RemoteLeaf Logo
Log in Sign up

Senior Infrastructure Security Engineer

1 hour, 55 minutes ago
United States
Full-time
Lead
Infrastructure Engineer
DevOps and Infrastructure
Bash CI/CD CrowdStrike Go IDS IPS Java Kubernetes Linux LLM Node.js OAuth OpenID Connect OWASP Python Ruby Rust SIEM
Apply Now
Dropbox

Dropbox

Dropbox is a technology company that builds simple, powerful products for individuals and businesses. With over 700 million registered users worldwide, Dropbox offers file sync, sharing, online backup, cloud storage, collaboration tools, and more to st...

Internet Software & Services
1K-5K
Founded 2007
View All Jobs 61

Description

  • Design, deploy, and operate security controls for Dropbox’s AI and agentic infrastructure, including model gateways, inference services, vector stores, retrieval systems, and supporting cloud and Kubernetes platforms.
  • Implement least-privilege and secure-execution patterns for AI agents, including per-tool authorization, sandboxing, human-in-the-loop approvals, and separation of policy validation from execution.
  • Lead security implementation for AI tool and agent connectivity layers, including MCP gateway deployments, with controls for OAuth authorization, scope minimization, token audience validation, origin validation, replay protection, and secure isolation between tool domains.
  • Build and operate security infrastructure solutions that scale and raise the security bar across Dropbox’s on-prem and cloud environments.
  • Automate security controls using scripting to reduce redundant work and minimize human involvement.
  • Collaborate with cross-functional teams and lead security initiatives that influence product decisions and improve security posture.
  • Participate in on-call rotations when assigned to a team that operates services on-call.

Requirements

  • 9+ years of security experience or related industry experience with impactful contributions to security strategies.
  • Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience, with coding proficiency.
  • Experience securing LLM, RAG, or agentic AI systems in production, including controls for prompt injection, sensitive-data disclosure, excessive agency, data or model poisoning, and AI supply-chain risk.
  • Experience designing identity and authorization for non-human workloads and agents using SPIFFE/SPIRE, OAuth 2.1 or OIDC, AWS IRSA, Google Workload Identity Federation, Azure managed identities, or equivalent patterns.
  • Experience integrating adversarial testing and release gates for AI systems into CI/CD, including regression coverage for prompt injection, tool abuse, memory poisoning, approval bypass, and multi-agent escalation scenarios.
  • Solid knowledge of Linux fundamentals, including system administration, security, networking, scripting, and troubleshooting.
  • Proficiency with one or more scripting or high-level languages such as Bash, Python, Go, Rust, Ruby, NodeJS, C/C++, or Java.
  • Experience securing MCP-based systems or similar AI agent and tool protocols is preferred.
  • Experience with multi-agent security controls such as trust boundaries, signed inter-agent messaging, and circuit breakers is preferred.
  • Familiarity with NIST AI RMF, NIST SP 800-218A, MITRE ATLAS, CSA AICM, and OWASP LLM and agentic security guidance is preferred.
  • Experience with security tools such as Teleport, CrowdStrike, Proofpoint, IPS/IDS, SIEM, or SOAR is preferred.
  • Certifications such as CISSP, CISM, or equivalent are preferred.

Benefits

  • US Zone 2 salary range of $214,200 to $289,800 USD.
  • US Zone 3 salary range of $190,400 to $257,600 USD.
  • Role is not available in US Zone 1.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Mozilla

Staff Operations Engineer

Mozilla 251-1K Internet Software & Services

Mozilla is hiring a Staff Operations Engineer to lead the design, reliability, and evolution of hybrid-cloud and workplace infrastructure across teams.

Canada Full-time Lead Infrastructure Engineer Site Reliability Engineer (SRE)
$86k-$127k
Ansible DNS Linux Puppet Python TCP/IP Unix
1 hour, 10 minutes ago
The Missing Link

Saviynt IAM Specialist

The Missing Link 51-250 Internet Software & Services

The Missing Link is seeking a Security Engineer - Saviynt to support large enterprise identity governance initiatives, design and deliver Saviynt-based solutions, and strengthen its growing cyber security practice.

India Full-time Mid Level Security Engineer
Active Directory Azure Cybersecurity JavaScript PowerShell REST API SAP SQL
1 hour, 10 minutes ago
EnableComp

AI Security Architect (REMOTE - United States)

EnableComp 251-1K Insurance

EnableComp is seeking a remote AI Security Architect to secure and govern its AI and machine learning initiatives within its healthcare revenue cycle management environment.

United States Full-time Senior AI Engineer Security Engineer
Azure Cybersecurity HIPAA LLM Machine Learning
1 hour, 25 minutes ago
Jenzabar

Cloud Infrastructure Administrator II

Jenzabar 251-1K Internet Software & Services

Jenzabar is hiring a Cloud Infrastructure Administrator II to support cloud security operations, vulnerability remediation, and compliance efforts across its cloud environment.

Anywhere Full-time Mid Level Infrastructure Engineer
$61k-$74k
AWS Azure Cloudflare CrowdStrike Cybersecurity GCP Kubernetes SIEM Terraform
1 hour, 40 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers