Key skills
PythonCGoAIMachine LearningKubernetesDockerCollaborationOWASPPenetration TestingNetwork SecurityCloud SecurityWAF
About this role
Runpod is pioneering the future of AI and machine learning, offering cutting-edge cloud infrastructure for full-stack AI applications. The Security Engineer will be responsible for safeguarding the GPU cloud platform, ensuring the security and isolation of customer workloads while collaborating with software engineering teams to build secure systems.
Responsibilities:
- Design and implement secure architectures for Runpod's multitenant GPU cloud platform, ensuring strong isolation between customer workloads
- Conduct thorough security assessments, including threat modeling, code reviews, and penetration testing of our cloud infrastructure and services
- Develop and implement security fixes and improvements in collaboration with software engineering teams
- Implement and manage security tools and systems (e.g., SIEM, WAF, EDR)
- Create and maintain security documentation, including policies, procedures, and technical guidelines specific to GPU cloud security
- Provide security guidance and training to development teams to foster a security-first culture in cloud development
- Participate in incident response activities and contribute to post-incident analysis and improvements
- Collaborate with operations team to ensure adherence to relevant standards (e.g., SOC 2, ISO 27001, GDPR)
Requirements:
- Bachelor's degree in Computer Science, Cybersecurity, or a related field
- 5+ years of experience in information security roles, with a focus on cloud security
- Strong programming skills in at least one language (ideally, Python, Go, or C)
- Extensive knowledge of Linux kernel internals, containerization technologies, and virtualization
- Deep understanding of workload/network isolation techniques in multitenant cloud environments
- Experience securing and hardening cloud infrastructure, particularly in environments with untrusted workloads
- Familiarity with GPU architecture and security considerations in GPU cloud computing
- Strong background in network security, application security, and cloud-native security practices
- Experience with security testing tools and methodologies (e.g., OWASP, Burp Suite, static/dynamic analysis tools)
- Familiarity with common cybersecurity frameworks (e.g., NIST, CIS Controls) and their application to cloud environments
- Excellent problem-solving skills and ability to think creatively about security challenges in cloud computing
- Successful completion of a background check
- Relevant security certifications (e.g., CISSP, CCSP, OSCP)
- Experience with DevSecOps practices and tools in cloud environments
- Deep knowledge of containerization and orchestration technologies (e.g., Docker, Kubernetes) and their security implications
- Familiarity with regulatory compliance requirements for operating cloud services
- Contributions to open-source security projects or security research publications related to cloud or GPU computing
- Experience with GPU programming and understanding of GPU-specific security concerns