Perform infrastructure security reviews across cloud services, network design, IAM, and platform components.
Design and build internal security services, APIs, and tools that automate infrastructure vulnerability detection, triage, reporting, and remediation.
Develop security automation that integrates with CI/CD, cloud control planes, and developer workflows to shift detection and remediation earlier in the lifecycle.
Webflow is building the world’s leading AI-native Digital Experience Platform as a remote-first company. They empower teams to design, launch, and optimize for the web without barriers, from entrepreneurs to global enterprises, and believe the future of the web, and work, is more open, more creative, and more equitable.
Design, secure, and continuously improve the foundational infrastructure.
Lead the evolution of our cloud, identity, endpoint, logging, and operational tooling ecosystem.
Create systems that scale with the company while maintaining strong operational control.
Game Plan Tech empowers public sector organizations with best-in-class Google solutions. They foster a collaborative environment where you can make a significant impact, drive innovation for clients, and advance your career.
Design and implement cloud security guardrails across AWS and GCP
Embed policy enforcement and compliance checks directly into Terraform modules
Conduct architecture reviews and continuously harden multi-cloud environments
Beast Industries is a multifaceted media and entertainment company founded by Jimmy Donaldson, popularly known as MrBeast. We are known for revolutionizing digital content creation, encompassing ventures that extend far beyond YouTube.
Take ownership of securing high-availability, low-latency systems.
Implement and automate security controls across cloud and on-prem infrastructure.
Enhance resilience, reduce risk, and enable business operations to run safely and efficiently.
Jobgether is a platform that helps candidates find jobs and companies find candidates. They use AI-powered matching to connect talent with opportunities, ensuring a quick, objective, and fair review process.
Actively partner on the Cloud Security strategy and implementation.
Evolve and expand our current Cloud Security posture across multiple platforms.
Recommend and validate Security controls and improvements across our infrastructure stack
Circle is a global financial technology firm building the foundation for a more open financial system through digital assets, payment applications, and blockchain infrastructure. They value their employees and foster a culture of collaboration and excellence, with a flexible work enviornment.
Xapo Bank is a fully distributed team of over 130 Xapiens that work remotely from 30+ countries around the world. They aim to provide economic freedom and wealth protection, searching the world for the best people and inspiring each other to learn and grow.
Embed security into CI/CD pipelines and repos using policy-as-code tools (pre-commit hooks, SAST/SCA, IDE tool integrations)
Conduct threat modeling sessions and risk‑driven design reviews early in development
OnePay is a consumer fintech company trusted by millions of Americans to make money better by providing an all-in-one financial services platform. They are backed by Walmart and Ribbit Capital, allowing them rare scale and distribution to build something truly category-defining.
Designing and developing technical integrations that connect Chainguard products to partner platforms.
Building and maintaining our security advisory system, including schemas, APIs, and data feeds.
Owning integrations with major cloud platforms, including GCP, AWS, and Azure.
Chainguard is the secure foundation for software development and deployment. They help organizations eliminate threats in their software supply chains by providing guarded open source software. Chainguard is founded by industry's leading experts on open source software, security and cloud native development and they built the largest library of open source software that is secure by default.
Conduct in-depth discovery, data-flow mapping, and documentation of customer environments (on-site or remotely).
Deliver compelling technical presentations and product demonstrations to a wide range of stakeholders.
Architect, install, and configure Protegrity’s software solutions tailored to customer needs.
Protegrity leads innovation by using AI and quantum-resistant cryptography to transform data protection across various environments. As a global leader in data security, they ensure data is valuable, usable, trusted, and safe, offering the opportunity to work at the intersection of innovation and collaboration.
Implement and maintain security controls across multi-cloud environments (primarily AWS and Azure, with some GCP and AliCloud) and on-prem infrastructure
Own IAM strategy and implementation: design and enforce identity, access, and permissions models that are secure, scalable, and practical
Design and operate key management and custody security controls such as HSMs, secrets management, and secure key handling for trading operations
Auros is a global digital asset liquidity provider operating 24/7 across centralised and decentralised markets. They run high-availability, low-latency systems where resilience and risk discipline matter and treat security as a core engineering and risk function, with direct engagement from senior leadership.
Collaborate with engineering teams to design and build cloud-native applications and infrastructure that are secure by default.
Use CSPM tools (like Wiz) to discover cloud security findings and provide clear, practical guidance to teams on how to remediate those risks.
