Introduction to role

Cybersecurity sits at the heart of our IT strategy. As we move towards ambitious objectives, we are looking for individuals who focus on innovation to maintain a sustainable risk position against an evolving threat landscape, who recognise that adversaries may include organised crime syndicates or state-sponsored attackers, and who understand attackers' motivations and ways of working.

In this role, you will operate within AstraZeneca's global cybersecurity organisation, collaborating with and influencing multiple functions across China, India, Mexico, Sweden, the US and the UK. Ready to help defend a global enterprise where technology directly supports life-changing medicines?

Accountabilities

In this role, you will engineer cybersecurity solutions across cloud, on-premises and third-party collaboration environments, with a predominant focus on cloud and data. You will collaborate with other teams to perform, assess and evolve IT processes that intersect our cybersecurity priorities, ensuring security is embedded into how work gets done. You will map governance and compliance frameworks and their controls to technical implementation, shifting hardening processes as far left as possible in the lifecycle. You will leverage deep understanding of threats, weaknesses and vulnerabilities around cloud and data to help other areas respond promptly and effectively to contain breaches or address areas of concern. You will also contribute to continuous improvement by analysing incidents, refining standards and influencing architectural decisions that balance risk, performance and usability.

How will you use your expertise to raise the bar?

Essential Skills/Experience

• Minimum 10 years of experience
• Bachelor's Degree
• Must have broad enterprise IT experience with significant cloud and data exposure.
• Must have in-depth understanding of security and networking protocols, cryptography, and modern authentication and authorization protocols.
• Must have experience designing, deploying, and operating secure networks, systems, application and security architectures at scale.
• Must have experience configuring and managing cloud security services in an AWS, Azure and GCP at organisation at scale.
• Must have experience researching, designing, and implementing security policies, standards, and procedures, including those in cybersecurity frameworks such as MITRE ATT&CK, NIST CSF, NIST SP.800- 53, and NIST SP.800-61, as well as implementing cloud security reference architectures.
• Should have experience working in a software development and systems administration organisation, implementing DevSecOps and process automation.
• Should have the ability to conduct post-mortem on security incidents and take post-mortem data to drive uplift in policies, procedures, standards.
• Familiarity with CSPM, CNAPP, and Cloud EDR platforms
• Expertise with Microsoft Defender, Sentinel and Splunk

Desirable Skills/Experience

• Identify and articulate architectural trade-offs.
• Embed process, governance and security into workflow and technology.
• Design and implement software tools and services using modern programming languages.
• Manage and lead projects delivering prioritised initiatives at challenging deadlines.
• Exert positive influence in a matrixed organisation to drive technology evolution.
• Drive efforts to achieve process and technology improvement at scale.

The annual base pay for this position ranges from 136,044.00 - 204,066.00 USD Annual (80% - 120%). Hourly and salaried non-exempt employees will also be paid overtime pay when working qualifying overtime hours. Base pay offered may vary depending on multiple individualised factors, including market location, job-related knowledge, skills, and experience. In addition, our positions offer a short-term incentive bonus opportunity; eligibility to participate in our equity-based long-term incentive programme (salaried roles), to receive a retirement contribution (hourly roles), and commission payment eligibility (sales roles).

Benefits offered included a qualified retirement programme [401(k) plan]; paid vacation and holidays; paid leaves; and, health benefits including medical, prescription drug, dental, and vision coverage in accordance with the terms and conditions of the applicable plans. Additional details of participation in these benefit plans will be provided if an employee receives an offer of employment. If hired, employee will be in an 'at-will position' and the Company reserves the right to modify base pay (as well as any other discretionary payment or compensation programme) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors.

When we put unexpected teams in the same room, we unleash bold thinking with the power to inspire life-changing medicines. In-person working gives us the platform we need to connect, work at pace and challenge perceptions. That's why we work, on average, a minimum of three days per week from the office. But that doesn't mean we're not flexible. We balance the expectation of being in the office while respecting individual flexibility. Join us in our unique and ambitious world.

