As a Security Engineer at Yuno, you will be responsible for embedding security by default across our development and operations workflows.
\nIn this role, you will work closely with Engineering and DevOps teams to design, implement, and maintain secure cloud infrastructure, CI/CD pipelines, and containerized environments.
\nYou will play a key role in strengthening our security posture across AWS and GCP, automating security controls through infrastructure as code, and ensuring compliance with industry standards such as PCI DSS and SOC 2, enabling Yuno to scale securely in the global payments ecosystem.
\nResponsibilities:
\nDesign, build, and maintain secure and scalable internal security solutions and tools using Python to support security operations and strengthen technical controls.
\nImprove and manage security configurations in AWS and GCP (including WAF, Security Hub, IAM policies, SIEM integrations and other critical services) to continuously strengthen our overall cloud security posture and ensure best practices are implemented.
\nImplement and maintain security processes and technical controls that support compliance requirements (e.g., PCI DSS, ISO 27001/27701, SOC 2).
\nCollaborate with different teams on cross-functional security initiatives, providing technical expertise and ensuring alignment with best practices.
\nExplore and evaluate emerging technologies and architectures (e.g., AI integrations) to ensure secure adoption.
\nSkills You Need:
\n4+ years of hands-on experience in security engineering or similar technical security roles.
\nStrong experience designing and developing security tools or internal products to support security operations using Python.
\nSolid knowledge of AWS and GCP security services and configurations.
\nPractical experience working with compliance frameworks (e.g., PCI DSS, ISO 27001/27701, SOC 2) in cloud environments.
\nStrong problem-solving skills and the ability to communicate and collaborate effectively with cross-functional teams.
\nVerbal and written English fluency.
\nPreferred Qualifications:
\nFamiliarity with SIEM platforms and security monitoring tools.
\nExperience with Kubernetes and container security.
\nExperience with infrastructure as code (e.g., Terraform, CloudFormation).
\nFamiliarity with emerging architectures (e.g., serverless, event-driven, AI integrations).
\nExperience embedding security practices across the software development lifecycle, including CI/CD pipelines.
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_8ae5b8d5-5a4","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Yuno","sameAs":"https://www.yuno.com/","logo":"https://logos.yubhub.co/yuno.com.png"},"x-apply-url":"https://jobs.lever.co/yuno/f67be624-8969-4967-baec-1d924213a482","x-work-arrangement":"remote","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Python","AWS","GCP","PCI DSS","SOC 2","ISO 27001/27701","Cloud security","Infrastructure as code","CI/CD pipelines","Container security"],"x-skills-preferred":["SIEM platforms","Kubernetes","Terraform","CloudFormation","Serverless","Event-driven","AI integrations"],"datePosted":"2026-04-17T13:10:45.504Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"London"}},"jobLocationType":"TELECOMMUTE","employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Python, AWS, GCP, PCI DSS, SOC 2, ISO 27001/27701, Cloud security, Infrastructure as code, CI/CD pipelines, Container security, SIEM platforms, Kubernetes, Terraform, CloudFormation, Serverless, Event-driven, AI integrations"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_eec951b9-d96"},"title":"Security Engineer","description":"We're seeking a Security Engineer at the senior-level or above to own the product security and authorization lifecycle for Saronic's autonomous surface vessels. You will serve as the responsible security engineer for one or more vessel programs, owning the security posture from design through production, authorization, and operational deployment.
\nThis is a hands-on security engineering role; not a GRC or project management role. You'll identify the frameworks that apply, architect the vessel's security to satisfy them, and drive authorization to completion. Where standards don't yet exist, you'll define them.