Create new security alerts and dashboards within our infosec stack and perform threat hunting across log feeds to identify emerging risks.
KnowBe4 is a cybersecurity company that puts security first. Their AI-driven Human Risk Management platform empowers over 70,000 organizations worldwide to strengthen their security culture.
Design, implement, and maintain cloud-based infrastructure using AWS, Azure, or GCP.
Build, optimize, and manage continuous integration and continuous deployment (CI/CD) pipelines.
Integrate AI-powered tooling into engineering workflows to accelerate delivery and improve code quality.
Givebutter is a nonprofit fundraising and CRM platform. They empower millions to raise more, pay less, and give better by offering tools like fundraisers, donation forms, donor management, emails, and text blasts all in one place.
Lead Application Security testing projects and drive remediation of identified vulnerabilities.
Design and run adversarial testing campaigns across the full Buildkite environment.
Build automation for both AppSec and adversarial testing workflows.
Buildkite's mission is to unblock every developer on the planet with their CI/CD platform. They are a remote-first company since 2013 with a small team, high standards, and real ownership distributed across 60+ cities, built around async communication and genuine autonomy.
Partner with engineering to drive technical implementation of controls throughout the product and infrastructure
Design, implement, and continuously improve security controls across AWS infrastructure and application architecture
Enhance and tune monitoring and detection capabilities in support of customer security and incident response capabilities
AlertMedia helps organizations protect their people and businesses through all phases of an emergency. Their award-winning threat intelligence, emergency communication, and travel risk management solutions help companies of all sizes identify, respond to, and recover from critical events faster and more confidently. They support essential communication for thousands of leading businesses in more than 150 countries.
Utilising knowledge of cloud technology to plan, write and improve cloud security labs, challenges and online learning content on the Immersive platform.
Produce multi-format content utilising various teaching methods; practical exercises, questions & gamification
Test Cloud Security labs to ensure they function as expected
Immersive One is the leading cyber resilience solution across the globe, helping organizations future-proof against cyber challenges. Founded in 2017, they've grown to over 300 global employees and have been voted a Best place to work on multiple occasions.
Own and drive remediation of security vulnerability tickets across environments
Analyze vulnerability trends to identify process gaps and recommend improvements
Track remediation progress and provide weekly status updates to management
ItD is a consulting and software development company blending diversity, innovation, and integrity with real business results. They are a woman- and minority-led firm that rejects strong hierarchies, empowering them to deliver great results with Fortune 500 companies and high-performance teams.
Learn about our users, systems, and security posture, and how security enables our product and business goals.
Support security assessments of code and infrastructure changes with guidance from Security Engineers, helping ensure alignment with SOC 2, PCI-DSS, and internal policies.
Assist with automating recurring security and compliance activities such as vulnerability scanning, risk assessments, third-party risk reviews, and control validation.
ezCater is the leading food for work technology company in the US, connecting anyone who needs food for their workplace to over 100,000 restaurants nationwide. They provide flexible and scalable solutions and are backed by top investors.
Design, automate, and maintain Knox’s cloud infrastructure and CI/CD pipelines across AWS, Azure, and GCP.
Ensure secure, compliant, and repeatable deployments that support Knox’s FedRAMP-authorized, multi-tenant cloud environments.
Implement Infrastructure as Code (IaC), observability, and security-by-design principles.
Knox runs the largest Federal managed cloud and builds and operates secure cloud and AI environments. They support critical U.S. government missions and require speed, rigor, and trust, impacting sensitive government environments at a federal scale.
Bridge security policy and technical execution by translating organizational security requirements into practical solutions.
Design, build, and deploy security controls across web applications, data pipelines, APIs, and Agentic AI systems.
Implement secure-by-design practices throughout the software development lifecycle, including code-level remediations.
EnableComp offers specialty Revenue Cycle Management solutions for healthcare organizations, leveraging 24+ years of expertise and its unified E360 RCM intelligent automation platform. They are a multi-year recipient of the Top Workplaces award and recognized as Black Book's #1 Specialty Revenue Cycle Management Solution provider in 2024.
Automate and streamline communication between cloud and on-prem systems.
Manage, test and debug user access groups.
Identify and fix security vulnerabilities in the access setup.
Sika is a specialty chemicals company with a globally leading position in the development and production of systems and products for bonding, sealing, damping, reinforcing, and protection in the building sector and industry. In 2024, Sika’s around 33,000 employees generated annual sales of CHF 11.76 billion and develops innovative technologies for customers worldwide.