI to improve speed and quality in your day-to-day workflow for relevant outputs
• Strong track record of critical evaluation and verification of AI-assisted work (e.g., testing, source-checking, data validation, peer review)
• High integrity and ownership: you protect sensitive data, avoid over-reliance on AI, and remain accountable for final decisions and deliverables

XML job scraping automation by YubHub

In this role, you will focus on identity and access management, secure collaboration, endpoint/VDI, and SaaS governance. You will partner closely with IT Engineering, Security, People, and Compliance to make access secure by default, reduce friction in onboarding and offboarding, and improve the overall employee experience.

About the role:

You will translate requirements from Security, Compliance, IT, and business stakeholders into clear product outcomes across platforms such as Okta, Opal, VDI, MDM, Google Workspace, Slack, Zoom, and other SaaS applications. You will help convert the existing Staff IT Systems Engineer responsibilities into scalable, measurable product capabilities that align with the IT Infra and Ops charter.

Own the product vision, strategy, and roadmap for IAM and security-aligned IT infrastructure, including Okta, access governance, endpoint management, and VDI, aligned to IT Infra and Ops priorities.

Act as a primary product partner and escalation point for Engineering and Security on identity, access, and secure remote access, helping prioritize and resolve high-impact issues.

Define and improve end-to-end joiner, mover, and leaver flows, ensuring user provisioning, de-provisioning, and access changes are secure, automated, and reliable.

Establish standards for SSO integrations and app onboarding and offboarding in Okta, working with engineers to onboard new applications, deprecate legacy patterns, and maintain a consistent SSO experience.

Design and roll out access policies, baseline RBAC, and Just-in-Time and time-bound access patterns in partnership with Security, Compliance, and IT Engineering, with clear controls and auditability.

Own the VDI and secure remote access experience as a product surface, partnering with engineering on performance, reliability, and hardening, and defining SLIs, SLOs, and incident playbooks.

Collaborate with Security, People, and IT to define automated onboarding and offboarding processes that cover identity, devices, collaboration tools, and privileged access.

Define requirements for automation, policies, and scripts using vendor APIs to manage company devices and SaaS services such as Google Workspace, Slack, Zoom, and MDM tools.

Partner with IT Infra and Ops and Finance to support asset and SaaS lifecycle management, including inventory visibility, licensing utilization, and access governance for endpoints and applications.

Ensure documentation, runbooks, and training material for IAM, VDI, and related security and IT processes are accurate, accessible, and kept up to date for internal employees and IT staff.

Build strong relationships with IT Engineering, Security, Compliance, People, and business stakeholders, with clear intake, prioritization, and communication around roadmap, tradeoffs, and delivery.

Define and track key metrics such as time-to-access for new hires, reduction in access-related tickets, SSO coverage, QAR completion, and control failures, and use these metrics to drive prioritization.

Who You Are:

7+ years of experience in IT product management, technical program management, or systems engineering roles focused on SaaS, identity, security, or endpoint platforms.

Practical experience with administration or close partnership on platforms such as Okta (Identity Engine and Identity Governance), Google Workspace, Slack, Zoom, MDM or endpoint management tools, and VDI solutions.

Strong understanding of identity and access management concepts and practices, including SSO, federation, RBAC, joiner and leaver lifecycle, privileged access, and quarterly access reviews.

Experience collaborating with or supporting Microsoft, Linux, and Mac user environments, especially for secure access, device management, and productivity tooling.

Demonstrated experience defining and driving automation workflows and integrations that remove manual IT and security tasks, such as access provisioning, group management, and device or SaaS lifecycle actions.

Familiarity with CI or CD tools and Git, and the ability to work closely with engineers on configuration, releases, and environment management.

Comfort working with at least one programming or scripting language, such as Python or Go, at a level sufficient to understand implementation options and tradeoffs.

Experience partnering with Security and Compliance on access controls, ITGCs, and IT application controls for frameworks such as SOX or SOC 2, including control design and evidence collection.

Strong written and verbal communication skills, with the ability to translate technical and security concepts into clear product narratives and decisions for both technical and non-technical audiences.

Preferred:

Experience in high-growth, cloud-native, or security-sensitive environments where identity, access, and endpoint posture are tightly linked to customer and compliance expectations.

Prior ownership of IAM or security products such as Okta, Opal, CyberArk, VDI, or device management platforms as a product manager or TPM.

Familiarity with automation and infrastructure-as-code tooling such as Terraform, Ansible, Chef, Intune, Jamf, or similar technologies.

Experience contributing to or leading M&A-related migrations involving identity consolidation, SSO rationalization, or access model redesign.

Exposure to AI or agent-based IT support models and interest in using them to reduce IT ticket volume and improve time to resolution.

Why CoreWeave?

At CoreWeave, we work hard, have fun, and move fast! We’re in an exciting stage of hyper-growth that you will not want to miss out on. We’re not afraid of a little chaos, and we’re constantly learning. Our team cares deeply about how we build our product and how we work together, which is represented through our core values:

Be Curious at Your Core

Act Like an Owner

Empower Employees

Deliver Best-in-Class Client Experiences

Achieve More Together

We support and encourage an entrepreneurial outlook and independent thinking. We foster an environment that encourages collaboration and provides the opportunity to develop innovative solutions to complex problems. As we get set for takeoff, the growth opportunities within the organization are constantly expanding. You will be surrounded by some of the best talent in the industry, who will want to learn from you, too. Come join us!

The base salary range for this role is $143,000 to $210,000. The starting salary will be determined based on job-related knowledge, skills, experience, and market location. We strive for both market alignment and internal equity when determining compensation. In addition to base salary, our total rewards package includes a discretionary bonus, equity awards, and a comprehensive benefits program (all based on eligibility).

What We Offer

The range we’ve posted represents the typical compensation range for this role. To determine actual compensation, we review the market rate for each candidate which can include a variety of factors. These include qualifications, experience, interview performance, and market conditions.

XML job scraping automation by YubHub

Within Data Infra, you may be matched to critical business areas including:

• Data Governance & Access Control: Design and implement robust access control systems ensuring only authorized users can access sensitive data.
• Financial Data Infrastructure: Build and maintain data pipelines and warehouses powering business-critical reporting.
• Cloud Storage & Reliability: Architect disaster recovery, backup, and replication systems for petabyte-scale data.
• Data Platform & Tooling: Scale data processing infrastructure using technologies like BigQuery, BigTable, Airflow, dbt, and Spark.

You'll work directly with data scientists, analysts, and business stakeholders while diving deep into cloud infrastructure primitives.

To be successful in this role, you'll need:

• 10+ years of experience in a Software Engineer role, building data infrastructure, storage systems, or related distributed systems.
• 3+ years of experience leading large scale, complex projects or teams as an engineer or tech lead.
• Deep experience with at least one of:
• Strong proficiency in programming languages like Python, Go, Java, or similar.
• Experience with infrastructure-as-code (Terraform, Pulumi) and cloud platforms (GCP, AWS).
• Can navigate complex technical tradeoffs between performance, cost, security, and maintainability.
• Have excellent collaboration skills - you work well with both technical and non-technical stakeholders.

Strong candidates may also have:

• Background in data warehousing, ETL/ELT pipelines, or analytics infrastructure.
• Experience with Kubernetes, containerization, and cloud-native architectures.
• Track record of improving data reliability, availability, or cost efficiency at scale.
• Knowledge of column-oriented databases, OLAP systems, or big data processing frameworks.
• Experience working in fintech, financial services, or highly regulated environments.
• Security engineering background with focus on data protection and access controls.

Technologies We Use:

• Data: BigQuery, BigTable, Airflow, Cloud Composer, dbt, Spark, Segment, Fivetran.
• Storage: GCS, S3.
• Infrastructure: Terraform, Kubernetes, GCP, AWS.
• Languages: Python, Go, SQL.

The annual compensation range for this role is $405,000-$485,000 USD.

XML job scraping automation by YubHub

As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years.

Key Responsibilities:

• Own the technical vision and architecture for platform security across Anduril's product ecosystem
• Design cryptographic systems, protocols, and key management architectures for autonomous and robotic platforms operating in contested and disconnected environments
• Lead the design of hardware root-of-trust architectures integrating TPMs, TEEs, HSMs, and secure boot across diverse embedded platforms
• Drive the strategy for promoting business-line security implementations into shared, composable platform services
• Serve as the senior technical authority for security architecture reviews across the organization, providing definitive guidance on cryptographic design, protocol security, and system hardening
• Define security patterns, reference architectures, and engineering standards that enable teams across Anduril to build securely and independently
• Mentor and develop senior engineers on the team, raising the bar for security engineering across the organization
• Represent Anduril's security engineering capabilities to customers, partners, and auditors when deep technical credibility is required
• Evaluate emerging threats, cryptographic standards, and security technologies, driving adoption where they strengthen the platform

Required Qualifications:

• 12+ years of experience in software engineering, with significant depth in systems security and cryptography
• Expert-level knowledge of cryptographic protocol design, including key management architectures, certificate systems, and cryptographic agility
• Deep experience with hardware security: TPM, TEE, HSM, secure boot, and hardware root-of-trust design across multiple platform types
• Proficient in two or more of: C++, Rust, Go
• Experience designing security architectures for embedded, real-time, or robotic systems with constrained environments
• Track record of leading cross-organizational technical initiatives and driving architectural decisions that span multiple teams
• Strong ability to communicate complex security concepts to engineering leadership, product teams, and external stakeholders
• Experience performing and leading threat modeling, security architecture reviews, and cryptographic design reviews
• Eligible to obtain and maintain active U.S. Secret security clearance

Preferred Qualifications:

• Experience with post-quantum cryptography, distributed key generation (DKG), or threshold cryptographic schemes
• Background in defense, aerospace, or autonomous systems with exposure to FIPS 140, Common Criteria, or NSA CSfC requirements
• Experience designing secure communication protocols for autonomous platforms or mesh networks
• Deep knowledge of Linux kernel security, mandatory access controls (SELinux/AppArmor), and OS hardening at scale
• Experience building and evolving platform security services consumed by dozens of teams
• Familiarity with compliance frameworks (STIGs, NIST 800-53, CMMC) and translating them into engineering controls that don't compromise developer velocity
• Publications, patents, or recognized contributions in cryptography or systems security
• Experience with Nix build systems and reproducible build pipelines for security-critical software

US Salary Range: $254,000-$336,000 USD

XML job scraping automation by YubHub

Automation to eliminate manual steps involved in understanding security risks, remediating and preventing them would be the charter. The work sits at the intersection of engineering systems and regulatory requirements, translating requirements into scalable, reliable, production grade infrastructure. Often this means building production infrastructure from scratch in many cases, and would need end to end ownership of systems including design, development, testing and deployment including implementing effective integration pipelines (CI/CD) and offering a reliable production system that should be highly available and function at scale.

You will partner closely with various security teams including GRC, platform engineering, and security domain teams to translate business needs into durable technical needs, while retaining full engineering ownership of how those systems are designed, built, and operated.

In this role, you will:

• Design and build scalable systems.
• Develop control integrations and data pipelines to normalize security telemetry across IAM, logs, scanners, and CCM/GRC tools.
• Build metrics engines, dashboards, and insights pipelines that provide real-time visibility into compliance health and emerging risks.

On this team, you will:

• Tackle security & compliance puzzles at cutting-edge scale and complexity
• Collaborate with brilliant engineers who are redefining compliance adherence for cloud infrastructure.
• You'll have the freedom and responsibility to innovate, experiment, and influence how we establish assurance pipelines.

Investing in our people is one of our top priorities, and we value candidates who can bring their diversified experiences to our teams. Here are some qualities we’ve found compatible with our team. We'd love to talk about whether this aligns with your experience and interests and what you’re excited to work on next.

Who You Are:

Minimum Qualifications

• A Bachelor’s degree in Information Security, Computer Science, or a related field or equivalent job experience.
• At least 7+ years of hands-on experience in programming languages like Go.
• At least 3+ years of hands-on experience deploying and managing Kubernetes clusters in a production environment.
• Experience building high qps and critical distributed systems.
• Familiarity with modern CI/CD practices and Infrastructure-as-Code tooling.
• Proven experience building and deploying containerized applications.
• Strong experience with technical architectures involving data flows, event driven architecture, access controls, retention, and third-party integrations.
• Strong hands-on experience with cloud infrastructure (AWS, GCP).

Preferred:

• Information Security Engineering experience.
• Expertise in major compliance and security frameworks (SOC 2, ISO 27001, PCI DSS, HIPAA, FedRAMP, NIST, CSF).
• Background in building automation for distributed cloud environments at scale.
• Experience with remote-access solutions like Teleport (real bonus points if you’ve submitted PRs on their product).
• Understanding of the SSO protocols, specifically OIDC and SAML.
• Hands-on experience with PKI and mTLS.

If you're eager to elevate compliance into a creative, strategic force within a fast-paced, forward-thinking company, we'd love to hear from you!

The base salary range for this role is $165,000 to $242,000. The starting salary will be determined based on job-related knowledge, skills, experience, and market location. We strive for both market alignment and internal equity when determining compensation. In addition to base salary, our total rewards package includes a discretionary bonus, equity awards, and a comprehensive benefits program (all based on eligibility).

What We Offer

The range we’ve posted represents the typical compensation range for this role. To determine actual compensation, we review the market rate for each candidate which can include a variety of factors. These include qualifications, experience, interview performance, and location. In addition to a competitive salary, we offer a variety of benefits to support your needs, including:

• Medical, dental, and vision insurance
• 100% paid for by CoreWeave
• Company-paid Life Insurance
• Voluntary supplemental life insurance
• Short and long-term disability insurance
• Flexible Spending Account
• Health Savings Account
• Tuition Reimbursement
• Ability to Participate in Employee Stock Purchase Program (ESPP)
• Mental Wellness Benefits through Spring Health
• Family-Forming support provided by Carrot
• Paid Parental Leave
• Flexible, full-service childcare support with Kinside
• 401(k) with a generous employer match
• Flexible PTO
• Catered lunch each day in our office and data center locations
• A casual work environment
• A work culture focused on innovative disruption

Our Workplace

While we prioritize a hybrid work environment, remote work may be considered for candidates located more than 30 miles from an office, based on role requirements for specialized skill sets. New hires will be invited to attend onboarding at one of our hubs within their first month. Teams also gather quarterly to support collaboration.

California Consumer Privacy Act - California applicants only

CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace. All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information. As part of this commitment and consistent with the Americans with Disabilities Act (ADA), CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship. If reasonable accommodation is needed, please contact: careers@coreweave.com.

