Position Overview

We're looking for a hands-on Security Engineer to help with building, operating and securing Modal's low-level systems and infrastructure. This role involves close partnership with engineering to drive projects across AppSec, CloudSec, Detection and Response, and Compliance. Modal provides the infrastructure foundation for AI teams. With instant GPU access, sub-second container startups, and native storage, Modal makes it simple to train models, run batch jobs, and serve low-latency inference.

Responsibilities

Building and operating security controls or tooling in production systems
Partnering with engineering on projects across AppSec, CloudSec, Detection and Response, and Compliance
Threat modeling, secure design reviews, code/infra reviews, vulnerability management
Partnering with engineers to land fixes

Requirements & Skills

5+ years building and operating security controls or tooling in production systems (ideally at a cloud/SaaS or developer platform)
Proficiency in at least one of: Python, Go, or Rust
Strong fundamentals in systems and networking
Experience with modern cloud security: IAM design, VPC/networking, container security, Kubernetes
Depth in at least two security domains (e.g., AppSec, CloudSec, Detection & Response, Identity Management, GRC or Offensive Security)
Comfortable owning the full lifecycle: threat modeling, secure design reviews, code/infra reviews, vulnerability management, and partnering with engineers to land fixes
Clear communication, product sense, and high empathy for developer productivity
Ability to work in-person in our NYC office