Job Overview
Location
Remote
Job Type
Full-time
Category
Security Engineer
Date Posted
April 28, 2026
Full Job Description
đź“‹ Description
- • As Flox’s first dedicated security hire, you’ll work directly with engineering leadership to build and own the company’s security program from the ground up, focusing on pragmatic, developer-friendly controls that are right-sized for the company’s stage.
- • You’ll be hands-on deploying tools, configuring controls, hardening infrastructure, and closing security gaps—owning detection, monitoring, response, cloud and infrastructure security (AWS + Cloudflare), endpoint protection, software supply chain security, application security, and identity and access management.
- • Flox operates at the heart of the software supply chain, managing dependencies, environments, and build artifacts for large engineering teams, making security core to the product’s value and requiring deep integration with engineering teams.
- • You’ll have the opportunity to build something from scratch, own it end-to-end, and see immediate impact, with real input into security priorities and roadmap as the company grows.
🎯 Requirements
- • 3–5 years of hands-on security engineering experience, ideally at a software company or cloud-native environment
- • Solid working knowledge of AWS security services: IAM, SCPs, GuardDuty, Security Hub, CloudTrail, and related tooling
- • Hands-on experience with Cloudflare—WAF rule management, Zero Trust, DLP, or similar; comfort learning what you haven’t used yet
- • Experience deploying and managing endpoint protection (EDR/MDM) across a mixed developer and production environment
- • Experience integrating SAST, SCA, or DAST tools into CI/CD pipelines
- • Comfort with scripting or light automation (Python, Bash, or similar) to build repeatable processes
🏖️ Benefits
- • First dedicated security hire—you’ll build the program, not inherit someone else’s backlog
- • Competitive salary, meaningful equity in a well-funded company
- • Flexible hybrid work environment
- • Small team, short feedback loops, real ownership—your work will be visible immediately
- • Product developers genuinely love, making collaboration with engineering easier
Skills & Technologies
About Flox
Flox is a developer tooling platform that lets software teams define, share, and reproduce development environments consistently across machines, operating systems, and stages (local, CI, production). It combines features of a virtual environment manager and package manager in one. Using a declarative manifest format, Flox specifies required tools, services, and dependencies, and ensures environments are portable, version-controlled, and reproducible. It is built on top of Nix to provide determinism without forcing users to learn Nix directly.
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
