Lead Security Engineer / DevSecOps
What you'll do
- Define and implement secure-by-default baselines for cloud (AWS/GCP/Azure) and Kubernetes infrastructure, and embed them into Overnox's platform reference architectures
- Own the DevSecOps pipeline: shift-left SAST/DAST/SCA, IaC scanning, container/image supply-chain security (SBOM, signing), and secrets management
- Drive vulnerability management and remediation — prioritization, tracking, and closing the loop — across client environments
- Design and extend detection and response: SIEM pipelines, cloud threat detection, alerting, and incident response playbooks and runbooks
- Lead AI/LLM security engagements: prompt-injection and jailbreak defenses, LLM security reviews, output/guardrail validation, and AI red-teaming
- Architect IAM and Zero Trust designs — least privilege, identity federation, network segmentation — for client platforms
- Automate security tooling and controls with code (Python, Go, Rego, HCL) so guardrails scale without slowing delivery
- Serve as the senior security voice with client CISOs and engineering leaders, run threat models, and mentor security and platform engineers
What we're looking for
- 8+ years in security engineering, cloud security, or DevSecOps, with a track record of securing production systems at scale
- Deep, hands-on cloud security expertise in at least one major provider (AWS, GCP, or Azure) and strong Kubernetes security experience
- Proven DevSecOps skills: integrating SAST/DAST/SCA and IaC/container scanning into CI/CD, plus secrets management and policy-as-code (OPA/Rego)
- Strong grasp of IAM, Zero Trust, network security, and secure architecture design
- Hands-on detection & response experience: SIEM, threat detection, and leading incident response
- Automation-first mindset with real coding ability in Python, Go, or similar (plus HCL/Rego)
- Experience with threat modeling and translating technical risk into clear business terms
- Demonstrated technical leadership and mentorship in a security context
Nice to have
- Hands-on AI/LLM security: prompt-injection research, jailbreak defense, AI red-teaming, or LLM security reviews
- Familiarity with SOC 2, ISO 27001, HIPAA, or PCI DSS control implementation
- Offensive security background (pentesting, red team) or relevant certs (OSCP, GIAC, CKS)
- Experience building or operating security operations for multiple clients
- Contributions to open-source security tooling or published research
About Overnox
Overnox is an AI engineering and infrastructure consultancy. We help startups and enterprises securely adopt AI, automate operations, and scale cloud infrastructure with enterprise-grade engineering — building, securing, and operating production AI systems as one accountable senior team. Security-first, product-minded, no outsourcing.
What we offer
- Fully remote — work from anywhere, with a few hours of overlap for collaboration
- Competitive base plus meaningful equity in the company you're helping build
- Senior-only team — real peers, no juniors to babysit, no offshore handoffs
- Top-tier hardware and a generous learning, certification, and conference budget
- Direct ownership of outcomes and a genuine say in how we build and operate
- Region-appropriate health, time-off, and wellbeing support
Compensation
The listed range ($210k–$300k + equity) is a good-faith estimate. Final compensation is based on your experience, level, and location, and includes meaningful equity. We benchmark pay against the market and review it regularly.
Equal opportunity & accommodations
Overnox is an equal opportunity employer. We celebrate diversity and are committed to an inclusive environment for everyone. We do not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, veteran status, or any other characteristic protected by applicable law.
If you need a reasonable accommodation at any point in the application or interview process, email hello@overnox.com and we'll work with you.
Apply for this role
Attach your resume and tell us why you're a fit.