\nKey Responsibilities:
\nRequired Qualifications:
\nPreferred Qualifications:
\nAdditional Information:
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_eec951b9-d96","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Saronic Technologies","sameAs":"https://www.saronictech.com/","logo":"https://logos.yubhub.co/saronictech.com.png"},"x-apply-url":"https://jobs.lever.co/saronic/6e800df8-6173-4f13-863e-b8803017f317","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["product security","systems security engineering","authorization engineering","threat modeling","security architecture","risk assessment","cyber-physical systems","embedded systems","operational technology environments","NIST SP 800-53","NIST SP 800-171","CMMC 2.0","RMF","CSRMC","ATO/IATT","continuous ATO","FedRAMP","IEC 62443","IMO MASS Code","IACS UR E26/E27"],"x-skills-preferred":["product security lead","systems security engineer","authorization lead","defense platform","program of record","government Authorizing Officials","program offices","DOT&E","technical security representative","defense technology startups","DARPA programs","organizations","defense acquisition system","maritime-specific frameworks","ITAR/EAR compliance","supply chain security","manufacturing security"],"datePosted":"2026-04-17T12:58:42.019Z","employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"product security, systems security engineering, authorization engineering, threat modeling, security architecture, risk assessment, cyber-physical systems, embedded systems, operational technology environments, NIST SP 800-53, NIST SP 800-171, CMMC 2.0, RMF, CSRMC, ATO/IATT, continuous ATO, FedRAMP, IEC 62443, IMO MASS Code, IACS UR E26/E27, product security lead, systems security engineer, authorization lead, defense platform, program of record, government Authorizing Officials, program offices, DOT&E, technical security representative, defense technology startups, DARPA programs, organizations, defense acquisition system, maritime-specific frameworks, ITAR/EAR compliance, supply chain security, manufacturing security"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_f2ee807d-528"},"title":"Security Engineer","description":"We're seeking a Security Engineer at the senior-level or above focused on software and systems security to own the security of Saronic's software platforms, build systems, and deployment infrastructure from development through production.
\nAs a Security Engineer, you will be the technical authority on how Saronic builds, ships, and runs secure software. You will lead secure code review, SAST, DAST, and fuzzing efforts, and define secure coding standards for Rust development including memory safety practices, safe FFI boundaries, and secure error handling.
\nYou will conduct threat modeling for software systems and translate findings into actionable security requirements integrated into design reviews and sprint planning. You will drive vulnerability management for software dependencies, including tracking, prioritization, and remediation of vulnerabilities in third-party crates and libraries.
\nYou will secure and harden NixOS configurations for vessel platforms and development infrastructure, leveraging Nix's reproducibility and declarative model for security enforcement. You will design system hardening profiles in NixOS including kernel hardening, service isolation, mandatory access controls, and minimal attack surface configurations.
\nYou will define and enforce package management and dependency policies within the Nix ecosystem, ensuring build closures are auditable, reproducible, and free from unauthorized or vulnerable packages. You will architect secure system update and rollback mechanisms using NixOS capabilities, ensuring fleet-wide consistency and integrity.
\nYou will design and implement security controls across the CI/CD pipeline including source integrity, build isolation, artifact signing, and deployment verification with build environments that are ephemeral, isolated, and hardened.
\nYou will build and maintain software supply chain security practices aligned to SLSA framework principles, including provenance tracking, hermetic builds, signed attestations, and SBOM generation.
\nYou will integrate security scanning (SAST, SCA, container scanning, secrets detection) into CI/CD pipelines as automated guardrails, and create self-service pipeline templates that enable teams to ship without bottlenecks.
\nYou will design secure deployment patterns for vessel software updates, including secure delivery, integrity verification, and rollback capabilities.
\nYou will implement runtime application security controls including logging, monitoring, and anomaly detection for deployed services.
\nYou will define software and systems security standards, patterns, and reference architectures that engineering teams adopt as the default secure path.
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_f2ee807d-528","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Saronic Technologies","sameAs":"https://www.saronictechnologies.com/","logo":"https://logos.yubhub.co/saronictechnologies.com.png"},"x-apply-url":"https://jobs.lever.co/saronic/70738ef6-22be-464f-a451-09882093482d","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Rust","NixOS","CI/CD pipeline security","software supply chain security","SLSA framework principles","provenance tracking","hermetic builds","signed attestations","SBOM generation","security scanning","SAST","SCA","container scanning","secrets detection"],"x-skills-preferred":["NixOS experience","hands-on NixOS experience","experience securing software for embedded or resource-constrained Linux environments"],"datePosted":"2026-04-17T12:58:06.790Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Francisco"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Rust, NixOS, CI/CD pipeline security, software supply chain security, SLSA framework principles, provenance tracking, hermetic builds, signed attestations, SBOM generation, security scanning, SAST, SCA, container scanning, secrets detection, NixOS experience, hands-on NixOS experience, experience securing software for embedded or resource-constrained Linux environments"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_c629a0da-f6c"},"title":"Security Engineer","description":"We're seeking a Security Engineer at the senior-level or above focused on hardware, embedded systems, and firmware security to own the security posture of Saronic's vessel hardware platforms from silicon to system.
\nYou will be the technical authority on hardware root of trust, secure boot, firmware integrity, embedded system hardening, and the security of third-party hardware integrations. Your work ensures that every component on the vessel is resilient against tampering, exploitation, and supply chain compromise, designed in from the start and maintained across the fleet lifecycle.
\nKey Responsibilities:
\nConduct hardware security assessments including fault injection, side-channel analysis, interface evaluation, and bus protocol analysis across Saronic-built and third-party hardware including sensors, radios, navigation systems, propulsion controllers, and communication modules
\nEvaluate and harden physical interfaces, debug ports, maintenance access points, and removable media interfaces on vessel hardware
\nEvaluate supply chain security risks for hardware components and recommend provenance validation, anti-tamper, and attestation controls
\nDevelop and maintain a hardware security testing capability including tooling, methodology, and repeatable test procedures
\nDesign and implement secure boot chains establishing hardware root of trust from power-on through application launch, integrating TPM, secure elements, and HSMs for device identity, key storage, measured boot, and remote attestation
\nDesign and implement secure firmware update mechanisms including signed updates, rollback protection, and verified delivery across the fleet
\nOwn the cryptographic key lifecycle for hardware-bound keys, including provisioning, rotation, revocation, and escrow
\nHarden embedded Linux systems on vessel platforms, including kernel configuration, mandatory access controls, secure IPC, and attack surface reduction
\nSecure operational technology protocols and interfaces used in vessel control systems, propulsion, navigation, and sensor fusion including CAN bus, NMEA, and maritime/industrial communication protocols
\nDefine security boundaries, trust zones, and segmentation strategies for vessel-internal compute and communication architectures
\nDrive threat modeling across vessel hardware subsystems and translate findings into actionable engineering requirements
\nProduce secure-by-design reference architectures and define hardware and firmware security standards, testing requirements, and acceptance criteria integrated into engineering workflows
\nRequired Qualifications:
\n6+ years of hands-on experience in hardware security, embedded systems security, firmware security, or a closely related security engineering role
\nDeep expertise in hardware hacking techniques including fault injection, side-channel attacks, JTAG/SWD exploitation, bus sniffing/injection, and physical security assessments
\nDemonstrated experience designing and implementing secure boot chains, hardware root of trust, and secure firmware update mechanisms in production systems
\nStrong experience assessing third-party hardware integrations and evaluating supply chain security risks
\nDeep knowledge of embedded Linux security hardening, kernel security, and mandatory access control frameworks
\nExperience with operational technology security, industrial protocols, or control system security
\nProficiency in C, C++, Python, or Rust in the context of firmware, embedded, or systems-level security work, and with hardware security testing tools
\nAbility to obtain and maintain a security clearance
\nPreferred Qualifications:
\nExperience in defense, aerospace, robotics, autonomy, maritime, or other high-assurance environments
\nExperience with autonomous systems, unmanned vehicles, or safety-critical embedded platforms
\nExperience with RTOS, microcontroller security, or resource-constrained device environments
\nKnowledge of CAN bus, NMEA protocols, maritime communication systems, RF/GPS/GNSS security, or ICS security standards
\nFamiliarity with defense or safety-critical compliance frameworks (NIST SP 800-53, IEC 62443, Common Criteria, or equivalent)
\nRelevant certifications such as OSEE, GXPN, GSE, or hardware-focused credentials
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_c629a0da-f6c","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Saronic Technologies","sameAs":"https://www.saronictechnologies.com/","logo":"https://logos.yubhub.co/saronictechnologies.com.png"},"x-apply-url":"https://jobs.lever.co/saronic/4b15b1b4-3c34-47ad-b964-dbcf0f8a3dc4","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Hardware security","Embedded systems security","Firmware security","Fault injection","Side-channel analysis","Interface evaluation","Bus protocol analysis","Physical security assessments","Secure boot chains","Hardware root of trust","Firmware integrity","Embedded system hardening","Third-party hardware integrations","Supply chain security risks","Provenance validation","Anti-tamper","Attestation controls","Hardware security testing","Tooling","Methodology","Repeatable test procedures","Device identity","Key storage","Measured boot","Remote attestation","Signed updates","Rollback protection","Verified delivery","Cryptographic key lifecycle","Provisioning","Rotation","Revocation","Escrow","Embedded Linux systems","Kernel configuration","Mandatory access controls","Secure IPC","Attack surface reduction","Operational technology protocols","Industrial protocols","Control system security","CAN bus","NMEA","Maritime/industrial communication protocols","Security boundaries","Trust zones","Segmentation strategies","Threat modeling","Actionable engineering requirements","Secure-by-design reference architectures","Hardware and firmware security standards","Testing requirements","Acceptance criteria","Engineering workflows","C","C++","Python","Rust","Hardware security testing tools"],"x-skills-preferred":["Defense","Aerospace","Robotics","Autonomy","Maritime","High-assurance environments","Autonomous systems","Unmanned vehicles","Safety-critical embedded platforms","RTOS","Microcontroller security","Resource-constrained device environments","NMEA protocols","Maritime communication systems","RF/GPS/GNSS security","ICS security standards","Defense or safety-critical compliance frameworks","OSEE","GXPN","GSE","Hardware-focused credentials"],"datePosted":"2026-04-17T12:57:49.070Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Francisco"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Hardware security, Embedded systems security, Firmware security, Fault injection, Side-channel analysis, Interface evaluation, Bus protocol analysis, Physical security assessments, Secure boot chains, Hardware root of trust, Firmware integrity, Embedded system hardening, Third-party hardware integrations, Supply chain security risks, Provenance validation, Anti-tamper, Attestation controls, Hardware security testing, Tooling, Methodology, Repeatable test procedures, Device identity, Key storage, Measured boot, Remote attestation, Signed updates, Rollback protection, Verified delivery, Cryptographic key lifecycle, Provisioning, Rotation, Revocation, Escrow, Embedded Linux systems, Kernel configuration, Mandatory access controls, Secure IPC, Attack surface reduction, Operational technology protocols, Industrial protocols, Control system security, CAN bus, NMEA, Maritime/industrial communication protocols, Security boundaries, Trust zones, Segmentation strategies, Threat modeling, Actionable engineering requirements, Secure-by-design reference architectures, Hardware and firmware security standards, Testing requirements, Acceptance criteria, Engineering workflows, C, C++, Python, Rust, Hardware security testing tools, Defense, Aerospace, Robotics, Autonomy, Maritime, High-assurance environments, Autonomous systems, Unmanned vehicles, Safety-critical embedded platforms, RTOS, Microcontroller security, Resource-constrained device environments, NMEA protocols, Maritime communication systems, RF/GPS/GNSS security, ICS security standards, Defense or safety-critical compliance frameworks, OSEE, GXPN, GSE, Hardware-focused credentials"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_85f1ada0-78d"},"title":"Security Engineer","description":"We're seeking a Security Engineer at the senior-level or above on our Security Operations team with strong detection engineering experience. You'll design and develop high-fidelity detection content, build and operate the data pipelines that power our security operations, develop automation playbooks that accelerate response, and work across a uniquely diverse telemetry landscape spanning cloud infrastructure, embedded vessel platforms, corporate systems, and operational technology.
\nThis role is heavily weighted toward detection engineering. You should think in terms of adversary behaviour and telemetry coverage, not just alert triage. You'll own detections end-to-end: from identifying gaps in coverage, through designing and testing detection logic, to tuning and validating in production.
\nKey Responsibilities:
\nDesign, build, test, and tune high-fidelity detection rules and analytic queries across endpoint, cloud, network, identity, and DLP telemetry sources
\nDevelop and maintain detection content using detection-as-code practices including version-controlled logic, automated testing, and CI/CD deployment
\nMap detection coverage to MITRE ATT&CK, identify gaps, and prioritise new detection development based on threat intelligence and business risk
\nEngineer correlation rules, behavioural analytics, and anomaly-based detections that minimise false positives while surfacing real adversary tradecraft
\nOwn the detection lifecycle from initial development through production tuning, performance monitoring, and retirement
\nBuild and operate pipelines to ingest, normalise, enrich, and manage security telemetry at scale across diverse data sources, using Terraform and infrastructure-as-code practices to deploy and maintain logging and detection infrastructure
\nDesign and maintain log collection, parsing, and enrichment configurations that ensure the right telemetry is available at the right fidelity for detection and investigation
\nEvaluate and onboard new telemetry sources as Saronic's infrastructure and threat landscape evolve
\nMonitor pipeline health, data quality, and ingestion reliability to ensure detections operate on complete and accurate data
\nDevelop and manage automated response playbooks in SOAR platforms to accelerate containment and reduce analyst toil
\nBuild automation that enriches alerts with contextual data, reducing investigation time and improving analyst decision-making
\nSupport incident response efforts and translate lessons learned into improved detections and playbooks
\nPartner with SOC analysts, Cloud Security, Product Security, and IT teams to close visibility and detection gaps across environments
\nCollaborate with threat intelligence to ensure detection engineering is informed by current adversary TTPs relevant to defence, maritime, and autonomous systems
\nRequired Qualifications:
\n3+ years of hands-on experience in detection engineering, security operations, security automation, or a closely related security engineering role
\nDemonstrated experience designing, testing, and tuning detection rules and analytic queries across production security telemetry (endpoint, cloud, network, identity, or DLP)
\nHands-on experience with SIEM platforms and proficiency with query languages such as SPL, KQL, or equivalent
\nExperience building and operating security data pipelines, including log ingestion, normalisation, enrichment, and data quality management
\nUnderstanding of data engineering concepts including ETL pipelines, data modelling, schema design, and indexing as applied to security telemetry
\nHands-on coding experience in Python, PowerShell, Go, or Rust for security automation, detection tooling, or pipeline development, and familiarity with Terraform for managing detection and logging infrastructure as code
\nUnderstanding of MITRE ATT&CK framework and its application to detection coverage and gap analysis
\nAbility to obtain and maintain a security clearance
\nPreferred Qualifications:
\nExperience in defence, aerospace, robotics, autonomy, or other high-assurance environments
\nExperience with EDR platforms including custom detection rule creation and telemetry analysis
\nExperience with cloud-native detection in AWS and Microsoft 365/Azure
\nExperience using Terraform to deploy and manage security monitoring infrastructure, log pipeline components, or cloud-native security service configurations
\nHands-on experience with incident response, threat hunting, or adversary emulation
\nExposure to embedded Linux, operational technology, or ICS telemetry and detection
\nFamiliarity with NIST SP 800-171, NIST SP 800-53, or CMMC and their logging and monitoring requirements
\nRelevant certifications such as GCIH, GCIA, GCDA, GSOM, OSDA, or OSCP
\nAdditional Information:
\nBenefits: Medical Insurance, Dental and Vision Insurance, Time Off, Parental Leave, Competitive Salary, Retirement Plan, Stock Options, Life and Disability Insurance, Pet Insurance
\nThis role requires access to export-controlled information or items that require 'U.S. Person' status.
