Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Replit

Security Engineer – Vulnerability Management, Infrastructure

Replit

Mid-level Infrastructure Vulnerability Management Engineer at Replit, focusing on cloud security and compliance. Collaborating across teams to manage vulnerabilities in multi-cloud environments.

Posted 5/27/2026full-timeFoster City • California • 🇺🇸 United StatesMid-LevelSenior💰 $210,000 - $270,000 per yearWebsite

Tech Stack

Tools & technologies
AWSAzureCloudDockerGoogle Cloud PlatformKubernetesTerraform

About the role

Key responsibilities & impact
  • Perform continuous security scanning across our cloud posture and workloads. Review, validate, and prioritize flaws and misconfigurations based on CVSS scores, real-world exploitability, and infrastructure network exposure.
  • Own and optimize Cloud Security Posture Management (CSPM), Kubernetes Security Posture Management (KSPM), and Data Security Posture Management (DSPM) tools to ensure uniform compliance, prevent data leakage, and maintain hardened baselines.
  • Configure, tune, and embed automated IaC security scanning tools into CI/CD pipelines to identify architectural risks (e.g., overly permissive IAM, public S3 buckets/Cloud Storage) before they are deployed to production.
  • Manage the continuous vulnerability scanning lifecycle for container images, registries, and Virtual Machines (VMs), partnering with SRE and Platform teams to build automated base-image patching and rolling upgrade pipelines.
  • Track, document, and manage infrastructure vulnerabilities according to strict compliance SLAs (e.g., SOC 2, ISO 27001, PCI-DSS). Maintain audit-ready evidence of infrastructure remediation timelines and exception approvals.
  • Escalate and report critical production exposures directly to the CISO and senior leadership. Maintain dashboards and alerting mechanisms that visualize infrastructure risk trends and cloud compliance posture.
  • Partner with SRE, DevOps, and Platform teams to provide clear infrastructure mitigation paths. Assist in writing, reviewing, or modifying cloud configuration templates directly when necessary to resolve security flaws.
  • Assist Incident Response teams during active cloud or host-level breaches. Help develop and implement immediate, real-time cloud, network, or IAM configuration countermeasures to contain threats.

Requirements

What you’ll need
  • 5 years of experience in Cloud Security, DevSecOps, or Systems Engineering roles.
  • Strong foundational experience working with multi-cloud environments (Deep GCP expertise preferred, with working knowledge of AWS or Azure).
  • Hands-on experience operating modern infrastructure security platforms such as Wiz, Orca, Prisma Cloud, Lacework, or cloud-native options (GCP Security Command Center).
  • Strong proficiency with Infrastructure as Code platforms (Terraform, Pulumi) and GitOps deployment workflows. Ability to evaluate and configure IaC scanners like Checkov, Tfsec, or KICS.
  • Deep understanding of Docker/container security and Kubernetes architectures (e.g., GKE, EKS), including runtime security, network policies, and workload identity.
  • Understanding of how infrastructure configurations and vulnerability management map to security compliance frameworks like SOC 2, ISO 27001, CIS Benchmarks, or NIST.

Benefits

Comp & perks
  • Competitive Salary & Equity
  • 401(k) Program with a 4% match (*US Only*)
  • Health, Dental, Vision and Life Insurance
  • Short Term and Long Term Disability
  • Paid Parental, Medical, Caregiver Leave
  • Flexible Time Off (FTO) + Holidays
  • Commuter Benefits (*In-Office Only*)
  • Monthly Wellness Stipend
  • Autonomous Work Environment
  • In Office Set-Up Reimbursement (*In-Office Only*)
  • Quarterly Team Gatherings
  • In Office Amenities (*In-Office Only*)

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Cloud SecurityDevSecOpsSystems EngineeringInfrastructure as CodeDockerKubernetesVulnerability ManagementSecurity ComplianceIaC ScanningCloud Security Posture Management
Soft Skills
CollaborationCommunicationProblem SolvingIncident ResponseDocumentationPrioritizationRisk ManagementAnalytical ThinkingAttention to DetailLeadership
Certifications
SOC 2ISO 27001PCI-DSS