AstraZeneca offers an environment where cybersecurity work has real-world impact on patients' lives, not just systems and data. Here, technology experts collaborate with scientists and business teams to unlock the potential of data, analytics, AI and machine learning, constantly experimenting with new approaches while keeping critical platforms secure. There is strong investment in digital capabilities, room to explore modern tools through initiatives like hackathons, and a culture that values curiosity, coaching and continuous learning so that every day brings opportunities to grow skills and shape both personal development and the future of healthcare technology.

If this role matches your skills and ambitions, apply now and help protect the digital foundations that enable life-changing medicines!

Date Posted 17-Apr-2026 Closing Date 03-May-2026

Our mission is to build an inclusive environment where equal employment opportunities are available to all applicants and employees. In furtherance of that mission, we welcome and consider applications from all qualified candidates, regardless of their protected characteristics. If you have a disability or special need that requires accommodation, please complete the corresponding section in the application form.

XML job scraping automation by YubHub

In this technical leadership role, you will articulate and pursue the most leveraged opportunities to reduce security risk across Engineering, designing and building lovable 'paved paths' for managing identities and access, shipping code, configuring cloud infrastructure, and operating services.

Key responsibilities include:

• Developing and applying best-in-class secure baselines for cloud infrastructure
• Securing first- and third-party software supply chains, from the dev environment through CI/CD and into production
• Building and owning identity and access management (IAM) systems that are user-friendly and promote least privilege
• Managing infrastructure vulnerabilities while supporting rapid growth for Engineering
• Consulting on risk assessments, architectural designs, threat models, code reviews, and more,pragmatically balancing security with other business considerations

Example projects include:

• Supporting IAM with scalable platform solutions
• Building tooling to prevent and address vulnerabilities across our infrastructure
• Integrating service-to-service authentication and authorization into Discord's internal developer platform

What we look for in a candidate includes:

• 5+ years of experience building and operating production systems or infrastructure
• 5+ years of experience writing software in a general-purpose programming language
• 4+ years of experience securing systems with millions of users
• Experience mentoring junior ICs and leading technical projects involving multiple engineers and spanning multiple quarters
• Experience designing and building software for customers (internal or external) beyond your immediate team
• Experience securing cloud environments
• Experience defining and orchestrating containers
• Familiarity with build and CI/CD technologies
• Understanding of modern authentication and authorization concepts

Bonus points if you have experience developing and debugging distributed systems atop GCP and Cloudflare, leading complex migrations or risk management programs across an engineering organization, or managing and securing VMs or bare-metal hosts.

XML job scraping automation by YubHub

As a Principal Engineer, you will:

• Collaborate and communicate with Payments Engineering teams to design, develop, and champion best-practices, patterns, and standards for all payments applications.
• Work closely with our CTO and other architects to create holistic technology solutions for our customers.
• Be part of the Tech Leads group, driving measurable outcomes and iterative delivery strategy, removing roadblocks, empowering others, and mentoring high-potential engineers.
• Produce clear, detailed, and actionable design documents, architecture blueprints, architectural decisions with context, decision, and tradeoffs.
• Be involved in hands-on development of proof-of-concepts, prototypes, and real production-ready code.
• Mentor engineers on architecture best practices and standards.
• Engage in all phases of the software lifecycle - design, implement, test, deploy, and support services in production.
• Maintain a culture of code quality through rigorous testing, automation, and code reviews.
• Be proactive and innovative - we rely on your feedback to build a world-class product.

We're seeking individuals with an equal flair for creative problem-solving, enthusiasm for new technologies, and a desire to contribute to our product. You will likely be successful in this role if you identify with the following traits: attention to detail, problem solver, customer-oriented, versatile, resilient, and confident.

If all of this sounds interesting to you, we'd love to hear from you.

XML job scraping automation by YubHub

Your responsibilities will include:

• Supporting application security reviews for services, APIs, and new product features across the VGS platform.
• Helping identify, validate, and track security findings from static analysis, dependency scanning, container scanning, and other security testing tools.
• Participating in threat modeling and secure design discussions with engineering teams during feature development.
• Evaluating the security of AI-enabled development workflows, including internal AI systems integrated into the SDLC.
• Assisting with manual testing and validation of web application and API security issues.
• Helping improve secure SDLC processes by contributing to developer guidance, secure coding resources, and repeatable review checklists.
• Working with engineers to understand remediation options and clearly document security risks and recommendations.
• Contributing to improving security tooling and guardrails in CI/CD and development workflows.

