Security Engineer

Job description

ABOUT BASETEN

We’re a growing team of builders backed by top-tier investors, including IVP, Spark Capital, Greylock, and Sarah Guo at Conviction. ML teams at enterprises and category-defining AI-native companies like Descript, Bland.ai, Patreon, Writer, and Robust Intelligence use Baseten to power their core production workloads with best-in-class performance, security, and reliability. While we’ve unlocked PMF and secured Series B funding, the ML infrastructure market is massive, and we’re just getting started. If you’re excited to work on engaging and relevant problems while building something new from the ground up, come join us!

THE ROLE:

We are seeking an experienced and proactive Security Engineer to help us build, maintain, and continuously improve the security posture of our rapidly growing ML infrastructure platform. As one of the first dedicated security hires at Baseten, you will work cross-functionally with engineering and operations teams to ensure we’re meeting the highest standards of confidentiality, integrity, and availability. You’ll have an opportunity to shape our security strategy and best practices from the ground up, influencing the way our platform handles sensitive data for both internal and external stakeholders.

RESPONSIBILITIES:

• Security architecture and design: Collaborate with engineering teams to design and implement secure systems and infrastructure, including cloud (AWS/GCP) environments and container orchestration platforms.

• Vulnerability management: Lead proactive vulnerability assessments, pen tests, and remediation efforts to ensure our products and infrastructure remain secure.

• Incident response: Develop and maintain incident response processes, including detection, analysis, containment, eradication, and post-incident reviews.

• Identity and access management (IAM): Oversee IAM strategies and tools to ensure the right people have the right level of access to our systems and data.

• Security compliance and audits: Work closely with operations to ensure compliance with relevant standards (e.g., SOC 2, ISO 27001) and assist with audits, policy creation, and risk assessments.

• Employee security training: Develop and deliver security training programs and documentation to keep our team informed about best practices, social engineering threats, and secure coding standards.

• DevSecOps integration: Partner with DevOps teams to embed security into the CI/CD pipeline, automating security checks and fostering a culture of “security as code.”

REQUIREMENTS:

• 3+ years of experience in a Security Engineer or similar security-focused role, preferably in a fast-paced startup environment.

• Strong knowledge of cloud security (AWS/GCP), container security, and infrastructure-as-code best practices.

• Hands-on experience with security tooling (SIEM, IDS/IPS, vulnerability scanners) and scripting languages to automate security tasks.

• Familiarity with compliance frameworks such as SOC 2, ISO 27001, and GDPR, and the ability to translate requirements into actionable security controls.

• Incident response expertise, including forensic analysis and root cause investigation.

• Excellent communication skills and the ability to collaborate with cross-functional teams to promote a security-first culture.

BENEFITS:

• Competitive compensation package (Unlimited PTO, 401k, covered healthcare premiums)

• A unique opportunity to be part of a rapidly growing startup in one of the most exciting engineering fields of our era

• An inclusive and supportive work culture that fosters learning and growth

• Exposure to a variety of ML startups, offering unparalleled learning and networking opportunities

Apply Now to embark on a rewarding journey in shaping the future of AI! If you are a motivated individual with a passion for machine learning and a desire to be part of a collaborative and forward-thinking team, we would love to hear from you.

At Baseten, we are committed to fostering a diverse and inclusive workplace. We provide equal employment opportunities to all employees and applicants without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status.