Security Engineer - Vuln Management (Infra)

Replit, Inc.

Job Overview

Location

Foster City, CA

Job Type

Full-time

Full Job Description

📋 Description

• As a Security Engineer - Vuln Management (Infra) at Replit, you will play a critical role in securing the company’s multi-cloud infrastructure by identifying and remediating vulnerabilities across cloud workloads, containers, and data repositories, directly supporting Replit’s mission to democratize software development through secure, compliant platforms.
• Your day-to-day responsibilities include performing continuous infrastructure scanning and triage, managing Cloud Security Posture Management (CSPM), Kubernetes Security Posture Management (KSPM), and Data Security Posture Management (DSPM) tools, embedding IaC security scanning into CI/CD pipelines, overseeing container and VM vulnerability lifecycles, tracking compliance with SOC 2, ISO 27001, and PCI-DSS, escalating critical risks to leadership, collaborating with SRE and DevOps teams on remediation, and supporting incident response with real-time cloud and network countermeasures.
• You will join a security-focused engineering team that bridges DevOps, platform, and compliance functions, working closely with SRE, Platform, and Incident Response teams to harden Replit’s production ecosystem in a hybrid office environment requiring in-office presence three days per week in Foster City, CA.
• In this role, you will deepen your expertise in cloud-native security tools (Wiz, Orca, Prisma Cloud), Infrastructure-as-Code security (Terraform, Checkov), container and Kubernetes hardening, and compliance-driven vulnerability management, while developing technical influence and systems thinking to drive security outcomes across the organization without direct authority.

🎯 Requirements

• 5 years of experience in Cloud Security, DevSecOps, or Systems Engineering roles
• Strong foundational experience with multi-cloud environments, with deep GCP expertise preferred and working knowledge of AWS or Azure
• Hands-on experience operating modern infrastructure security platforms such as Wiz, Orca, Prisma Cloud, Lacework, or GCP Security Command Center
• Strong proficiency with Infrastructure as Code platforms (Terraform, Pulumi) and GitOps workflows, including ability to configure IaC scanners like Checkov, Tfsec, or KICS
• Deep understanding of Docker/container security and Kubernetes architectures (GKE, EKS), including runtime security, network policies, and workload identity
• Understanding of how infrastructure configurations and vulnerability management map to compliance frameworks such as SOC 2, ISO 27001, CIS Benchmarks, or NIST

🏖️ Benefits

• Competitive Salary & Equity
• 401(k) Program with a 4% match (US Only)
• Health, Dental, Vision and Life Insurance
• Short Term and Long Term Disability
• Paid Parental, Medical, Caregiver Leave
• Flexible Time Off (FTO) + Holidays
• Commuter Benefits (In-Office Only)
• Monthly Wellness Stipend
• Autonomous Work Environment
• In Office Set-Up Reimbursement (In-Office Only)
• Quarterly Team Gatherings
• In Office Amenities (In-Office Only)

Skills & Technologies

AWS

Azure

GCP

Docker

Kubernetes

Onsite

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

Replit, Inc.

Visit Website

About Replit, Inc.

Replit is an online, collaborative, integrated development environment (IDE) that allows users to write, run, and share code in numerous programming languages directly from their web browser. It provides a cloud-based platform, eliminating the need for local setup and dependencies. Replit supports real-time collaboration, enabling multiple users to code together simultaneously on the same project, making it ideal for educational purposes, team projects, and rapid prototyping. The platform offers a vast array of features including version control integration, package management, and deployment tools, democratizing software development for beginners and experienced programmers alike.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.