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_85f1ada0-78d","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Saronic Technologies","sameAs":"https://www.saronictechnologies.com/","logo":"https://logos.yubhub.co/saronictechnologies.com.png"},"x-apply-url":"https://jobs.lever.co/saronic/79424778-76c1-41c6-8385-cba5f6ddc50e","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["detection engineering","security operations","security automation","SIEM platforms","query languages","data engineering","ETL pipelines","data modelling","schema design","indexing","Python","PowerShell","Go","Rust","Terraform","MITRE ATT&CK framework","security clearance"],"x-skills-preferred":["EDR platforms","cloud-native detection","incident response","threat hunting","adversary emulation","embedded Linux","operational technology","ICS telemetry","NIST SP 800-171","NIST SP 800-53","CMMC","GCIH","GCIA","GCDA","GSOM","OSDA","OSCP"],"datePosted":"2026-04-17T12:56:57.672Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Francisco"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"detection engineering, security operations, security automation, SIEM platforms, query languages, data engineering, ETL pipelines, data modelling, schema design, indexing, Python, PowerShell, Go, Rust, Terraform, MITRE ATT&CK framework, security clearance, EDR platforms, cloud-native detection, incident response, threat hunting, adversary emulation, embedded Linux, operational technology, ICS telemetry, NIST SP 800-171, NIST SP 800-53, CMMC, GCIH, GCIA, GCDA, GSOM, OSDA, OSCP"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_734a57ad-497"},"title":"Security Engineer","description":"We're seeking a senior-level Security Engineer to own the design, implementation, and continuous improvement of security guardrails across our cloud infrastructure. You willaki, you'll build the systems and patterns that enable every team at Saronic to move fast and ship with confidence, with security baked in from the start. You will be the technical authority on how we architect, govern, and defend our AWS environments across commercial and GovCloud.
\nKey Responsibilities
\nRequired Qualifications:
\nPreferred Qualifications:
\nAdditional Information
\nBenefits: Medical Insurance: Comprehensive health insurance plans covering a range of services. Saronic pays 100% of the premium for employees and 80% for dependents. Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care. Saronic pays 100% of the premium under the basic plan for employees and 80% for dependents. Time Off: Generous PTO and Holidays. Parental Leave: Paid maternity and paternity leave to support new parents. Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses. Retirement Plan: 401(k) plan. Stock Options: Equity options to give employees a stake in the company’s success. Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage. Pet Insurance: Discounted pet insurance options including 24/7 Telehealth helpline. Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office
\nThis role requires access to export-controlled information or items that require “U.S. Person” status. As defined by U.S. law, individuals who are any one of the following are considered to be a “U.S. Person”: (1) U.S. citizens, (2) legal permanent residents (a.k.a. green card holders), and (3) certain protected classes of asylees and refugees, as defined in 8 U.S.C. 1324b(a)(3).
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_734a57ad-497","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Saronic Technologies","sameAs":"https://www.saronictechnologies.com/","logo":"https://logos.yubhub.co/saronictechnologies.com.png"},"x-apply-url":"https://jobs.lever.co/saronic/18310005-a24b-4f4c-9538-465df614c4fa","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Terraform","AWS security services","IAM","Organizations","SCPs","Control Tower","CloudTrail","Config","GuardDuty","Security Hub","KMS","VPC security","Python","Go","Rust","CI/CD pipeline security","IaC review processes","automated compliance validation","AWS GovCloud","FedRAMP-regulated cloud environments"],"x-skills-preferred":["Kubernetes security","container security","service mesh security","NIST SP 800-171","NIST SP 800-53","FedRAMP","Cloud Computing SRG Impact Levels","infrastructure drift detection","automated remediation","continuous compliance monitoring","AWS Security Specialty","AWS Solutions Architect Professional","HashiCorp Terraform Associate/Engineer","CCSP","CISSP"],"datePosted":"2026-04-17T12:56:38.157Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Francisco"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Terraform, AWS security services, IAM, Organizations, SCPs, Control Tower, CloudTrail, Config, GuardDuty, Security Hub, KMS, VPC security, Python, Go, Rust, CI/CD pipeline security, IaC review processes, automated compliance validation, AWS GovCloud, FedRAMP-regulated cloud environments, Kubernetes security, container security, service mesh security, NIST SP 800-171, NIST SP 800-53, FedRAMP, Cloud Computing SRG Impact Levels, infrastructure drift detection, automated remediation, continuous compliance monitoring, AWS Security Specialty, AWS Solutions Architect Professional, HashiCorp Terraform Associate/Engineer, CCSP, CISSP"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_395c1cc1-6a4"},"title":"Security Engineer","description":"We are seeking a Security Engineer to join our growing security team. This role will have a huge impact on maintaining and improving Greenlight's security posture by developing and implementing automated workflows or AI toolings.
