fal.ai

Staff Security Engineer, Infrastructure

fal.ai
onsite staff full-time San Francisco
Apply →

First indexed 17 Apr 2026

Description

We're looking for a Staff Security Engineer, Infrastructure to secure the core systems that power our platform: GPU compute, multi-cloud environments, networking, and data pipelines. You'll operate across the full stack, from cloud and Kubernetes to identity, networking, and secrets, designing and implementing security controls that scale with a high-performance AI platform.

This role is highly hands-on and systems-oriented, sitting at the intersection of security, infrastructure, and distributed systems.

Your primary responsibilities will be to:

  • Build and harden infrastructure security by designing and implementing security controls across cloud infrastructure, Kubernetes and containerized workloads, networking, service meshes, and edge systems, CI/CD pipelines and deployment systems, and secure compute environments for GPU workloads and model execution.
  • Implement identity, secrets, and access controls, including machine identity and workload authentication, secrets management and encryption, least-privilege access, and short-lived credentials.
  • Protect model weights, inference endpoints, and customer data, design secure data access pathways and isolation mechanisms, and ensure safe multi-tenant execution environments.
  • Automate security guardrails directly into infrastructure and CI/CD, use Infrastructure-as-Code to enforce secure defaults, and continuously identify and remediate security gaps through automation.
  • Identify and mitigate risks across infrastructure layers, defend against both external attackers and insider threats, and drive projects like network isolation, encryption, and secure service communication.

To succeed in this role, you'll need to have:

  • 8+ years in security engineering, infrastructure, or SRE.
  • Strong understanding of cloud security, networking fundamentals, Linux systems, and container security.
  • Experience building or securing production infrastructure at scale.
  • Deep knowledge of authentication and authorization systems, secrets management and cryptography basics, common vulnerabilities and attack vectors, and ability to design security controls across multiple layers.
  • Proficiency in at least one language, experience with Infrastructure-as-Code, and strong automation mindset.

Nice to have experience with GPU infrastructure, multi-tenant platform isolation, service mesh architectures, and high-growth startup environments.

What makes this role unique is that you'll work on cutting-edge AI infrastructure security, secure GPU clusters, model execution, and real-time inference systems, have high ownership, and direct impact on developer trust and platform reliability.

Our security philosophy is to enable developers, automate everything, assume breach, and design for resilience.

In terms of compensation and benefits, we offer competitive salary, equity, full health, dental, and vision coverage, and opportunity to work on frontier AI infrastructure.

This listing is enriched and indexed by YubHub. To apply, use the employer's original posting: https://job-boards.greenhouse.io/fal/jobs/4200560009