vCluster · 21 hours ago
Sr. Application Security Engineer
United States
Full-time
Remote
Senior Level
$150K/yr - $190K/yr
5+ years expvCluster Labs is a venture-backed tech startup focused on enabling platform engineers. The Sr. Application Security Engineer will oversee the security of the product, define security standards, and lead threat modeling processes while managing vulnerabilities and contributing to feature development.
Computer Software
Responsibilities
Core Product Security: Perform deep-dive security reviews of our core Go-based applications and Kubernetes controllers, as well as the frontend user interface. With a targeted focus on avoiding privilege escalation within our multi-tenant architecture
Threat Modeling: Lead the threat modeling process for new features, proactively identifying risks associated with shared GPU resources and multi-cloud environments
Automated Security: "Shift left" by continuing to integrate security checks into our CI and developer workflows. Optimizing these checks for speed, ensuring security never becomes a bottleneck for engineering velocity. Separately, you will manage automated and manual scanning of our entire product stack
Vulnerability Management: Own the lifecycle of security vulnerabilities from discovery to remediation. You will triage both external and internal reports, drive the resolution of critical issues across the engineering organization, and communicate effectively across stakeholders
Feature Development: Everyone at the organization contributes to both the ideas and development of new features. Many of which are directly related to security topics such as container breakouts and isolation, pushing the envelope of what’s possible in constrained environments
Developer training: Make complex topics easier to understand for all engineers, including new attack vectors and secure coding concepts
Qualification
Required
5+ years in Application Security or Product Security, with a strong focus on containerized environments
Deep understanding of Kubernetes architecture, RBAC, and container runtime security
Comfortable reading and writing Go
Thrives in fast-paced cutting-edge environments
Views feedback as a learning mechanism and understands the unique needs and concerns of customers
Preferred
CKS (Certified Kubernetes Security Specialist) or OSCP
Experience securing AI workloads or GPU cloud infrastructure
Experience writing custom security tooling or automation scripts in Python or Go
A willingness to contribute to our public-facing security documentation and 'Trust Center' to help our customers navigate compliance
Benefits
Competitive Salary: We offer a competitive compensation package, including equity.
Platinum-Level Insurance: Health, dental, vision, and life Insurance, including plans for you and eligible dependents (benefits vary depending on country).
Flexible Working Schedule: You have a doctor’s appointment or need to head to the supermarket to get groceries at 2pm? We won’t have an issue with that. To us, results matter more than clocking in and out at the same time every day.
Workplace Flexibility: We’re very flexible about where you work. We know things can change in life and we’re happy to adjust the work environment for you along the way.
Company
vCluster
At vCluster, we build the tools that make Kubernetes simpler, more efficient, and cost-effective.
51-200 employees
Funding
Current Stage
Growth StageLeadership Team
Lukas Gentele
Co-Founder & CEO
Recent News
2025-04-05
2025-03-01
Company data provided by crunchbase