Senior Infrastructure Security Software Engineer (Remote)

Quora, Inc.

Job Overview

Location

Remote - Multiple Locations

Job Type

Full-time

Full Job Description

📋 Description

• Serve as a key member of Quora’s newly created Security Engineering Team, responsible for securing both Quora.com and Poe.com platforms, which serve over 300M monthly users and millions of AI model users respectively.
• Design, build, and maintain robust security protections for cloud infrastructure, focusing primarily on AWS environments, including IAM policies, VPC design, network segmentation, and secure configuration of compute resources.
• Develop and enforce infrastructure-as-code (IaC) pipelines using Terraform or CloudFormation to ensure consistent, auditable, and secure deployment of cloud resources.
• Automate security controls and compliance checks within CI/CD pipelines using SAST, DAST, and dependency scanning tools to detect vulnerabilities early in the software development lifecycle.
• Build and maintain security logging and monitoring pipelines to detect intrusions, misconfigurations, and anomalous behavior across cloud and containerized environments.
• Partner with engineering teams to review architecture designs for cloud and compute systems, establishing threat models to proactively identify and mitigate security risks.
• Harden operating systems and container runtimes by applying security best practices including POSIX capabilities, SECCOMP profiles, and Linux Security Modules (LSMs), with hands-on experience using OSQuery and eBPF.
• Drive the definition, implementation, and continuous monitoring of security policies aligned with industry standards and Quora’s risk posture.
• Develop custom automation scripts and tools to support threat detection, incident containment, network access management, and policy enforcement.
• Conduct initial triage of security incidents, assess scope and impact, and actively participate in incident response processes alongside cross-functional teams.
• Advocate for secure coding practices and mentor engineering teams on secure application development, reducing surface area for exploitation across Quora and Poe products.
• Stay current with evolving cloud security threats and emerging technologies, particularly in serverless architectures and Kubernetes security, and integrate relevant improvements into Quora’s security posture.
• Ensure all security initiatives align with Quora’s remote-first culture and operate within coordination hours (Mon-Fri, 9am–3pm Pacific Time) for effective collaboration across time zones.
• Contribute to a culture of transparency, experimentation, and continuous learning by sharing insights, documenting solutions, and improving team processes.

🎯 Requirements

• Proven experience securing large-scale cloud environments, particularly AWS, including IAM, VPC, and network segmentation
• Hands-on expertise in infrastructure-as-code (IaC) tools such as Terraform or CloudFormation
• Demonstrated ability to automate security controls within CI/CD pipelines using SAST, DAST, or dependency scanning tools
• Strong proficiency in Linux/system security, including container security, POSIX capabilities, SECCOMP, and LSMs
• Experience developing code for security automation, threat detection, and incident response workflows
• Availability to collaborate during Quora’s coordination hours (Mon–Fri, 9am–3pm Pacific Time)

🏖️ Benefits

• Medical, dental, and vision coverage
• Equity refreshers
• Remote work reimbursement
• Paid time off
• Employee assistance programs
• Country-specific benefits tailored to US and Canadian employees

Skills & Technologies

AWS

Kubernetes

Terraform

Linux

DevOps

Senior

Remote

$172k-249k

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

AI Job Fit Analysis

Pro

See exactly how your profile matches this role — strengths, skill gaps, and what to do about them.

Quora, Inc.

Visit Website

About Quora, Inc.

Quora is a U.S.-based social question-and-answer platform founded in 2009. Users post questions, provide answers, and curate content through upvotes and moderation. The service combines a knowledge database with social networking features, relying on community contributions and moderation to maintain quality. Revenue comes primarily from advertising. Headquartered in Mountain View, California, the company operates globally while enforcing English-language norms.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.