RemoteLeaf Logo
Log in Sign up

Senior Infrastructure Security Engineer

2 hours, 42 minutes ago
Canada
Full-time
Lead
Infrastructure Engineer
DevOps and Infrastructure
Bash CI/CD CrowdStrike Go Java Kubernetes Linux LLM Node.js OAuth OpenID Connect OWASP Python Ruby Rust SIEM
Apply Now
Dropbox

Dropbox

Dropbox is a technology company that builds simple, powerful products for individuals and businesses. With over 700 million registered users worldwide, Dropbox offers file sync, sharing, online backup, cloud storage, collaboration tools, and more to st...

Internet Software & Services
1K-5K
Founded 2007
View All Jobs 61

Description

  • Design, deploy, and operate security controls for Dropbox’s AI and agentic infrastructure, including model gateways, inference services, vector stores, retrieval systems, and supporting cloud and Kubernetes platforms.
  • Implement least-privilege and secure-execution patterns for AI agents, including per-tool authorization, sandboxing, human-in-the-loop approvals, and separation of policy validation from execution.
  • Lead security implementation for AI tool and agent connectivity layers, including MCP gateway deployments and controls for OAuth-based authorization, scope minimization, token audience validation, origin validation, replay protection, and secure isolation between trusted and untrusted tool domains.
  • Build and operate security infrastructure solutions that scale Dropbox’s security posture across on-prem and cloud infrastructure.
  • Automate security controls using scripting to reduce repetitive work and human involvement.
  • Collaborate with cross-functional teams to influence product decisions and improve security posture.
  • Own and drive security projects in a collaborative environment.

Requirements

  • 9+ years of security experience or related industry experience with impactful contributions to security strategies.
  • Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent experience, with coding proficiency.
  • Experience securing LLM, RAG, or agentic AI systems in production, including controls for prompt injection, sensitive-data disclosure, excessive agency, data or model poisoning, and AI supply-chain risk.
  • Experience designing identity and authorization for non-human workloads and agents using SPIFFE/SPIRE, OAuth 2.1 or OIDC, AWS IRSA, Google Workload Identity Federation, Azure managed identities, or equivalent patterns.
  • Experience integrating adversarial testing and release gates for AI systems into CI/CD, including regression coverage for prompt injection, tool abuse, memory poisoning, approval bypass, and multi-agent escalation scenarios.
  • Solid knowledge of Linux fundamentals, including system administration, security, networking, scripting, and troubleshooting.
  • Proficiency in one or more scripting or high-level languages such as Bash, Python, Go, Rust, Ruby, NodeJS, C/C++, or Java.
  • Experience securing MCP-based systems or similar AI agent and tool protocols is preferred.
  • Experience with multi-agent security controls such as trust boundaries, signed inter-agent messaging, and circuit breakers is preferred.
  • Familiarity with NIST AI RMF, NIST SP 800-218A, MITRE ATLAS, CSA AICM, and OWASP LLM and agentic security guidance is preferred.
  • Experience with security tools such as Teleport, CrowdStrike, Proofpoint, IPS/IDS, SIEM, or SOAR is preferred.
  • Certifications such as CISSP, CISM, or equivalent are preferred.
  • Participation in on-call rotations may be required for teams with services, including availability during core and non-core business hours.

Benefits

  • Canada pay range of $205,700 to $278,300 CAD.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Mozilla

Staff Operations Engineer

Mozilla 251-1K Internet Software & Services

Mozilla is hiring a Staff Operations Engineer to lead the design, reliability, and evolution of hybrid-cloud and workplace infrastructure across teams.

Canada Full-time Lead Infrastructure Engineer Site Reliability Engineer (SRE)
$86k-$127k
Ansible DNS Linux Puppet Python TCP/IP Unix
2 hours, 27 minutes ago
The Missing Link

Saviynt IAM Specialist

The Missing Link 51-250 Internet Software & Services

The Missing Link is seeking a Security Engineer - Saviynt to support large enterprise identity governance initiatives, design and deliver Saviynt-based solutions, and strengthen its growing cyber security practice.

India Full-time Mid Level Security Engineer
Active Directory Azure Cybersecurity JavaScript PowerShell REST API SAP SQL
2 hours, 27 minutes ago
EnableComp

AI Security Architect (REMOTE - United States)

EnableComp 251-1K Insurance

EnableComp is seeking a remote AI Security Architect to secure and govern its AI and machine learning initiatives within its healthcare revenue cycle management environment.

United States Full-time Senior AI Engineer Security Engineer
Azure Cybersecurity HIPAA LLM Machine Learning
2 hours, 42 minutes ago
Jenzabar

Cloud Infrastructure Administrator II

Jenzabar 251-1K Internet Software & Services

Jenzabar is hiring a Cloud Infrastructure Administrator II to support cloud security operations, vulnerability remediation, and compliance efforts across its cloud environment.

Anywhere Full-time Mid Level Infrastructure Engineer
$61k-$74k
AWS Azure Cloudflare CrowdStrike Cybersecurity GCP Kubernetes SIEM Terraform
2 hours, 57 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers