Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
FluidStack

Information Security Engineer – Bare Metal

FluidStack

Information Security Engineer securing AI infrastructure in dynamic environment. Leading initiatives in end-to-end security for servers and infrastructure supporting AI technology.

Posted 7/17/2026full-timeNew York City • New York • 🇺🇸 United StatesMid-LevelSenior💰 $168,000 - $225,000 per yearWebsite

Core Competencies

Role fit
Core Competencies

Use this summary to align your resume positioning with the role.

Demonstrates expertise in end-to-end server security, including hardening, vulnerability management, and incident response. Proficient in automation and encryption practices within high-scale cloud infrastructure and bare metal environments.

Highest-signal resume keywords
End-To-End Server SecurityLinux Hardening (SELinux, AppArmor)Encryption Implementation (LUKS, HSM)Automation (Python, Go, Rust)Compliance Standards (SOC 2, ISO 27001)

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
Linux HardeningVulnerability ScanningConfiguration Management (Ansible, Puppet, Chef)Data-At-Rest EncryptionNetwork Security (TCP/IP, VPNs)Zero-Trust ArchitectureThreat ModelingIncident ResponseFirmware IntegrityMicro-Segmentation
Soft Skills
Cross-Team CollaborationClear Communication
Tools & Technologies
BMC Platforms (OpenBMC, iDRAC, iLO)IDS/IPSFirewall ArchitectureSecure BootTrusted Computing (TPM/TXT)
Certifications & Qualifications
CISSPOSCPCEH
Industry Keywords
Infrastructure EngineeringIaaSHigh-Scale Cloud InfrastructureAudit LoggingCredential Rotation

Tech Stack

Tools & technologies
AnsibleChefCloudGoLinuxPuppetPythonRustTCP/IP

About the role

Key responsibilities & impact
  • Own end-to-end security for every server in the bare metal fleet, from supply chain and provisioning through hardening, operation, and secure decommissioning.
  • Design and maintain hardened golden OS images with automated vulnerability scanning, patch pipelines, and configuration-drift detection.
  • Define and enforce the BMC security model (access control, credential rotation, audit logging, firmware integrity) for one of the most under-defended surfaces in the industry.
  • Partner with network engineering on micro-segmentation, IDS/IPS, and firewall architecture, applying zero-trust from the top-of-rack up.
  • Implement data-at-rest encryption, key management, and secure storage access at fleet scale, and build the automation that makes secure-by-default the path of least resistance.
  • Lead threat modeling and security reviews for new hardware platforms and network designs, and respond to incidents touching the physical fleet.

Requirements

What you’ll need
  • You've worked in information security or infrastructure engineering with a strong focus on bare metal, IaaS, or high-scale cloud infrastructure.
  • You harden Linux deeply (SELinux, AppArmor, kernel-level security) and command network security (TCP/IP, VPNs, firewall rulesets, zero-trust).
  • You implement encryption in practice, including disk-level (LUKS) and hardware-level, and you understand HSMs and trusted computing (TPM/TXT).
  • You automate fluently in Python, Go, or Rust, with configuration management (Ansible, Puppet, Chef).
  • You work well across engineering teams and communicate security decisions clearly.
  • Bonus: BMC platforms (OpenBMC, iDRAC, iLO). Hardware root of trust and secure boot. Compliance standards (SOC 2, ISO 27001, FedRAMP). CISSP, OSCP, or CEH.

Benefits

Comp & perks
  • Offers Equity 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score