>_TwojRekruter
/Senior Software Security Engineer

Senior Software Security Engineer

-, North America, USusvia direct
// Job Type
Full Time
// Salary
USD 185,000 - 185,000/year
// Salary Range
185,000–185,000 USD / year
// Posted
4 weeks ago

About the Role

<h2><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Who We Are</strong></span></h2><p><strong>Spectro Cloud lets organizations around the world run AI infrastructure at scale - without losing control. A rapidly growing number of Global 5000 and government organizations across the US and EMEA are choosing Spectro Cloud to design, deploy, and manage full-stack AI and modern infrastructure across edge, data center, and cloud.<br><br>Whether they are building AI factories, scaling edge inferencing, or managing multi-cloud, multi-cluster Kubernetes fleets, customers are relying on Spectro Cloud’s unified orchestration plane to deliver the control, efficiency, and architectural flexibility needed to operate at scale without vendor lock-in. We're backed by top-tier investors and we're just getting started!</strong></p><p></p><h2><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">About the Team</strong></span></h2><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">We are a rapidly growing startup seeking a highly skilled, hands-on Software Security Engineer to embed security across our engineering lifecycle, with a primary focus on hardening our Kubernetes-based production platform.</strong></span></p><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">This is a builder role for someone who thrives on securing real systems, not just writing policies. You will drive threat modeling, secure code reviews, and the design and implementation of security controls, actively contributing to platform defense.</strong></span></p><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">You will own security end-to-end across our platform and product, including vulnerability management, security architecture reviews, and incident response. You will focus on vulnerabilities and misconfigurations across the platform, ensuring Kubernetes environments are secure, compliant, and continuously monitored. Engineering teams confidently rely on security tooling and controls the Security initiatives you will put in place will proactively improve developer velocity (“shift left”) and be an enabler of product deliver - not a bottleneck</strong></span></p><h2><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">What You'll Do</strong></span></h2><h3><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Technical Leadership and Execution</strong></span></h3><ul><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Design, implement, and operate security controls for Kubernetes-based production platforms</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Harden containers, nodes, and cluster configurations to meet production-grade security standards</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Conduct in-depth security reviews of infrastructure using IaC practices (Terraform, Helm, GitOps)</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Implement and automate security enforcement via scripts, policies, and tooling (e.g., OPA, Kyverno, admission controllers)</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Perform architecture and design reviews with a focus on least privilege, defense-in-depth, and attack surface reduction</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Advance platform security monitoring through logging, alerting, and SIEM integrations</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Build automation (Bash, Python, Go) to scale security operations and reduce manual effort</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Apply AI/ML techniques to detect anomalous behavior, zero-day threats, and advanced attack patterns</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Leverage AI-driven tools for policy generation, risk scoring, and remediation prioritization</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Develop approaches to identify configuration drift and misconfigurations across Kubernetes and IaC environments</strong></span></p></li></ul><h3><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Security and Operations Management</strong></span></h3><ul><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Lead and evolve incident response processes; act as a primary escalation point when needed</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Conduct blameless post-mortems and ensure timely remediation of security gaps</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Own vulnerability management across platform, cloud, and application layers</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Strengthen security posture through baseline standardization and operational readiness</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Oversee secrets management, encryption strategies, and access control policies</strong></span></p></li></ul><h3><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Team Culture &amp; Cross-Functional Collaboration</strong></span></h3><ul><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Champion a “Security as Code” mindset and promote shared ownership through Security Champions programs</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Balance startup speed with scalable, long-term security practices</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Partner closely with engineering teams to embed security into development workflows (DevSecOps)</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Collaborate with SRE on platform hardening, incident response, and reliability improvements</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Clearly communicate security risks and posture to technical and executive stakeholders</strong></span></p></li></ul><h2><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Minimum Qualifications</strong></span></h2><ul><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">6+ years of experience in Software Security, Product Security, or DevSecOps</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">2+ years in a technical leadership