We're looking for someone with a strong interest in secure software design, cloud-native architectures, and automation. You should have a foundational understanding of application security concepts, such as the OWASP Top 10, API security, authentication and authorization, secure coding, and common software vulnerabilities.

At VGS, we have a remote-first philosophy, and we're looking for someone who is comfortable working independently and collaboratively as part of a team.

XML job scraping automation by YubHub

This role is highly hands-on and systems-oriented, sitting at the intersection of security, infrastructure, and distributed systems.

Your primary responsibilities will be to:

• Build and harden infrastructure security by designing and implementing security controls across cloud infrastructure, Kubernetes and containerized workloads, networking, service meshes, and edge systems, CI/CD pipelines and deployment systems, and secure compute environments for GPU workloads and model execution.
• Implement identity, secrets, and access controls, including machine identity and workload authentication, secrets management and encryption, least-privilege access, and short-lived credentials.
• Protect model weights, inference endpoints, and customer data, design secure data access pathways and isolation mechanisms, and ensure safe multi-tenant execution environments.
• Automate security guardrails directly into infrastructure and CI/CD, use Infrastructure-as-Code to enforce secure defaults, and continuously identify and remediate security gaps through automation.
• Identify and mitigate risks across infrastructure layers, defend against both external attackers and insider threats, and drive projects like network isolation, encryption, and secure service communication.

To succeed in this role, you'll need to have:

• 8+ years in security engineering, infrastructure, or SRE.
• Strong understanding of cloud security, networking fundamentals, Linux systems, and container security.
• Experience building or securing production infrastructure at scale.
• Deep knowledge of authentication and authorization systems, secrets management and cryptography basics, common vulnerabilities and attack vectors, and ability to design security controls across multiple layers.
• Proficiency in at least one language, experience with Infrastructure-as-Code, and strong automation mindset.

Nice to have experience with GPU infrastructure, multi-tenant platform isolation, service mesh architectures, and high-growth startup environments.

What makes this role unique is that you'll work on cutting-edge AI infrastructure security, secure GPU clusters, model execution, and real-time inference systems, have high ownership, and direct impact on developer trust and platform reliability.

Our security philosophy is to enable developers, automate everything, assume breach, and design for resilience.

In terms of compensation and benefits, we offer competitive salary, equity, full health, dental, and vision coverage, and opportunity to work on frontier AI infrastructure.

XML job scraping automation by YubHub

XML job scraping automation by YubHub

As a Senior Software Developer, you will play a key role in developing and maintaining the backend infrastructure that powers Renewal, our React Native mobile application. Your focus will be hands-on, delivering technical solutions using Azure Functions while ensuring reliability, scalability, and best practices across our cloud-based platform.

Reporting to the Senior Tech Lead, you will design and implement new features and services, as well as maintaining and improving our existing Azure-based infrastructure. You will ensure all changes are well-architected, thoroughly tested, and aligned with our technical standards.

Your opinion matters within your role - your peers will look to you as a technical expert within the team. You will make important architectural decisions that align with our infrastructure, and be able to explain these decisions clearly to both technical and non-technical team members.

