Role Description We are seeking an experienced Engineering Leader to head the Cloud Antivirus Department at Imunify360, overseeing three specialized teams that form the core of Imunify's malware detection, analysis, and cloud scanning infrastructure. This role combines deep technical expertise in malware analysis and distributed systems with strong people management and strategic product vision. The department is responsible for protecting millions of websites on shared hostings through the Imunify360/ImunifyAV product line, processing tens of millions of files through a cloud-based antivirus pipeline, and maintaining the malware signature lifecycle from creation to deployment. Teams Under Management - Malware Team: On-server malware scanning and detection stack: signature-based and heuristic scanners, real-time file monitoring, malware cleaner, signature server, release engineering and rollout. - Cloud Antivirus (CloudAV) Team: Cloud-based malware analysis infrastructure: large-scale Airflow data processing cluster (24+ nodes), PHP emulator sandbox, automated signature generation, file classification pipelines, storage and hardware capacity planning. - Malware Processing Team: Malware analysis operations: sample triage, signature creation, false negative/false positive remediation, ML-assisted classification, vendor integrations, and remediation tooling. Key Responsibilities - Product & Strategy: - Introduce, own and constantly improve key metrics for antivirus products. - Define and prioritize the product roadmap across all three teams. - Drive product initiatives to achieve challenging key metrics. - Collaborate with Product Management on VIP customer requirements and competitive analysis. - Introduce more AI tools & instruments within malware detection lifecycle. - Technical Leadership & Architecture: - Own the end-to-end malware detection pipeline: from file ingestion through cloud analysis to on-server verdict delivery and cleanup. - Drive architectural decisions for distributed data processing (Airflow DAGs, async Python, ClickHouse, MongoDB, Redis, Kafka). - Oversee migration and modernization initiatives (e.g., AI malware analysis, AI rules creation). - Design and implement performance optimizations for cloud processing throughput (10M+ brand new samples added daily). - Manage infrastructure capacity planning: compute nodes, Ceph storage clusters, database scaling. - People Management: - Lead 3 teams across multiple time zones. - Hire, mentor, and grow engineers and team leaders for 3 teams. - Coordinate cross-team dependencies with Server Team, Web Protection Team, QA, Infrastructure, and Support. - Operational Excellence: - Ensure signature release quality through automated testing pipelines. - Monitor and improve detection rates, false positive rates, and cleanup success metrics. - Respond to production incidents (certificate expiries, infrastructure failures, processing bottlenecks). - Manage vendor and partner technical integrations. Goals for the First 6 Months - Understand the full pipeline end-to-end: from file ingestion from clients' servers, pipelines processing in the cloud, verdict delivery, and on-server scanning/cleanup. - Maintain momentum on active initiatives: e.g. Rust migration. - Establish relationships with cross-functional stakeholders (Server Team, Web Protection Team, Product, Support, Infrastructure). - Identify and address the top 3 detection quality or infrastructure bottlenecks. - Define the department key metrics and start tightening them to excellence. Qualifications - Past experience leading security products / labs with / researches. - 8+ years of software engineering experience, with 3+ years in a management role leading multiple teams. - Deep expertise in malware analysis and antivirus technologies: static/dynamic analysis, signature-based detection, heuristic engines, file classification. Requirements - Strong background in distributed systems and data engineering: experience with workflow orchestration (Airflow, Luigi, or similar), message queues (Kafka, RabbitMQ), and large-scale data processing. - Experience with infrastructure at scale: managing compute clusters, storage systems (Ceph, S3), databases (ClickHouse, MongoDB, PostgreSQL, Redis). - Strong understanding of CI/CD pipelines: Jenkins, GitLab CI, containerized deployments (Docker). - Experience with monitoring and observability: Grafana, Sentry, log aggregation. - Experience in the web hosting security domain (cPanel, Plesk, shared hosting environments). - Background in machine learning applied to malware detection (transformers, LLMs for code analysis). - Experience with GCP (Secret Manager, Cloud Storage). - Familiarity with PHP internals and PHP emulation for dynamic analysis. - Track record of building and scaling cloud antivirus / threat intelligence platforms. - Experience managing geographically distributed teams. Technical Stack - Languages: Python (primary), Rust, PHP, SQL. - Orchestration: Apache Airflow, Celery, Redis. - Databases: ClickHouse, MongoDB, PostgreSQL, Redis. - Storage: Ceph, S3-compatible storage. - Infrastructure: Bare metal (Atman DC), Nebula, Docker, GCP. - CI/CD: Jenkins, GitLab. - Monitoring: Grafana, Redash, Sentry. Benefits - A focus on professional development. - Interesting and challenging projects. - Fully remote work with flexible working hours, that allows you to schedule your day and work from any location worldwide. - Paid 24 days of vacation per year, 10 days of national holidays, and unlimited sick leaves. - Compensation for private medical insurance. - Co-working and gym/sports reimbursement. - Budget for education. - The opportunity to receive a reward for the most innovative idea that the company can patent.