Export Control Compliance

This position requires access to export controlled information. To conform to U.S. Government export regulations applicable to that information, applicant must either be (A) a U.S. person, defined as a (i) U.S. citizen or national, (ii) U.S. lawful permanent resident (green card holder), (iii) refugee under 8 U.S.C. § 1157, or (iv) asylee under 8 U.S.C. § 1158, (B) eligible to access the export controlled information without a required export authorization, or (C) eligible and reasonably likely to obtain the required export authorization from the applicable U.S. government agency. CoreWeave may, for legitimate business reasons, decline to pursue any export licensing process.

XML job scraping automation by YubHub

As an Information Systems Security Officer, you will play a critical role in shaping classified, closed, or air-gapped environments in which to deploy Anduril products or software. You will be well-versed in a combination of Information Technology, Security, and government accreditation processes, and will utilize your sharp critical thinking skills to balance Business Line needs, product velocity, and customer requirements.

Responsibilities:

• Provide expertise in documenting security controls that apply to respective systems to meet cybersecurity framework requirements.
• Perform required security functions on an iterative basis to meet requirements and deliver results.
• Apply technology standards from the commercial space in classified, air-gapped environments.
• Assist the ISSM, fellow ISSOs, and other members of the Classified Infrastructure team to understand key stakeholders' needs and provide complex technical solutions to meet contractual obligations.
• Tailor NIST 800-53 controls to determine applicability to the network environment and oversee the implementation of Continuous Monitoring for respective programs.
• Define, document, and conduct security scanning on Anduril's products and accredited information systems.
• Scope, shape, and orchestrate the development of features to ensure products meet compliance goals.

Requirements:

• Design, develop, and implement secure systems and networks per NIST RMF, JSIG, and other industry standards.
• Participate and assist in security risk assessments, vulnerability assessments, and audits to identify and mitigate threats.
• Speak to and recommend security solutions, such as IDS/IPS, encryption protocols, and secure communications technologies.
• Develop and enforce access controls, encryption strategies, and other technical measures to safeguard systems.
• Maintain and update System Security Plans (SSPs), POA&Ms, and other accreditation documentation.
• Manage the organization's security posture, ensuring compliance with internal policies and external regulatory frameworks.
• Participate in the Authorization and Accreditation (A&A) processes to obtain/maintain system Authority to Operate (ATO).
• Able to assist, even lead, incident response efforts, including investigation, root cause analysis, containment, and reporting.
• Conduct regular audits, continuous monitoring, and risk assessments to ensure ongoing compliance and system resilience.
• Collaborate with government security officials, stakeholders, and teams to address security gaps and improve controls.
• Currently possesses and is able to maintain an active U.S. Top Secret security clearance.

Preferred Qualifications:

• Experience with industry standard tools such as Splunk, DISA STIGs, and SCC.
• The ability to understand programming/scripting languages, i.e. Python, Powershell, Bash
• An understanding of Linux Red Hat operating systems and SELinux policy.

XML job scraping automation by YubHub

About the Team: Anduril employs a variety of networks and networking infrastructures to support global operations. Information Systems Security Managers are in charge of directly supporting business lines that wish to deploy Anduril products in classified environments.

About the Job: As an Information Systems Security Manager, you will be responsible for providing expertise in documenting security controls to reduce the administrative cost of deploying Anduril's products into operational environments. You will partner with program and security teams to coordinate security artifacts in support of classified deployments. You will apply technology standards from the commercial space in classified, air-gapped environments.

Responsibilities:

• Provide expertise in documenting security controls to reduce the administrative cost of deploying Anduril's products into operational environments.
• Partner with program and security teams to coordinate security artifacts in support of classified deployments.
• Apply technology standards from the commercial space in classified, air-gapped environments.
• Collaborate with Information System Owners to understand key stakeholders' needs and provide complex technical solutions to meet contractual obligations.
• Tailor NIST 800-53 controls to determine applicability to the network environment and oversee the implementation of Continuous Monitoring for respective programs.
• Define, document, and conduct security scanning on Anduril's products and accredited information systems.
• Scope, shape, and orchestrate the development of features to ensure products meet compliance goals.

Required Qualifications:

• Design, develop, and implement secure systems and networks per NIST RMF, JSIG, and other industry standards.
• Integrate security best practices into Anduril's Software Development Lifecycle (SDLC) and infrastructure design, collaborating with internal IT and engineering teams.
• Conduct security risk assessments, vulnerability assessments, and audits to identify and mitigate threats.
• Recommend and implement security solutions, such as IDS/IPS, encryption protocols, and secure communications technologies.
• Develop and enforce access controls, encryption strategies, and other technical measures to safeguard systems.
• Maintain and update System Security Plans (SSPs), POA&Ms, and other accreditation documentation.

Preferred Qualifications:

• Experience with application security paradigms such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).
• Proven experience in securing micro-services architecture, including implementing best practices and compliance with DoD cybersecurity standards.
• Experience with cybersecurity in unmanned and ground control system within DoD environments.
• Experience with containerization and kubernetes along with the best practices for securing them.
• Experience with Cloud Service Providers (CSPs) and the various tools they offer for implementing security and compliance best practices.

