****About Applied Intuition
Applied Intuition, Inc. is powering the future of physical AI. Founded in 2017 and now valued at $15 billion, the Silicon Valley company is creating the digital infrastructure needed to bring intelligence to every moving machine on the planet. Applied Intuition services the automotive, defense, trucking, construction, mining and agriculture industries in three core areas: tools and infrastructure, operating systems, and autonomy. Eighteen of the top 20 global automakers, as well as the United States military and its allies, trust the company’s solutions to deliver physical intelligence. Applied Intuition is headquartered in Sunnyvale, California, with offices in Washington, D.C.; San Diego; Ft. Walton Beach, Florida; Ann Arbor, Michigan; London; Stuttgart; Munich; Stockholm; Bangalore; Seoul; and Tokyo. Learn more at applied.co.
We are an in-office company, and our expectation is that employees primarily work from their Applied Intuition office 5 days a week. However, we also recognize the importance of flexibility and trust our employees to manage their schedules responsibly. This may include occasional remote work, starting the day with morning meetings from home before heading to the office, or leaving earlier when needed to accommodate family commitments.
About the role
We are seeking a highly focused Cloud Security Engineer whose role will be fundamentally driven by our environment architecture and deployment methodology. Working alongside our Corporate Security & Infrastructure team, you will play a crucial role in securing our infrastructure across diverse multi-cloud environments (AWS, Azure, GCP, OCI), with a heavy emphasis on Kubernetes cluster hardening. You will establish robust guardrails, enforce Identity and Access Management policies, and maintain our Cloud Security Posture Management (CSPM) to prevent insecure deployments and ensure continuous compliance.
At Applied Intuition, you will:
- Cloud Infrastructure Security: Securely deploy and maintain infrastructure across diverse multi-cloud environments (AWS, Azure, GCP, OCI), establishing cloud-specific robust guardrails to prevent insecure deployments and configurations.
- Kubernetes Cluster Hardening: Implement and enforce security best practices and policies specifically tailored for Cloud native Kubernetes clusters, including granular Role-Based Access Control (RBAC), network policies, and admission controllers.
- Identity & Access Management (IAM): Develop, implement, and enforce robust security policies and procedures specifically related to user authentication and authorization across all systems. Manage user identities (traditional active directory, email platforms, cloud solutions) and rigorously enforce the principle of least privilege on Cloud, cloud service, and container levels.
- Container Security: Ensure the security of container images, registries, and runtime environments through the effective use of tools like Docker, Podman, and various container scanning solutions.
- Infrastructure-as-Code (IaC) Security: Manage infrastructure and security policies through version-controlled Git repositories using tools such as Terraform, CloudFormation, or AWS CDK to ensure consistent, auditable, and secure deployments.
- Cloud Security Posture Management (CSPM): Maintain CSPM tools such as Wiz to continuously detect and remediate misconfigurations and compliance drifts across the cloud footprint.
- Compliance Automation: Automate compliance checks and generate necessary evidence for audits across the multi-cloud environment, streamlining regulatory adherence.
- Runtime Security: Monitor and protect running applications and containers from threats during their operational lifecycle.
We're looking for someone who has:
- 5+ years of industry experience in software engineering or security engineering, with a focus on designing and building secure, production-grade cloud systems.
- Extensive, demonstrable experience with Kubernetes from a security perspective (e.g., securing containerized workloads, enforcing RBAC, and cloud-native secret management).
- Implemented AI to rapidly identify, validate, and remediate security issues without impact.
- Deep operational security experience with AWS (mandatory), with highly preferred practical experience deploying and securing infrastructure across Azure, GCP, or OCI.
- Proficiency in Infrastructure-as-Code (IaC) tools such as Terraform, CloudFormation, or AWS CDK to deploy and manage environments.
- Hands-on expertise in configuring, monitoring, and driving remediation through Cloud Security Posture Management (CSPM) platforms like Wiz.
- A strong background in designing and enforcing complex Identity & Access Management (IAM) and least-privilege architectures across both multi-cloud and traditional on-premises directory environments.
- Experience working with container security, image scanning, and runtime protection tools.
Nice to have:
- Advanced industry certifications related to cloud and container security (e.g., AWS Certified Security – Specialty, Certified Kubernetes Security Specialist (CKS), Certified Kubernetes Administrator (CKA)).
- Strong proficiency in programming or scripting languages commonly used for security automation and backend development (e.g., Go/Golang, Python, or C++).
- Prior experience automating compliance frameworks and generating audit evidence across a multi-cloud footprint.
- Experience securing and operating in air-gapped or highly constrained on-premises computing environments.
Compensation at Applied Intuition for eligible roles includes base salary, equity, and benefits. Base salary is a single component of the total compensation package, which may also include equity in the form of options and/or restricted stock units, comprehensive health, dental, vision, life and disability insurance coverage, 401k retirement benefits with employer match, learning and wellness stipends, and paid time off. Note that benefits are subject to change and may vary based on jurisdiction of employment.
Applied Intuition pay ranges reflect the minimum and maximum intended target base salary for new hire salaries for the position. The actual base salary offered to a successful candidate will additionally be influenced by a variety of factors including experience, credentials & certifications, educational attainment, skill level requirements, interview performance, and the level and scope of the position.
Please reference the job posting’s subtitle for where this position will be located. For pay transparency purposes, the base salary range for this full-time position in the location listed is: $125,000 - $160,000 USD annually.
Don’t meet every single requirement? If you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for this or other roles.
Applied Intuition is an equal opportunity employer and federal contractor or subcontractor. Consequently, the parties agree that, as applicable, they will abide by the requirements of 41 CFR 60-1.4(a), 41 CFR 60-300.5(a) and 41 CFR 60-741.5(a) and that these laws are incorporated herein by reference. These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity or national origin. These regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disability. The parties also agree that, as applicable, they will abide by the requirements of Executive Order 13496 (29 CFR Part 471, Appendix A to Subpart A), relating to the notice of employee rights under federal labor laws.