Infrastructure Security Engineer at Nebius

Remote - EuropeFull-timeRemotePlatform SecurityPosted 15 days ago

About the Role

<div class="content-intro">About Nebius: Nebius is leading a new era in cloud infrastructure for the global AI economy. We are building a full-stack AI cloud platform that supports developers and enterprises from data and model training through to production deployment, without the cost and complexity of building large in-house AI/ML infrastructure. Built by engineers, for engineers. From large-scale GPU orchestration to inference optimization, we own the hard problems across compute, storage, networking and applied AI. Listed on Nasdaq (NBIS) and headquartered in Amsterdam, we have a global footprint with R&D hubs across Europe, the UK, North America and Israel. Our team of 1,500+ includes hundreds of engineers with deep expertise across hardware, software and AI R&D.</div>The role The Security Engineering Team within the Platform Security organization is responsible for the strategic selection, implementation, management, and optimization of cybersecurity tools and technologies that improve security capabilities of the organization's platform. This team is instrumental in fortifying the security posture, proactively identifying and responding to security threats, ensuring the resilience and protection of critical data, systems, and services. We are looking for an Infrastructure Security Engineer to secure our cloud and on-premises infrastructure by implementing security controls, monitoring threats, ensuring compliance with industry standards and respond to security incidents. The ideal candidate has a strong background in cloud security, Linux hardening, and network security. Your responsibilities will include: <ul class="ak-ul" data-indent-level="1"> <li> Design and implement security measures to protect cloud and on-premises infrastructure. </li> <li> Identify and remediate vulnerabilities in cloud environments, networks, and operating systems. </li> <li> Build and maintain cloud and infrastructure security tools. </li> <li> Perform security reviews, threat modeling and risk assessments of infrastructure components. </li> <li> Develop and maintain security guidelines for Network and SRE teams. </li> <li> Collaborate with Network and SRE teams to integrate security best practices into their processes and systems. </li> <li> Stay updated on the latest security threats, vulnerabilities, and mitigation techniques. </li> <li> Serve as an network and infrastructure security subject matter expert to other teams. </li> </ul> We expect you to have: <ul class="ak-ul" data-indent-level="1"> <li> 4+ years of experience in network, infrastructure or cloud security. </li> <li> Strong understanding of modern cloud architectures and deployment models (VMs, containers, serverless, Kubernetes). </li> <li> Solid knowledge in networks, distributed systems and Linux systems engineering. </li> <li> Hands-on experience with network, VPN and Linux security. </li> <li> Understanding of Identity and Access Management (IAM) systems. </li> <li> Experience with security automation tools and scripting (e.g. Python, Bash, Go, etc.) and willingness to learn Go, if necessary. </li> <li> Experience in using and accessing security of Infrastructure as Code (Terraform). </li> <li> Experience in hardening Linux based systems (apparmor, seccomp, etc.). </li> <li> Experience in hardening Kubernetes. </li> <li> Strong problem-solving and analytical skills. </li> <li> Good written and verbal communication skills in English. </li> <li> Willingness to learn new things. </li> <li> Being comfortable working independently. </li> </ul> It will be an added bonus if you have: <ul class="ak-ul" data-indent-level="1"> <li> Proficiency in securing AWS, GCP, or Azure environments. </li> <li> Experience in conducting threat-modeling sessions. </li> <li> Experience in designing, building, and maintaining Identity Aware Proxies or Bastion hosts. </li> <li> Experience in translating compliance and regulation requirements into technical specifications. </li> <li> Experience in exploiting vulnerabilities in Linux kernel, VMs, containers, and networks. </li> <li> Experience in securing bare metal workloads. </li> <li> Security certifications such as OSCP or CKS. </li> </ul> We conduct coding interviews as part of the process.<div class="content-conclusion">Benefits & Perks: <ul> <li>Competitive compensation</li> <li>Career growth and learning opportunities</li> <li>Flexibility and work-life balance</li> <li>Collaborative and innovative culture</li> <li>Opportunity to work on impactful AI projects</li> <li>International environment and talented teams</li> </ul> What's it like to work at Nebius: Fast moving - Bold thinking - Constant growth - Meaningful impact - Trust and real ownership - Opportunity to shape the future of AI  Equal Opportunity Statement: Nebius is an equal opportunity employer. We are committed to fostering an inclusive and diverse workplace and to providing equal employment opportunities in all aspects of employment. We do not discriminate on the basis of race, color, religion, sex (including pregnancy), national origin, ancestry, age, disability, genetic information, marital status, veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by applicable law. Applicants must be authorized to work in the country in which they apply and will be required to provide proof of employment eligibility as a condition of hire.  If you need accommodations during the application process, please let us know.</div>

About the Role

Related Roles