Experience that will put you ahead of the curve

Core Requirements:

• C# and .NET (experience with Azure Functions specifically is highly desirable)
• Microsoft SQL Server / Azure SQL Database
• Azure Services (particularly Azure Functions, Azure Blob Storage, and Azure B2C)
• RESTful API design and development
• Experience with third-party API integrations (Salesforce experience is a plus)

Additional Valued Experience:

• JavaScript (ES6+) / TypeScript / Node.js
• Application monitoring practices, such as metrics, tracing and logging
• Performance optimisation and debugging techniques for serverless architectures
• Experience with testing frameworks (e.g. XUnit, Jest, MSTest)
• Experience of building software by a test-first approach (TDD, BDD)
• Experience with build & deployment pipelines (CI/CD) using Azure DevOps
• Knowledge of Modern Architecture (Serverless, Microservices, Eventing/Messaging)
• Understanding of authentication and authorization patterns (OAuth 2.0, OpenID Connect)
• Terraform experience

What's in it for you

This is a Remote based role

… Plus more great perks, which include;

• Uncapped leave, because we trust you to manage your workload and time
• When we hit our targets, enjoy a share of our profits with a bonus
• Refer a friend and get rewarded when they join Future
• Wellbeing support with access to our Colleague Assistant Programmes
• Opportunity to purchase shares in Future, with our Share Incentive Plan

Internal job family level

Technology 5

Who are we…

We’re Future, the global leader in specialist media. With over 3,000 employees working across 200+ media brands, Future is a prime destination for passionate people worldwide looking to consume trusted, expert content that educates and inspires action - both online and off - through our specialist websites, magazines, events, newsletters, podcasts and social spaces.

We’ve got ambitious plans that further build on our growth momentum and unlock new opportunities – and we’re looking for driven people who want to be a part of it!

Our Future, Our Responsibility - Inclusion and Diversity at Future

We embrace and celebrate diversity, making it part of who we are.

Different perspectives spark ideas, fuel creativity, and push us to innovate. That’s why we’re building a workplace where everyone feels valued, respected, and empowered to thrive.

When it comes to hiring, we keep it fair and inclusive, welcoming talent from every walk of life. It’s not just about what you bring to the table — it’s about making sure the table has room for everyone.

Because a diverse team isn’t just good for business. It’s the Future.

Find out more about Our Future, Our Responsibility on our website.

Please let us know if you need any reasonable adjustments made so we can give you the best experience!

#LI-Remote

XML job scraping automation by YubHub

You'll work at the intersection of cloud infrastructure and enterprise requirements, partnering with Platform Engineering, Security, and Sales to ship capabilities that unlock adoption at demanding organisations.

Responsibilities

• Build enterprise deployment infrastructure: Design and implement single-tenant and dedicated deployment options, enabling customers to run Replit with the isolation guarantees their security posture requires.

• Implement private networking capabilities: Build VPC peering, private connectivity, and static IP configurations that allow enterprises to integrate Replit into their existing network architectures.

• Design authorization services: Build the authorization infrastructure that enforces custom enterprise policies; enabling fine-grained access controls, custom permission models, and policy enforcement that integrates with customers' existing identity and governance systems.

• Ship data protection features: Implement bring-your-own-key (BYOK) encryption, customer-managed keys, and data residency controls that give enterprises ownership over their most sensitive data.

• Develop infrastructure automation: Write Terraform modules and automation that enable reliable, repeatable enterprise deployments across regions and configurations.

• Debug and harden systems: Dive deep into complex infrastructure problems spanning networking, authorization, Kubernetes, and cloud services to make our enterprise platform more robust and diagnosable.

• Partner with go-to-market teams: Collaborate with Sales and Customer Success to understand enterprise infrastructure requirements, scope technical solutions, and unblock deployments.

• Contribute to technical strategy: Help define SLAs/SLOs for enterprise infrastructure reliability; participate in build-vs-buy decisions for complex infrastructure capabilities.

Requirements

• 4+ years of experience in Infrastructure Engineering, Platform Engineering, or similar roles.

• Strong programming skills in Go, Typescript or Python; you write high-quality, well-tested code.

• Experience with Kubernetes and cloud-native technologies in production environments.

• Solid understanding of cloud networking: VPCs, peering, private connectivity, load balancers, DNS.

• Experience with infrastructure as code (Terraform) and configuration management.

• Familiarity with authentication and authorization systems: OAuth/OIDC, RBAC/ABAC models, policy enforcement.

• Familiarity with security and encryption fundamentals: TLS, encryption at rest, key management concepts.

• Strong debugging skills with an ability to trace issues across distributed systems.