\nThe successful candidate will design, build, and maintain high-scale automation workflows and AI-assisted capabilities that proactively mature Greenlight's security posture. They will also architect and implement security guardrails for internal AI usage, ensuring LLM integrations and automated agents operate within company risk tolerances.
\nKey responsibilities include:
\nRequirements include:
\nNice to have:
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_395c1cc1-6a4","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Greenlight","sameAs":"https://www.greenlight.com/","logo":"https://logos.yubhub.co/greenlight.com.png"},"x-apply-url":"https://jobs.lever.co/greenlight/2a76b288-50ec-4b8c-82b8-bf9543fcf054","x-work-arrangement":"remote","x-experience-level":"mid","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Python","Go","Cloud security principles","Containerization","Securing distributed systems","OWASP Top 10","CI/CD security best practices","CI/CD platforms","No-code/low-code automation platforms","AI-assisted tools"],"x-skills-preferred":[],"datePosted":"2026-04-17T12:36:46.694Z","jobLocationType":"TELECOMMUTE","employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Finance","skills":"Python, Go, Cloud security principles, Containerization, Securing distributed systems, OWASP Top 10, CI/CD security best practices, CI/CD platforms, No-code/low-code automation platforms, AI-assisted tools"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_d6302dc5-860"},"title":"Security Engineer","description":"Job Description
\nFuse Energy is a forward-thinking renewable energy startup on a mission to deliver a terawatt of renewable energy - fast. We're combining first-principles thinking with cutting-edge technology to build a radically better energy system.
\nWe're creating a fully integrated energy company: from developing solar, wind and hydrogen projects to real-time power trading and distributed energy installations. By selling directly to consumers, we cut out the middleman, lower costs and pass on savings to customers.
\nBut we're not stopping there. We're also building the Energy Network: a decentralised platform of smart devices that rewards users in Energy Dollars for electrifying their homes, shifting usage to off-peak hours, and helping balance the grid. This network strengthens grid stability - a critical foundation for scaling AI data centers and other energy-intensive industries.
\nResponsibilities
\nSecurity Engineering & Implementation
\nThreat Modelling & Risk Awareness
\nSecurity Operations & Incident Support
\nSecure Development & Best Practices
\nCollaboration & Learning
\nRequirements
\nBenefits
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_d6302dc5-860","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Fuse Energy","sameAs":"https://jobs.workable.com","logo":"https://logos.yubhub.co/view.com.png"},"x-apply-url":"https://jobs.workable.com/view/pGZMLfYQcD1sroC7XJLzH2/hybrid-security-engineer-in-london-at-fuse-energy","x-work-arrangement":"hybrid","x-experience-level":"mid","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["AWS","cloud security","application security","infrastructure security","security concepts","authentication","authorisation","encryption","secure communication","OWASP Top 10","IAM misconfigurations"],"x-skills-preferred":["operating systems","networking fundamentals","software development workflows"],"datePosted":"2026-03-09T16:59:38.977Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"London, England"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"AWS, cloud security, application security, infrastructure security, security concepts, authentication, authorisation, encryption, secure communication, OWASP Top 10, IAM misconfigurations, operating systems, networking fundamentals, software development workflows"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_f7ac368b-fd2"},"title":"Security Engineer","description":"Job Description
\nFuse Energy is a forward-thinking renewable energy startup on a mission to deliver a terawatt of renewable energy - fast. We're combining first-principles thinking with cutting-edge technology to build a radically better energy system.
\nWe're creating a fully integrated energy company: from developing solar, wind and hydrogen projects to real-time power trading and distributed energy installations. By selling directly to consumers, we cut out the middleman, lower costs and pass on savings to customers.
\nBut we're not stopping there. We're also building the Energy Network: a decentralised platform of smart devices that rewards users in Energy Dollars for electrifying their homes, shifting usage to off-peak hours, and helping balance the grid. This network strengthens grid stability - a critical foundation for scaling AI data centers and other energy-intensive industries.
\nResponsibilities
\nSecurity Engineering & Implementation
\nThreat Modelling & Risk Awareness
\nSecurity Operations & Incident Support
\nSecure Development & Best Practices
\nCollaboration & Learning
\nRequirements
\nBenefits
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_f7ac368b-fd2","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Fuse Energy","sameAs":"https://jobs.workable.com","logo":"https://logos.yubhub.co/view.com.png"},"x-apply-url":"https://jobs.workable.com/view/eziLwb6ZKLhWWhioSWTY9L/hybrid-security-engineer-in-dubai-at-fuse-energy","x-work-arrangement":"hybrid","x-experience-level":"mid","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["AWS","cloud security","application security","infrastructure security","security concepts","authentication","authorisation","encryption","secure communication","OWASP Top 10","IAM misconfigurations"],"x-skills-preferred":["operating systems","networking fundamentals","software development workflows"],"datePosted":"2026-03-09T16:56:38.305Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Dubai"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"AWS, cloud security, application security, infrastructure security, security concepts, authentication, authorisation, encryption, secure communication, OWASP Top 10, IAM misconfigurations, operating systems, networking fundamentals, software development workflows"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_1d0184f1-be6"},"title":"Security Engineer","description":"About the Role
\nWe're hiring our first Security Engineer to own the process of safeguarding our systems, infrastructure, applications, and data. As the first security hire, you will build out our security operations and vulnerability management process for our AI gateway platform. You'll implement programs, run tooling, ship security fixes, and drive remediation across our stack. You’ll be responsible for all aspects of ensuring the security of our platform and users. This isn't a compliance paperwork role; it's a hands-on security position with direct impact on how we protect millions of API requests daily. You'll work closely with engineering and senior leadership to ship security improvements that actually matter.
\nWhat You'll Do
\nAbout You
\nBonus Points
\nXML job scraping automation by YubHub
","url":"https://yubhub.co/jobs/job_1d0184f1-be6","directApply":true,"hiringOrganization":{"@type":"Organization","name":"OpenRouter","sameAs":"https://jobs.ashbyhq.com","logo":"https://logos.yubhub.co/openrouter.com.png"},"x-apply-url":"https://jobs.ashbyhq.com/openrouter/188d9898-d4e0-4895-8203-86063af0ee41","x-work-arrangement":"Remote","x-experience-level":"mid","x-job-type":"Full time","x-salary-range":null,"x-skills-required":["cloud security","vulnerability scanning","SIEM platforms","vulnerability scanners","AI tools","endpoint security tooling"],"x-skills-preferred":["AI/ML infrastructure","inference platforms","Python scripting","healthcare data handling","BAA compliance"],"datePosted":"2026-03-09T09:48:01.907Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Remote (US)"}},"jobLocationType":"TELECOMMUTE","employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"cloud security, vulnerability scanning, SIEM platforms, vulnerability scanners, AI tools, endpoint security tooling, AI/ML infrastructure, inference platforms, Python scripting, healthcare data handling, BAA compliance"}]}