Principal Infrastructure Security Engineer

The Principal Infrastructure Security Engineer plays a critical role in ensuring the security and integrity of the company's IT infrastructure and systems. They will be responsible for designing, implementing, and maintaining robust security solutions across the enterprise, with a strong focus on Identity and Access Management (IAM) and IT Security. The ideal candidate will have deep expertise in endpoint security, mobile device management (MDM), device trust, vulnerability scanning, and patching.

WHAT YOU’LL DO:

• Design and implement security controls and best practices for AWS infrastructure
• Develop and maintain infrastructure-as-code templates (CloudFormation, Terraform) with security best practices
• Implement and manage vulnerability scanning and management processes for AWS infrastructure and Kubernetes clusters
• Collaborate with DevOps teams to integrate security into CI/CD pipelines and automate security checks
• Conduct security assessments and penetration testing of AWS infrastructure and Kubernetes clusters
• Develop and maintain security policies, procedures, and guidelines for AWS and Kubernetes
• Monitor and respond to security incidents and alerts related to infrastructure security
• Provide technical guidance and mentorship to junior team members
• Stay current with the latest cloud security trends, threats, and best practices
• Drive innovation and continuous improvement of infrastructure security processes and tools

WHO YOU ARE:

• 8+ years of experience in infrastructure security, with a focus on cloud security (AWS)
• Deep expertise in securing AWS services (EC2, S3, IAM, VPC, etc.) and Kubernetes
• Strong knowledge of infrastructure-as-code practices and tools (CloudFormation, Terraform)
• Experience with vulnerability scanning, management, and remediation in cloud environments
• Familiarity with containerization and orchestration technologies (Docker, Kubernetes)
• Solid understanding of security best practices for CI/CD pipelines and DevSecOps
• Excellent problem-solving and analytical skills
• Strong communication and collaboration abilities
• Ability to lead and mentor junior team members
• Passionate about staying up-to-date with the latest cloud security technologies and best practices
• Authorized to work in the United States

Even Better:

• Bachelor's degree in Computer Science, Engineering or related field
• Relevant security certifications (CISSP, CISM, CCSP, or similar)
• Familiarity with cloud security and DevSecOps practices
• You have experience working in the Bitcoin space

WHAT WE OFFER:

• Company paid medical, dental, and vision coverage
• 401k with employer match 
• Employee stock options
• Unlimited PTO
• Training & development opportunities
• Remote work flexibility

Unchained offers a suite of bitcoin financial services built on top of a unique collaborative custody model. These include: buying and selling bitcoin directly to and from cold storage, bitcoin retirement accounts, bitcoin-backed loans, concierge services to educate clients on best security practices, and cold storage solutions for institutions and other businesses.