Salary: The salary range for this role is $146,000-$194,000 USD.

Benefits: Anduril offers top-tier benefits for full-time employees, including comprehensive medical, dental, and vision plans at little to no cost to you. Anduril also offers income protection, generous time off, family planning and parenting support, mental health resources, professional development, commuter benefits, relocation assistance, and a retirement savings plan.

Protecting Yourself from Recruitment Scams: Anduril is committed to maintaining the integrity of our Talent acquisition process and the security of our candidates. We've observed a rise in sophisticated phishing and fraudulent schemes where individuals impersonate Anduril representatives, luring job seekers with false interviews or job offers. These scammers often attempt to extract payment or sensitive personal information.

To ensure your safety and help you navigate your job search with confidence, please keep the following critical points in mind:

• No Financial Requests: Anduril will never solicit payment or demand personal financial details (such as banking information, credit card numbers, or social security numbers) at any stage of our hiring process. Our legitimate recruitment is entirely free for candidates.
• Please always verify communications:
• Direct from Anduril: If you receive an email from one of our recruiters, it will only come from an @anduril.com address.
• Via Agency Partner: If contacted by a recruiting agency for an Anduril role, their email will clearly identify their agency. If you suspect any suspicious activity, please verify the agency's authenticity by reaching out to contact@anduril.com.
• Exercise Caution with Unsolicited Outreach: If you receive any communication that appears suspicious, contains grammatical errors, or makes unusual requests, do not respond or engage with the sender.

XML job scraping automation by YubHub

You will be the technical authority on hardware root of trust, secure boot, firmware integrity, embedded system hardening, and the security of third-party hardware integrations. Your work ensures that every component on the vessel is resilient against tampering, exploitation, and supply chain compromise, designed in from the start and maintained across the fleet lifecycle.

Key Responsibilities:

• Conduct hardware security assessments including fault injection, side-channel analysis, interface evaluation, and bus protocol analysis across Saronic-built and third-party hardware including sensors, radios, navigation systems, propulsion controllers, and communication modules

• Evaluate and harden physical interfaces, debug ports, maintenance access points, and removable media interfaces on vessel hardware

• Evaluate supply chain security risks for hardware components and recommend provenance validation, anti-tamper, and attestation controls

• Develop and maintain a hardware security testing capability including tooling, methodology, and repeatable test procedures

• Design and implement secure boot chains establishing hardware root of trust from power-on through application launch, integrating TPM, secure elements, and HSMs for device identity, key storage, measured boot, and remote attestation

• Design and implement secure firmware update mechanisms including signed updates, rollback protection, and verified delivery across the fleet

• Own the cryptographic key lifecycle for hardware-bound keys, including provisioning, rotation, revocation, and escrow

• Harden embedded Linux systems on vessel platforms, including kernel configuration, mandatory access controls, secure IPC, and attack surface reduction

• Secure operational technology protocols and interfaces used in vessel control systems, propulsion, navigation, and sensor fusion including CAN bus, NMEA, and maritime/industrial communication protocols

• Define security boundaries, trust zones, and segmentation strategies for vessel-internal compute and communication architectures

• Drive threat modeling across vessel hardware subsystems and translate findings into actionable engineering requirements

• Produce secure-by-design reference architectures and define hardware and firmware security standards, testing requirements, and acceptance criteria integrated into engineering workflows

Required Qualifications:

• 6+ years of hands-on experience in hardware security, embedded systems security, firmware security, or a closely related security engineering role

• Deep expertise in hardware hacking techniques including fault injection, side-channel attacks, JTAG/SWD exploitation, bus sniffing/injection, and physical security assessments

• Demonstrated experience designing and implementing secure boot chains, hardware root of trust, and secure firmware update mechanisms in production systems

• Strong experience assessing third-party hardware integrations and evaluating supply chain security risks

• Deep knowledge of embedded Linux security hardening, kernel security, and mandatory access control frameworks

• Experience with operational technology security, industrial protocols, or control system security

• Proficiency in C, C++, Python, or Rust in the context of firmware, embedded, or systems-level security work, and with hardware security testing tools

• Ability to obtain and maintain a security clearance

Preferred Qualifications:

• Experience in defense, aerospace, robotics, autonomy, maritime, or other high-assurance environments

• Experience with autonomous systems, unmanned vehicles, or safety-critical embedded platforms

• Experience with RTOS, microcontroller security, or resource-constrained device environments

• Knowledge of CAN bus, NMEA protocols, maritime communication systems, RF/GPS/GNSS security, or ICS security standards

• Familiarity with defense or safety-critical compliance frameworks (NIST SP 800-53, IEC 62443, Common Criteria, or equivalent)

• Relevant certifications such as OSEE, GXPN, GSE, or hardware-focused credentials

XML job scraping automation by YubHub

Fridtjof Nansen crossed the Arctic, going places no human had ever been. Together with our users, we're doing the same onchain , and someone needs to make sure we don't get killed on the way there.

