FluidStack logo
FluidStack

NVIDIA H100 & A100 GPUs available on demand at scale. Access thousands of GPUs for AI/LLM/ML, ready for deployment now.

Technical Program Manager, Security

Security EngineerSecurity EngineerFull TimeRemoteLeadTeam 11-50H1B No SponsorCompany SiteLinkedIn

Location

United States

Posted

1 day ago

Salary

$210K - $262K / year

Seniority

Lead

Job Description

Technical Program Manager, Security

FluidStack

Role Description You're securing the frontier of AI. The model weights training on our infrastructure are the most valuable and most targeted artifacts in technology, and we're standing up the compute to hold them faster than anyone ever has. A breach isn't a leak, it's the frontier walking out the door. - Build the entire security program from scratch. - Run the security program's execution across physical, logical, and datacenter security. - Drive cross-team security deliverables (bare-metal hardening, access control, incident response readiness, compliance evidence) to closure. - Stand up the operating rhythm of the security org: reviews, risk tracking, audit and certification timelines, and reporting. - Quarterback security requirements into new site builds and customer onboarding. - Own the metrics and status that show where the program is exposed, what is on track, and what needs escalation. Qualifications - You've run technical program management for a security or infrastructure org. - You've driven a security or compliance initiative (SOC 2, ISO 27001, FedRAMP, or a customer security review) from kickoff to evidence. - You translate between security engineers and executives, distilling a sprawling risk picture into a decision and a next step. - You've coordinated incident response or audit timelines where a slipped date had real consequences. - You track commitments, risks, and open items as a habit. - Bonus: physical security or datacenter security programs, model-weight or high-value-asset protection, security tooling rollouts, a security certification (CISSP, CISM). Requirements - Extreme ownership. - Full autonomy. - Velocity. - First principles. - Love of the game. Benefits - We are committed to pay equity and transparency. - Fluidstack is an Equal Employment Opportunity Employer.

Related Categories

Related Job Pages

More Security Engineer Jobs

UMGC Ventures logo

Adjunct Faculty, Artificial Intelligence – Cybersecurity

UMGC Ventures

A new model in higher education funding from a leader in education innovation, UMGC.

Part TimeRemoteTeam 51-200Since 2016H1B No Sponsor

• Actively engage students though frequent interaction that motivates them to succeed, and conveys a genuine energy and enthusiasm for their learning. • Guide students in active collaboration and the application of their learning in problem- and project-based learning demonstrations. • Provide rich and regular constructive feedback, utilizing rubrics effectively for the assessment of student work, and acknowledging student accomplishments. • Demonstrate relevant and current subject-matter expertise, and help students connect concepts across their academic program. • Provide feedback to your program chair on possible curricular improvements.

United States
$806 - $1.6K / hour
Devsu logo

Application Security Engineer - Financial Sector

Devsu

Devsu is a technology agency that provides software development services, IT augmentation and staffing.

Full TimeRemoteTeam 51-200H1B No Sponsor

Role Description En Devsu buscamos un/a profesional senior en Ciberseguridad Aplicativa que lidere la ejecución de pruebas de seguridad, validación de requerimientos no funcionales y certificación de software en entornos bancarios y financieros. La posición es Remota para candidatos de LATAM y presencial para en Quito, Ecuador, estarás asignado/a a uno de nuestros clientes más importantes del sector financiero y bancario de Latinoamérica. - Ejecutar pruebas de seguridad en aplicaciones (Front-end, Back-end, APIs, bases de datos, integraciones, infraestructura, cloud, móviles, AI/LLM, plugins y componentes adicionales). - Validar el cumplimiento de requerimientos no funcionales de seguridad definidos por Arquitectura. - Acompañar y dar soporte al Secure Software Development Life Cycle (SSDLC). - Definir y documentar casos de prueba de seguridad previos a la ejecución, alineados a los estándares establecidos. - Clasificar vulnerabilidades utilizando la metodología CVSS 4.0. - Generar informes técnicos detallados con hallazgos, evidencias y recomendaciones de remediación. - Elaborar reportes ejecutivos y métricas de cumplimiento para stakeholders técnicos y de negocio. - Entregar habilitantes para la gestión y cierre efectivo de vulnerabilidades. - Realizar seguimiento a la efectividad de remediaciones implementadas. - Brindar soporte en incidentes de seguridad, eventos de Bug Bounty y actividades de threat hunting. - Verificar matrices de riesgo con enfoque en factor ciberseguridad. - Incluir lineamientos de seguridad en iniciativas de Tribus, COEs y proyectos estratégicos. - Implementar mecanismos de monitoreo y alertas para identificar desvíos o incumplimientos. - Promover mejora continua, innovación y agilidad operativa desde la perspectiva de Seguridad Aplicativa. - Apoyar la ejecución de estrategias definidas por el área de Seguridad Aplicativa. Qualifications - Título universitario en Ingeniería de Sistemas, Informática o Ciberseguridad. - Postgrado en Ciberseguridad o Tecnologías de la Información. - Certificaciones en seguridad ofensiva o aseguramiento de aplicaciones (HTB CWES, HTB CPTS, eWPTX, CSSLP, CPENT, OSCP, OSWE, LPT, CEH Master, BSCP). Requirements - Experiencia comprobable en Secure Software Development Life Cycle (SSDLC). - Experiencia validando requerimientos no funcionales de seguridad. - Experiencia ejecutando pruebas de seguridad en: - Aplicaciones Front-end y Back-end - APIs e integraciones - Bases de datos - Infraestructura y entornos Cloud - Aplicaciones móviles - AI / LLM - Plugins y componentes adicionales - Manejo de la calculadora CVSS 4.0 para clasificación de vulnerabilidades. - Experiencia generando informes técnicos y ejecutivos con recomendaciones de remediación. - Experiencia en gestión y seguimiento de vulnerabilidades. - Documentación estructurada de casos de prueba y validación de efectividad. - Experiencia trabajando bajo metodologías ágiles. - Experiencia en plataformas y sistemas bancarios. - Experiencia brindando soporte en incidentes de seguridad y programas Bug Bounty. - Conocimiento en matrices de riesgo con enfoque en ciberseguridad. - Capacidad para generar métricas, indicadores y reportes ejecutivos. - Experiencia implementando mecanismos de monitoreo y alertas de cumplimiento. - Experiencia colaborando con Tribus, COEs y áreas de negocio desde Seguridad Aplicativa. Benefits - Contrato estable a largo plazo, con amplias oportunidades de crecimiento profesional. - Seguro médico privado para tu tranquilidad y la de tu familia. - Programas continuos de capacitación, mentoría y aprendizaje, para mantenerte actualizado/a en las últimas tecnologías y metodologías. - Acceso gratuito a recursos de formación en inteligencia artificial y herramientas de IA de última generación para potenciar tu trabajo diario. - Política flexible de tiempo libre remunerado (PTO), además de los días festivos pagos. - Participación en proyectos de software desafiantes y de clase mundial para clientes en Estados Unidos y Latinoamérica. - Colaboración con algunos de los ingenieros de software más talentosos de la región, en un entorno diverso, inclusivo y colaborativo.

Latin America (LATAM)
KeyBank logo

Application & Cloud Security Specialist

KeyBank

We'll meet you in the "am I making the most on my savings?" moment. Bank, borrow, invest—we have it all. Member FDIC.

Full TimeRemoteTeam 10,001+Since 1994H1B Sponsor

• Perform manual application security testing and penetration testing of web applications, APIs, and services. • Review and validate findings from SAST, SCA, and DAST tools, including triage and false positive reduction. • Conduct API security and dynamic testing to identify vulnerabilities and misconfigurations. • Assess open-source dependencies and third-party libraries for vulnerabilities and supply chain risk. • Evaluate cloud environments (GCP, Azure, AWS) for misconfigurations, excessive permissions, and exposure risks in support of the CSPM program. • Implement and maintain CI/CD security integrations, including scanning tools and automation workflows. • Develop scripts and CLI-based tooling to support scalable security testing and validation activities. • Partner with development teams to remediate vulnerabilities and improve secure coding practices. • Participate in architecture and design reviews, providing actionable security recommendations. • Utilize AI tools and coding assistants to enhance productivity, automate analysis, and improve testing efficiency while maintaining secure and responsible usage practices. • Track and report vulnerabilities, remediation progress, and security metrics.

Ohio
$69K - $105K / year
Full TimeRemoteTeam 10,001+Since 1980H1B Sponsor

• Design and implement robust application security solutions including use of AI and threat modeling. • Ensure that application security measures are integrated into all aspects of the organization's application infrastructure. • Deliver Data flow documentation for applications. • Advises IT and Security leaders in evolving TD SYNNEX’s application security strategies, technologies and processes. • Work closely with cross-functional teams, application developers, and business units, to ensure the security of applications, AI applications and API architectures. • Perform risk assessments of internal applications and API services, drive remediation and improvements. • Develop application security policies, standards and procedures.

Brazil