Opala develops healthcare products that tackle the most complex data challenges faced by payers and providers. As a startup originating from a major healthcare plan in the Northwest, we combine deep health-tech expertise with top-tier data and software engineering talent to create products that our customers find meaningful and valuable. These data products empower payers and their partners to find timely insights and take action to intervene in areas like value-based care analytics, interoperability compliance, and real-time streaming of clinical data. In this remote position, we're seeking an experienced Senior Platform Security Engineer to join our team. Here, you will play a critical role in securing our cloud infrastructure and embedding strong security practices across our engineering squads. You’ll bridge platform engineering and security, building paved-road guardrails that make it easy for developers to ship securely in a healthcare data environment. You'll also both "lead by doing" (designing and implementing IaC guardrails, CI/CD security checks, and software supply chain protections) AND "lead by influence" (mentoring engineers and partnering with our Security and Compliance team). Responsibilities: - Monitor and secure our Azure + AWS environments, responding to incidents and remediating vulnerabilities. - Design and implement Infrastructure as Code guardrails (Terraform, Bash, Azure CLI, AWS CLI, Jinja, CloudInit). - Embed security checks into CI/CD pipelines (GitHub Actions). - Build and manage secrets management, identity solutions, and key rotation. - Partner with squads to ensure product features are secure and compliant by design. - Investigate security breaches and document root cause and remediation steps. - Integrate logging/monitoring with SOC/MDR vendor to ensure strong detection and response. - Perform SAST/DAST testing and strengthen software supply chain security. - Develop and implement an immutable infrastructure strategy. - Build and execute a red team and blue team strategy to continually test defenses. - Research security enhancements and make recommendations to leadership. - Stay current on IT and security standards, advising the company on emerging risks. Minimum Qualifications: - Bachelor’s degree in computer science or related field (or equivalent experience). - 6+ years in platform engineering, DevSecOps, or cloud security roles, with at least 4 in a senior capacity. - 2+ years mentoring and developing junior team members. - Experience with security in both AWS and Azure. - Experience with IaC tools and automation (Terraform, Bash, Azure CLI, AWS CLI, Jinja, CloudInit). - Experience with SAST/DAST and securing the software supply chain. - Experience with OpenAPI/Swagger JSON specifications and API security. - Familiarity with SOC 2 controls and know how to enforce them in cloud systems. - Familiarity with HIPAA controls and know how to enforce them in cloud systems. - Strong Bash scripting skills for automation. - Ability to collaborate closely with developers and product squads while setting security best practices. Preferred Qualifications: - 2+ years of vendor management experience.Security certifications (AWS Security Specialty, AZ500, CISSP, etc.). - Experience using or administering compliance automation tools (Drata or similar GRC platforms). - Experience with HITRUST controls and how to enforce them in cloud systems. - Exposure to enterprise architecture frameworks such as TOGAF. - Experience in regulated industries (healthcare, fintech, etc.). - Experience leading or coordinating red/blue team exercises. - Experience with other scripting languages: PowerShell, python Benefits: - The Seattle base salary range for this full-time position is $163k-$192k. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. - Benefits include medical, dental, vision, life and AD&D insurance, EAP, short-term and long-term disability, 16 days PTO, 8 paid holidays, fully paid holiday closure, parental and family medical leave, 401k, stock options and annual bonuses and salary increases based on merit. Diversity and Inclusivity Statement: - At Opala, we believe that diversity and inclusivity are critical to our success. We encourage and value diverse perspectives and experiences, and we believe that they are essential for driving innovation and creating products that meet the needs of our diverse customer base.  Opala is an equal opportunity employer and makes employment decisions on the basis of merit. We are committed to providing a workplace free from harassment and discrimination. We celebrate the unique differences of our employees because that is what drives curiosity, innovation, and the success of our business. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, gender identity or expression, age, marital status, veteran status, disability status, pregnancy, parental status, genetic information, political affiliation, or any other status protected by the laws or regulations in the locations where we operate. Accommodations are available for applicants with disabilities.

• Gain hands-on experience at the intersection of cloud security, AI platform engineering, and federal compliance. • Work alongside experienced engineers, data scientists, and cybersecurity professionals to support the design, deployment, and hardening of AI infrastructure. • Directly support high-priority strategic AI initiatives, giving exposure to real-world challenges in operationalizing AI at enterprise scale.

• Secure AI / ML platforms and workloads • Lead security architecture and threat modeling for AI/ML systems, including LLMs, RAG pipelines, agents, and AI-powered applications. • Design and implement security controls as code (services, libraries, infrastructure-as-code, policy-as-code) for AI/ML platforms and workloads. • Lead and help setup the basic infrastructure needed to safely rollout AI - MCPs, LLMs, pipelines, Test harness for AI (ie: harmbench), intake automation. • Partner with data science and MLOps teams to harden: Data ingestion and labeling, Training and fine-tuning pipelines, Model registries and deployment workflows, Inference APIs, agents, and integrations. • Define and champion secure reference architectures and patterns for common AI use cases and focus on composable architecture. • Design, implement, and continuously improve the intake, triage, and review process for AI/ML and generative AI use cases across the organization. • Build and automate self-service workflows (e.g., request forms, risk questionnaires, routing, approvals) that balance speed of delivery with security, privacy, and compliance with a focus on risk scoring and scorecards. • Define risk-based criteria for AI use case approval, including data sensitivity, model and vendor selection, integration patterns, and control requirements; this will involve in re-mapping the complete end to end lifecycle. • Review proposed AI solutions from concept through deployment, providing clear, actionable guidance to product and engineering teams. • Maintain visibility into the AI use case portfolio and risk posture, and provide regular reporting to leadership and governance bodies. • Establish and maintain monitoring and detection for AI-specific threats, such as: Prompt injection and jailbreak attempts, Data exfiltration and sensitive data exposure, Misuse or abuse of AI tools and agents, Anomalous model or pipeline behavior.