We're building the single best platform for onchain investing , agentic trading, staking infrastructure, AI-powered analytics , and we're scaling fast. Fast enough that security can't be an afterthought bolted on later. It has to be built in, from the start, by someone who knows what they're doing.

Our mission:

Surface the signal and create winners.

What you'll do at Nansen

You'll be the person who makes sure we can move fast without breaking things that matter. That means embedding security into everything we build , cloud infrastructure, applications, CI/CD pipelines, AI systems, staking operations , across a generalist role that spans the full surface area.

• Run security assessments across systems, architectures, and code , find the vulnerabilities before someone else does
• Advise engineering teams on secure design decisions. You're a partner, not a blocker
• Deploy and maintain security infrastructure: SIEM, vulnerability scanning, endpoint protection, logging , the things that let us sleep at night
• Secure our CI/CD pipelines and deployment workflows end-to-end
• Own secrets management, key management, and access controls. No shortcuts
• Address LLM security head-on: API key management, prompt injection prevention, and the risks that come with shipping AI-powered products at speed
• Coordinate penetration tests and security audits with external vendors
• Create and maintain secure coding guidelines and code review processes that engineers actually follow
• Represent the Security Team in the incident response process
• Drive compliance readiness , SOC 2, ISO 27001 , pragmatically, not bureaucratically

What we're looking for

• You've built and hardened production security at scale , you know the difference between a policy document and an actually secure system
• Strong cloud security knowledge (AWS, GCP or equivalent). Container security and network security fundamentals
• Hands-on experience implementing security tooling, not just evaluating it
• Secrets and key management expertise , you've managed this at a company where it actually mattered
• You understand the security implications of AI/LLM and agent-based systems. This is new territory and we need someone thinking about it seriously
• CI/CD pipeline security is second nature
• Pragmatic about compliance , you can get us to SOC 2 without drowning the engineering team in process
• You don't just use AI as a tool. You think with it. AI-first isn't a checkbox , it's how you work
• Strong async communication skills , we're remote-first, Slack-and-docs-heavy, and EMEA hours are preferred for team overlap
• Bonus: blockchain, smart contract, or staking infrastructure security experience. Kubernetes and Terraform security. Incident response or security operations background

What we offer our crew

• Competitive salary. Meaningful equity. Real ownership in what you build
• Fully remote with two no-meeting days a week , because deep work doesn't happen in a Google Meet
• Annual company retreat and team off-sites in one of our offices: Singapore, Bangkok, London, and Oslo , flights and accommodation covered
• Unlimited AI tokens , Claude, OpenAI, whatever helps you move fast
• Your own OpenClaw for work
• Nansen Pro account: giving you full access to the most detailed onchain data in the market
• A team that started as data engineers and data scientists that has grown to over 80 builders. Your craft is respected here.
• Speed, ownership, curiosity, courage. These aren't values on a wall , they're how we run.
• A front-row seat (and a hand in building) the next chapter of finance

XML job scraping automation by YubHub

In this role, you will report to the Head of Platforms & Infrastructure and play a central role in shaping how Mercury models, governs, and operationalizes GTM data. You’ll partner closely with Data Engineering, Data Science, Solution Architecture, Platform Engineering, etc.

Some key responsibilities include:

• Owning the definition, structure, and reliability of data originating from revenue platforms (e.g., Salesforce, GTM tools, automation systems)
• Serving as the primary decision owner for GTM-sourced tables and views used for revenue execution, forecasting inputs, lifecycle tracking, and signal-based workflows
• Designing and evolving core GTM data models across Salesforce, ETL, and analytics layers
• Partnering with Data Engineering to align GTM schemas with enterprise data models and define clear data contracts between source systems and downstream consumers
• Partnering with Data Science / Analytics to ensure revenue data is interpretable, statistically sound, and reflects how the business actually operates
• Owning clarity around data ownership boundaries, shared dependencies, and escalation paths when upstream or downstream changes impact revenue integrity
• Defining and upholding data quality, freshness, consistency, and documentation standards for revenue platforms
• Monitoring and improving pipeline reliability, performance, and scalability, proactively identifying fragile or redundant transformations
• Identifying opportunities to automate manual or error-prone data workflows and reduce operational overhead
• Acting as a data thought partner to Platforms & Infrastructure, Revenue Operations, Analytics, and Security , advising on feasibility, tradeoffs, and sequencing for data-heavy initiatives

You should have:

• 7+ years of experience in data engineering or data systems roles within SaaS or technology companies
• Deep experience designing and operating production data pipelines
• Highly proficient in SQL and experienced in data modeling
• Hands-on experience with modern data stacks (e.g., Snowflake, BigQuery, Redshift)
• Experience with ETL / ELT tooling (e.g., dbt, Airflow, Census, or similar)
• Understanding of Salesforce data models and common GTM system architectures
• Ability to translate business concepts into durable, well-structured data models
• Clear communication skills with both technical and non-technical partners

Preferred qualifications include:

• Experience supporting revenue, sales, or customer lifecycle data
• Familiarity with event-based data platforms (e.g., Data Cloud or equivalents)
• Experience working alongside platform engineering and security teams
• Exposure to data governance, access controls, and compliance considerations
• Experience mentoring or guiding other data practitioners

The total rewards package at Mercury includes base salary, equity, and benefits. Our salary and equity ranges are highly competitive within the SaaS and fintech industry and are updated regularly using the most reliable compensation survey data for our industry.