or mentorship role</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Deep, hands-on expertise in Kubernetes security and cloud-native systems</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Strong experience securing Linux, containers, and cloud platforms (AWS, GCP, or Azure)</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Proven track record managing real-world security incidents in production environments</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Strong programming/scripting skills (Go, Python, Bash, or similar)</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Solid understanding of compliance frameworks (FIPS, CIS, STIG) and their practical application</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Hands-on experience with image hardening and secure system configurations</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Experience driving penetration testing programs and managing external vendors</strong></span></p></li></ul><h2><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Preferred Qualifications</strong></span></h2><ul><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Experience building or scaling DevSecOps programs in a startup environment</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Familiarity with tools such as Falco, Tenable, Elastic, Trivy</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Knowledge of service meshes, network policies, and runtime security</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Strong background in threat modeling and secure system design</strong></span></p></li><li><p><span><strong id="docs-internal-guid-e09209d7-7fff-a0b6-598b-449ead0893c5">Relevant certifications (CKS, CISSP, CCSP, GSEC, etc.)</strong></span></p></li></ul><h2><span><strong id="docs-internal-guid-990a2cc9-7fff-962a-20fb-5cf43d2c1606">What We Offer</strong></span></h2><ul><li><p><span><strong id="docs-internal-guid-990a2cc9-7fff-962a-20fb-5cf43d2c1606">Compensation: </strong><strong id="docs-internal-guid-297754d3-7fff-f4fd-b0c1-883790e6cba1">$185,000 (Base + Bonus) + Equity, </strong><strong id="docs-internal-guid-990a2cc9-7fff-962a-20fb-5cf43d2c1606">based on experience</strong></span></p></li><li><p><span><strong id="docs-internal-guid-990a2cc9-7fff-962a-20fb-5cf43d2c1606">Benefits: Comprehensive medical, dental, and vision coverage. 100% coverage for employees, 90% for dependents</strong></span></p></li><li><p><span><strong id="docs-internal-guid-990a2cc9-7fff-962a-20fb-5cf43d2c1606">Retirement: Access to a retirement savings plan</strong></span></p></li><li><p><span><strong id="docs-internal-guid-990a2cc9-7fff-962a-20fb-5cf43d2c1606">Time Off: Flexible time off, including 12 paid holidays</strong></span></p></li><li><p><span><strong id="docs-internal-guid-990a2cc9-7fff-962a-20fb-5cf43d2c1606">Perks: Catered lunches on in-office days, mobile/internet reimbursement</strong></span></p></li></ul><p><br><span><strong id="docs-internal-guid-990a2cc9-7fff-962a-20fb-5cf43d2c1606">Location: This position is based at the HQ office in San Jose, with an onsite requirement of three days per week.</strong></span></p><p><span><strong id="docs-internal-guid-297754d3-7fff-f4fd-b0c1-883790e6cba1">Visa Support: Applicants are required to be eligible to lawfully work in the country of work; we are unable to provide sponsorship for this opportunity.</strong></span></p><h2><br><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">The Hiring Process</strong></span></h2><p><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">At Spectro Cloud, we highly value your time and dedication throughout the hiring process. Therefore, we aim to ensure that our interactions are efficient and focused on delivering value.</strong></span></p><p><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">Our interview process for this role typically comprises of three stages:</strong></span></p><p><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">Interview Round 1: Kubernetes Baseline Gate (Mandatory)</strong></span><br><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">Candidates must demonstrate deep expertise with one of the following:</strong></span></p><ul><li><p><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">Active CISSP and CKA / CKAD / CKS certification</strong></span></p></li><li><p><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">Demonstrable hands-on Kubernetes/platform with product security experience<br>(Proof is required during application)</strong></span></p></li></ul><p><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">Interview Round 2: Directed Product Self-Learning</strong></span><br><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">Candidates are given a curated documentation reading list (</strong></span><a target="_blank" href="http://docs.spectrocloud.com"><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">docs.spectrocloud.com</strong></span></a><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">) to filter for motivation, learning agility, and the ability to absorb platform knowledge, mirroring real-world expectations. Product Security interviews will be conducted with these learned topics from the above site.</strong></span></p><p><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">Interview Round 3: Technical Assessment</strong></span><br><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">Candidates must demonstrate expertise in the below topics:</strong></span></p><ul><li><p><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">Platform Architecture, Applied Kubernetes Fundamentals, Day-2 Operations, Security, Troubleshooting</strong></span></p></li><li><p><span><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d">Candidates must assume engineering is unavailable and solve security issues independently</strong></span></p></li></ul><p><span><strong id="docs-internal-guid-990a2cc9-7fff-962a-20fb-5cf43d2c1606">2026-211</strong><strong id="docs-internal-guid-9e23bb4b-7fff-5f00-9b9f-92893f20864d"><br></strong></span></p>
View on Original Source

Interested in this job?

Login to Apply

Use our AI to tailor your resume for this Senior Software Security Engineer position at Spectro Cloud.

Login to Apply