Role Overview
Fireworksai is hiring a entry-level Security Engineer. This is a full-time role in San Mateo. Part of Fireworksai's Security hiring, posted 3 weeks ago. Full responsibilities, required qualifications, and the apply link are listed in the description below.
Salary Context
Salary is not disclosed in this posting. Market median for Junior-level Security roles is $75k-$105k (based on 34 comparable listings). Many employers share specifics during the interview process or after an initial screen.
Resume Keywords to Include
Make sure these keywords appear in your resume to improve ATS scoring
Job description
About Us:
At Fireworks, we’re building the future of generative AI infrastructure. Our platform delivers the highest-quality models with the fastest and most scalable inference in the industry. We’ve been independently benchmarked as the leader in LLM inference speed and are driving cutting-edge innovation through projects like our own function calling and multimodal models. Fireworks is a Series C company valued at $4 billion and backed by top investors including Benchmark, Sequoia, Lightspeed, Index, and Evantic. We’re an ambitious, collaborative team of builders, founded by veterans of Meta PyTorch and Google Vertex AI.
The Role:
Security is the foundation of trust in AI systems. As the Security Engineer at Fireworks AI, you will play a key role in designing, implementing and operating security controls across AI infrastructure, AI platforms and internal systems. You will work closely with the multiple teams to strengthen our security posture and support our rapid growth. As more organizations rely on large language models and cloud-native AI services, ensuring the confidentiality, integrity, and availability of data, models, and infrastructure is paramount. This role plays a critical part in building that trust by designing and embedding security across layers of our technology stack.
Key Responsibilities:
- Design and build security-focused software and platform capabilities to protect customer data, models, and services across our multi-cloud infrastructure, including encryption, identity and access management, secure API gateways, secure model execution, and sandboxing strategies.
- Perform security reviews of cloud-native architectures—including Kubernetes clusters, multi-cloud workloads, and distributed data stores—and build integrated systems for continuous security monitoring, anomaly detection, and automated response.
- Embed security into CI/CD pipelines using a DevSecOps approach, implementing automated scanning, policy enforcement, and secure-by-default build and deployment workflows.
- Apply a build-over-buy philosophy by designing and developing in-house security tooling and automation where it provides better control, scalability, and integration than off-the-shelf solutions.
- Build and operate a comprehensive vulnerability management program, partnering with various teams to remediate risks across applications, containers, cloud infrastructure, and dependencies.
- Operate and continuously improve security operations, including detection engineering, alert triage, incident response, and continuous improvement through post-incident reviews.
- Participate in red/blue team exercises, tabletop simulations, and post-incident root cause analysis to strengthen security resilience.
- Embed compliance and regulatory controls into infrastructure and product layers (e.g., SOC 2, ISO 27001, ISO42001, HIPAA, PCI-DSS, GDPR).
Minimum qualifications:
- 3 to 7 years of experience in software engineering or security engineering with a strong focus on security, infrastructure, or cloud-native systems.
- Proficient in Python and/or Go with experience in designing production-grade systems.
- Strong understanding of cloud-native architectures using GCP, particularly in the area of network segregation, authentication, authorization, encryption, data protection, intrusion detection, and cloud-specific security benchmarks.
- Hands-on experience with Kubernetes, Docker, and containerized production environments; deep knowledge of Kubernetes internals and native security controls is a strong plus.
- Familiarity with security tooling in managed CI/CD environments (e.g., GitHub Actions, Harness, CircleCI).
- Solid experience working in Linux environments, including system administration, debugging, and automation via command-line tooling.
- Familiarity with modern identity and access controls (SAML, OAuth, OIDC, SSO, RBAC/ABAC).
Preferred qualifications:
- Experience designing secure multi-cloud deployments and zero-trust architectures.
- Experience designing, operating, and securing large-scale Kubernetes platforms, including control plane security, node hardening, and multi-tenant isolation.
- Experience designing, operating, and securing large-scale multi-cloud platforms across AWS, GCP, Azure, Oracle Cloud, and GPU as service cloud providers.
- Proficiency with infrastructure-as-code using Terraform and Python, including experience building modular policy-as-code frameworks.
- Strong understanding of data protection techniques, including encryption at rest/in transit, tokenization, key management, and confidential computing.
- Experience integrating security into microservice architectures, service meshes, and distributed systems.
- Hands-on experience securing LLM/ML platforms, model inference infrastructure, GPU clusters, or data labeling pipelines.
- Experience designing detection engineering pipelines across cloud audit logs, network telemetry, and application signals.
- Experience building large-scale IAM and PAM platforms using least-privilege, workload identity, and just-in-time access.
- Familiarity with container image vulnerability remediation, security, SBOM generation, and software supply chain security.
- Experience building, implementing and operating security automation platforms for incident response and security operations.
- Familiarity with compliance tooling and frameworks (e.g., Vanta, SOC 2, ISO 27001, ISO 42001, PCI-DSS).
Total compensation for this role also includes meaningful equity in a fast-growing startup, along with a competitive salary and comprehensive benefits package. Base salary is determined by a range of factors including individual qualifications, experience, skills, interview performance, market data, and work location. The listed salary range is intended as a guideline and may be adjusted.
Why Fireworks AI?
- Solve Hard Problems: Tackle challenges at the forefront of AI infrastructure, from low-latency inference to scalable model serving.
- Build What’s Next: Work with bleeding-edge technology that impacts how businesses and developers harness AI globally.
- Ownership & Impact: Join a fast-growing, passionate team where your work directly shapes the future of AI—no bureaucracy, just results.
- Learn from the Best: Collaborate with world-class engineers and AI researchers who thrive on curiosity and innovation.
Fireworks AI is an equal-opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all innovators.
About Fireworksai
Fireworksai
35 other open roles at Fireworksai on TryApplyNow.
Frequently Asked Questions
How do I apply for the Security Engineer position at Fireworksai?
Use the Apply button above to submit your application directly to Fireworksai. Most applications take less than 5 minutes if your resume and contact details are ready, and you'll be routed to the employer's official application system to finish.
Where is the Security Engineer position at Fireworksai located?
This position is based in San Mateo. Fireworksai has not indicated remote or hybrid options for this role, so candidates should plan for on-site work.
What does a Security Engineer at Fireworksai earn?
Fireworksai has not disclosed a salary range in this posting. Many employers share specifics later in the interview process; you can also ask during a recruiter screen if compensation transparency is important to you.
When was the Security Engineer role at Fireworksai posted?
This role was posted on June 12, 2026 (27 days ago). It's still listed as actively hiring; we re-confirm openings against the source system multiple times per day and remove closed roles.
Is the Security Engineer role at Fireworksai entry-level?
Yes. This is an entry-level position. Strong candidates typically have 0-2 years of relevant work experience, internships, or significant project work. Read the full description for any specific qualification requirements Fireworksai has listed.
Similar Jobs
More Jobs at Fireworksai
View all →Technical Web Lead
Fireworksai
Senior Field Marketing Manager
Fireworksai
Software Engineer, AI Infrastructure
Fireworksai
Social and Community Manager
Fireworksai
Senior GTM Recruiter
Fireworksai
AI-powered job search
Get every job scored to your resume
Upload your resume and get jobs ranked, your resume tailored, and employee contacts found automatically.
Get started freeNo credit card to start