XML job scraping automation by YubHub

This role will involve new technology implementations and managing the support of current infrastructure including working with supporting vendors.

The Senior Manager, IT infrastructure will have a deep and broad knowledge of networking, virtualization, server, storage, and operating system technologies, both on-premise as well as in the GCP cloud.

This position will work closely with the Information Security team to ensure a compliant and secure infrastructure environment.

The role reports to the Director, IT. This role will be a Hybrid role.

Responsibilities:

• Leads team of network engineers, system administrators, lab system administrators to support Freenome infrastructure (On prem, Labs and GCP).
• Problem Solving, collaboration, solid comprehension of cloud, virtualization, storage, networking, software and hardware, strategic planning, leadership, mentorship, creating and giving presentations.
• Identify, create, and apply process improvement to increase product and service quality to achieve business objectives.
• Contributes to defining the department's long-term strategy and goals.
• Collaborate with the Help desk and Business Application team to define and implement the infrastructure needed for day to day operations.
• Ensures data security and disaster recovery protocols are in place. Ensuring compliance with regulatory requirements.
• Develops and creates standardized processes and procedures to guide documentation and knowledge base development for IT infrastructure operations support.
• Develops and supports standards for enterprise-wide use of resources. Recommends enterprise level strategies and goals for infrastructure hardware and software procurement and deployment. Writes detailed scopes of work for staff projects.
• Plan, communicate, and deploy changes to IT infrastructure per standard change management process and scheduled maintenance windows. Coordinate IT change and maintenance activities with business stakeholders.
• Maintains IT infrastructure and network diagrams, asset/equipment inventory and IT change/incident logs.
• Supports IT audits and conduct IT systems/network vulnerability scanning, patching and hardening.
• Manage external vendor relationships.

Must haves:

• 7+ years’ experience in a technology leadership/management role.
• Strong management and technical skills, most notably architect-level skills in virtualization, systems administration, scalable upgrade and migration strategies, networking, and storage. Possess the technical expertise with virtualization and network infrastructure technologies such as VMware vSphere, LAN and WAN.
• 5+ years of experience managing or maintaining enterprise IT infrastructure (Network, IaaS, PaaS, and/or Security).
• Experience in a continuous improvement environment with a track record of achieving significant continual development.
• Strong project management, problem solving, organizational, relationship, communication, and negotiation skills (oral and written) are required.
• 7+ years of experience with Windows 10/11, Windows server, DAS/NAS/SAN, Google workspace, and GCP.
• Strong knowledge of security access controls, policies, groups, rights, and permissions.
• Familiarity with IT GRC (BCDR, ITSM/ITIL, SOX, ISO, PCI, HIPAA, GMP, GDPR, FDA 21 CFR Part 11).
• Ability to document and explain complex technical solutions to management and other non-technical staff.
• Strong customer service and time management skills, with the ability to work effectively in a dynamic, and fast-paced environment.
• Flexibility to work weekends and after hours for IT projects/maintenance (on occasion).

Nice to haves:

• Bachelor's degree in MIS/CIS, Computer Science or equivalent professional experience.
• Industry certifications such as ITIL, CCNA, MCITP, MCSA, MCSE, VCP, Cloud+, Security+ preferred.
• Experience with GMP systems and IT systems change management process.
• Experience with Juniper, Meraki, Netapp, VmWare, and Google workspace.

Benefits and additional information:

• The US target range of our base salary for new hires is $180,975 - $232,575.
• You will also be eligible to receive equity, cash bonuses, and a full range of medical, financial, and other benefits depending on the position offered.
• Please note that individual total compensation for this position will be determined at the Company’s sole discretion and may vary based on several factors, including but not limited to, location, skill level, years and depth of relevant experience, and education.
• We invite you to check out our career page @ https://freenome.com/job-openings/ for additional company information.

Freenome is proud to be an equal-opportunity employer, and we value diversity. Freenome does not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law.

Applicants have rights under Federal Employment Laws.

• Family & Medical Leave Act (FMLA)
• Equal Employment Opportunity (EEO)
• Employee Polygraph Protection Act (EPPA)
• #LI-HYBRID

XML job scraping automation by YubHub

Data Infrastructure designs, operates, and scales secure, privacy-respecting systems that power data-driven decisions across Anthropic. Our mission is to provide data processing, storage, and access that are trusted, fast, and easy to use.

