Senior Security Engineer

Summary

Join Voltage Park's growing AI Cloud Infrastructure team as a Senior Security Engineer. Build internal security tooling, conduct threat assessments, lead penetration testing, and support forensic investigations. Collaborate with the CISO and engineering teams to implement robust security controls through hands-on engineering. This fully remote role (US-based) requires expertise in crafting custom payloads, evaluating CVEs, and understanding exploit primitives. You will be responsible for building and maintaining security tooling, automating vulnerability scanning, and integrating security tools with development workflows. The role also involves conducting penetration tests, threat modeling, and supporting incident response investigations.

Requirements

• 4-7 years of experience in security engineering, offensive security, or related technical roles
• Proficient in scripting (Python, Bash, PowerShell) and familiar with CI/CD and DevOps workflows
• Hands-on experience with red team or penetration testing methodologies and tooling
• Strong understanding of common vulnerabilities, exploit techniques, and secure architecture patterns
• Experience building or automating security assessments and scanning pipelines
• Familiar with network security fundamentals and tools (firewalls, packet inspection, VPNs)
• Comfortable working independently with high accountability and attention to detail
• We are not able to provide sponsorship for this position

Responsibilities

• Build, maintain, and improve internal security tooling to support threat detection, monitoring, and compliance
• Develop automation for vulnerability scanning, dependency analysis, secrets detection, and CI/CD pipeline security
• Integrate security tools with development workflows to provide fast, actionable insights to engineering teams
• Conduct vulnerability assessments across infrastructure, applications, and third-party integrations
• Perform targeted penetration tests simulating real-world attack scenarios
• Document and communicate findings clearly, working with engineers to design practical remediations
• Support continuous improvement of our security posture through ongoing assessment cycles
• Participate in threat modelling sessions during system and feature design
• Identify abuse cases, trust boundaries, and attack vectors; propose mitigations aligned with engineering goals
• Support investigations by analyzing endpoint, network, and log data during and after incidents
• Assist in root cause analysis and develop scripts or queries to identify indicators of compromise (IOCs)
• Collaborate with other responders to provide technical depth during containment and remediation efforts
• Tune and improve detection logic in collaboration with our SOC tooling or EDR
• Analyze data from network devices, logs, and other telemetry sources to support detection engineering

Preferred Qualifications

Exposure to forensic tooling, endpoint analysis, and log investigation is a plus

Benefits

This is a fully remote role, but you must be located in the United States