SecurityEngineer(Infrastructure)

Security Engineers at Coder turn security requirements into systems that engineers can use. In this role, you’ll secure cloud infrastructure, CI/CD, and platform workflows through automation, guardrails, and everything-as-code practices. You’ll work closely with Platform Engineering as a steady security partner. Together, you’ll reduce risk, improve developer workflows, and keep our infrastructure secure by default. What you’ll do here - Design and implement scalable guardrails for our multi-cloud infrastructure across AWS and GCP - Harden CI/CD pipelines and platform workflows to improve our software supply chain security posture - Practice and promote an everything-as-code approach across infrastructure, configuration, and policy - Automate repetitive security and compliance tasks so teams can stay aligned with frameworks without extra drag - Triage and review findings from cloud and infrastructure security tools, including CNAPP and CSPM platforms - Partner with engineers to prioritize risk, resolve findings, and improve controls over time What we’re looking for - 3+ years of professional experience in infrastructure security, cloud security, platform security, or a similar role - Hands-on public cloud security experience, with AWS and/or GCP preferred - Strong CI/CD security experience with tools such as GitHub Actions, GitLab CI, or similar systems - A strong infrastructure-as-code and automation mindset, including experience with Terraform, policy-as-code, or configuration-as-code - Familiarity with modern cloud security tooling, including CNAPP and CSPM platforms - Clear communication with engineering teams and a practical approach to risk reduction BONUS TACOS IF YOU HAVE - (Tacos? If you need an ice-breaker, ask how we say thanks by giving tacos!) - Hands-on experience securing containerized workloads with Docker, Kubernetes, or similar technologies - Working knowledge of compliance frameworks such as SOC 2 or ISO 27001 - Experience applying AI tools to imp