Staff Platform Security Engineer (Cloud / K8s) — Stealth Crypto Infrastructure Expansion

Staff Platform Security Engineer (Cloud / K8s) — Stealth Crypto Infrastructure Expansion 💎
New York | San Francisco | Hybrid (2 days onsite)

We’re building the security backbone for a next-gen digital asset platform — a place where cloud, code, and cryptography meet global scale.
If you live for infrastructure that self-heals, scales like trading volume, and enforces zero trust by design — this one’s for you.

This is not a “policy” role. You’ll be writing production code daily — building tools, guardrails, and automation that secure Kubernetes clusters and multi-region AWS environments powering billions in digital transactions. Every line you write makes the system stronger.

What You’ll Do

• Engineer cloud security services and tooling in Python or Go — from scratch, in prod.
• Harden AWS & Kubernetes environments — IAM, KMS, RBAC, admission controls, runtime defense.
• Develop reusable Terraform modules, CI/CD guardrails, and policy-as-code frameworks.
• Automate detection, remediation, and monitoring pipelines for security events.
• Design and scale zero-trust cloud architectures — no standing privileges, least-access enforced everywhere.
• Partner with world-class Infra and Platform teams on architecture decisions.
• Participate in global on-call rotation (you’ll own what you build — like a true engineer).

What You Bring

• Strong software dev skills in Python or Go (real code, not config).
• Deep AWS security experience (IAM, STS, VPC, KMS, GuardDuty, etc.).
• Terraform master: policy testing, CI/CD pipelines, remote state, zero-downtime IaC.
• Kubernetes security know-how — network policies, admission webhooks, RBAC tuning, runtime protection.
• Background in distributed systems, SRE, or large-scale infra operations.
• (Bonus) Experience with OPA/Sentinel, service mesh, multi-cloud (GCP/Azure), or OSS security contributions.