We're looking for infrastructure engineers who thrive working at the intersection of data systems, security, and scalability. You'll tackle diverse challenges ranging from building financial reporting pipelines to architecting access control systems to ensuring cloud storage reliability. This role offers the opportunity to work directly with data scientists, analysts, and business stakeholders while diving deep into cloud infrastructure primitives.

Responsibilities:

Within Data Infra, you may be matched to critical business areas including:

• Data Governance & Access Control: Design and implement robust access control systems ensuring only authorized users can access sensitive data. Build infrastructure for permission management, audit logging, and compliance requirements. Work on IAM policies, ACLs, and security controls that scale across thousands of users and systems.

• Financial Data Infrastructure: Build and maintain data pipelines and warehouses powering business-critical reporting. Ensure data integrity, accuracy, and availability for complex financial systems, including third party revenue ingestion pipelines; manage the external relationships as needed to drive upstream dependencies. Own the reliability of systems processing revenue, usage, and business metrics.

• Cloud Storage & Reliability: Architect disaster recovery, backup, and replication systems for petabyte-scale data. Ensure high availability and durability of data stored in cloud object storage (GCS, S3). Build systems that protect against data loss and enable rapid recovery.

• Data Platform & Tooling: Scale data processing infrastructure using technologies like BigQuery, BigTable, Airflow, dbt, and Spark. Optimize query performance, manage costs, and enable self-service analytics across the organization.

You might be a good fit if you:

• Have 10+ years (not including internships or co-ops) of experience in a Software Engineer role, building data infrastructure, storage systems, or related distributed systems

• Have 3+ years (not including internships or co-ops) of experience leading large scale, complex projects or teams as an engineer or tech lead

• Can set technical direction for a team, not just execute within it

• Have deep experience with at least one of:

• Strong proficiency in programming languages like Python, Go, Java, or similar

• Experience with infrastructure-as-code (Terraform, Pulumi) and cloud platforms (GCP, AWS)

Strong candidates may also have:

• Background in data warehousing, ETL/ELT pipelines, or analytics infrastructure

• Experience with Kubernetes, containerization, and cloud-native architectures

• Track record of improving data reliability, availability, or cost efficiency at scale

• Knowledge of column-oriented databases, OLAP systems, or big data processing frameworks

• Experience working in fintech, financial services, or highly regulated environments

• Security engineering background with focus on data protection and access controls

Technologies We Use:

• Data: BigQuery, BigTable, Airflow, Cloud Composer, dbt, Spark, Segment, Fivetran

• Storage: GCS, S3

• Infrastructure: Terraform, Kubernetes, GCP, AWS

• Languages: Python, Go, SQL

Logistics

Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience.

Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work.

XML job scraping automation by YubHub

Location

San Francisco

Employment Type

Full time

Department

Consumer Products

Compensation

• $293K – $325K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

This role is at-will and OpenAI reserves the right to modify base pay and other compensation components at any time based on individual performance, team or company results, or market conditions.

Location: San Francisco, CA (Hybrid: 4 days onsite/week). Relocation assistance available.

About the Team:

We build foundational platform software that enables reliable, secure, and performant products. The team works across system layers and partners closely with adjacent engineering groups to deliver robust capabilities from concept through launch.

About the Role:

We’re seeking a Systems Software Engineer to design, implement, and debug core platform components and the pipelines that build and update system images. You’ll work across operating system layers, focusing on performance, security, and deep system debugging to ship production‑grade systems.

In this role, you will:

• Design, implement, and debug system‑level components and services across kernel and user space.

• Configure and maintain OS platform services (init, services, networking, security policies) and related tooling.

• Build and operate image and update pipelines, ensuring reliability, reproducibility, and rollback safety.

• Instrument and analyze performance using profiling and tracing; optimize CPU, memory, I/O, and power usage.

• Own platform observability and reliability: logging, crash capture, watchdogs, and diagnostics.

• Collaborate with cross‑functional teams to define interfaces and deliver end‑to‑end features.

• Establish strong engineering practices: code review, CI, reproducible builds, and release management.

• Partner with external suppliers to support builds and deployments.

You might thrive in this role if you:

• Have shipped production systems software on modern operating systems.

• Are proficient in C/C++ and a scripting language, and comfortable with OS internals (concurrency, memory management, filesystems, networking, power management).

• Bring strong systems debugging skills using debuggers, tracers, profilers, and logs across kernel/user‑space boundaries.

• Understand configuration of platform services and interfaces, and can translate requirements into stable, well‑documented APIs.

• Are fluent in user‑space foundations (service management, IPC, networking, packaging, automation).

• Have experience building platform images and designing update mechanisms for reliability and security.

Preferred Qualifications:

• Exposure to platform security (secure boot, sandboxing, mandatory access controls, attestation).

• Experience with graphics/media, hardware acceleration, or high‑throughput data paths.

• Familiarity with connectivity stacks and network configuration.

• Observability and diagnostics in distributed or resource‑constrained environments.

• Work on open‑source platforms or contributions to systems projects.

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.

XML job scraping automation by YubHub