• Excellent written communication; you can explain technical tradeoffs clearly to both engineers and non-technical stakeholders.

Nice to Have

• Experience with Google Cloud Platform (GCP) services, networking, and IAM.

• Experience building multi-tenant or single-tenant SaaS infrastructure.

• Familiarity with enterprise compliance frameworks (SOC 2, FedRAMP, HIPAA) and how they translate to infrastructure requirements.

• Experience with customer-managed encryption keys (CMEK/BYOK) implementations.

• Background in developer platforms, cloud IDEs, or developer productivity products.

Benefits

• Competitive Salary & Equity
• 401(k) Program with a 4% match
• Health, Dental, Vision and Life Insurance
• Short Term and Long Term Disability
• Paid Parental, Medical, Caregiver Leave
• Commuter Benefits
• Monthly Wellness Stipend
• Autonomous Work Environment
• In Office Set-Up Reimbursement
• Flexible Time Off (FTO) + Holidays
• Quarterly Team Gatherings
• In Office Amenities

XML job scraping automation by YubHub

You can be part of the journey to build and scale features that help teams and organizations of any size be more productive with Replit. This is an opportunity to make meaningful impact and shape the culture and processes from the ground up. Working closely with cross-functional teams including product managers, designers, and AI engineers, you'll craft solutions that enable our customers to build, deploy, and share their applications seamlessly. This role requires both technical expertise and a deep understanding of user needs to deliver features that make an impact.

In this role you will:

• Build and own features across the full stack that serve enterprise customers, from backend services to user-facing interfaces
• Design and implement scalable solutions for teams and organizations. This includes enterprise-readiness features like authentication, permissions, security, and compliance, as well as tools that improve team collaboration and drive adoption within an organization
• Work directly with customers to understand their needs and iterate on solutions
• Contribute to technical decisions and architecture for the Enterprise platform
• Collaborate closely with Product, Design, and other Engineering teams to deliver high-quality experiences
• Mentor other engineers and raise the bar for engineering excellence
• Ship quickly and iterate based on customer feedback and usage data

Required skills and experience:

• Strong full stack engineering skills with experience shipping production code
• Experience building B2B or enterprise software products
• Comfort working across the stack - from databases and APIs to frontend frameworks
• Strong product sense and ability to translate customer needs into technical solutions
• Experience with modern web technologies (React, Node.js, TypeScript, or similar)
• Track record of shipping high-impact features and taking ownership of projects
• Excellent communication skills and ability to collaborate with cross-functional teams
• Curiosity and willingness to learn new technologies and domains

Nice to Have:

• Experience with enterprise authentication and authorization systems (SSO, SAML, SCIM)
• Experience with AI/LLM integration in applications
• Understanding of developer tools, internal tools, and workflows
• Previous experience in a high-growth startup environment
• Contributions to open-source projects

Tools + Tech Stack for this role:

• React, TypeScript, CSS, GraphQL, Node.js, and Postgres

This role may not be a fit if:

• You prefer working exclusively on backend systems without user interaction
• You're uncomfortable with the pace and changing priorities of a startup environment
• You require highly structured requirements and aren't comfortable with ambiguity

_This is a full-time role that is held from our Foster City, CA office. The role has an in-office requirement of Monday, Wednesday, and Friday._

Full-Time Employee Benefits Include:

• Competitive Salary & Equity
• 401(k) Program with a 4% match
• Health, Dental, Vision and Life Insurance
• Short Term and Long Term Disability
• Paid Parental, Medical, Caregiver Leave
• Commuter Benefits
• Monthly Wellness Stipend
• Autonomous Work Environment
• In Office Set-Up Reimbursement
• Flexible Time Off (FTO) + Holidays
• Quarterly Team Gatherings
• In Office Amenities

XML job scraping automation by YubHub

What you'll do

Design and implement scalable, developer-friendly security solutions that integrate directly into engineering workflows

What you need

• 8+ years of experience in Application Security, Product Security, or similar roles
• Deep understanding of secure software development practices, threat modeling, and common vulnerabilities (e.g., OWASP Top 10)

XML job scraping automation by YubHub