Security Engineer, Cloud

About Vercel

Vercel is the agentic infrastructure company. We free people and agents to ship what’s next.

For more than a decade, Vercel has shaped how the web is built. As the team behind Next.js, v0, and AI SDK, we create products that help builders move from idea to production with speed, security, and exceptional developer experience.

Now, software is entering a new era, and the next generation of products will not just be used by people. They will be built, extended, and operated by agents.

We are building the platform for that future, trusted by companies like OpenAI, PayPal, Ramp, Supreme, and millions of developers worldwide. Whether you’re building our products, supporting our customers, growing our community, or shaping our story, you’ll help define what comes next.

About the role

We're looking for a Security Engineer to join our Cloud Security Engineering team. In this role, you'll help strengthen the security of our platform by building and improving the controls that protect our infrastructure. You'll play a key role in making security a core part of how we build, deploy, and scale our systems, while helping the company grow securely and confidently.

You'll report to the Security Operations Manager, and this is a hybrid or fully remote within the United States. If you're based within commuting distance of our SF or NY offices, the role includes in-office anchor days on Monday, Tuesday, and Friday.

What you will do

• Design and implement scalable security controls across our cloud-native platform.

• Harden infrastructure components using infrastructure-as-code, policy enforcement, and service isolation.

• Build secure by default infrastructure and code CI/CD pipelines.

• Collaborate with platform and infrastructure teams to integrate security best practices into architecture and workflows.

• Stay ahead of cloud security trends and adopt cutting-edge technologies to enhance platform resilience.

• Conduct threat modeling, risk analysis, and mitigation planning for critical systems.

• Drive improvements in monitoring, detection, and incident response at the platform level.

• Build, deploy and maintain relevant tooling.

About you

• 8+ years of experience in infrastructure or platform security roles.

• Deep understanding of secure cloud infrastructure (AWS/GCP), identity and access management, and system hardening.

• Proficient with tools like Terraform, CDK, Kubernetes, and CI/CD security.

• Skilled at balancing engineering realities with principled security practices.

• Proven track record of shipping secure, resilient systems at scale.

Bonus if you

• Have built or scaled security automation pipelines.

• Contributed to open-source security projects or tools.

• Hold certifications such as GCP Security Engineer, AWS certifications, CISSP, or OSCP.

• Hold a bachelors or masters degree in Cybersecurity or similar disciplines.

Benefits

• Competitive compensation package, including equity.

• Inclusive Healthcare Package.

• Learn and Grow - we provide mentorship and send you to events that help you build your network and skills.

• Flexible Time Off.

• We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed.

The San Francisco, CA base pay range for this role is $208,000.00 - $312,000.00. This salary range is an estimate. Actual salary will be based on job related skills, experience a

Responsibilities

• Design and implement scalable security controls across cloud-native platform
• Harden infrastructure components using infrastructure-as-code, policy enforcement, and service isolation
• Build secure by default infrastructure and code CI/CD pipelines
• Collaborate with platform and infrastructure teams to integrate security best practices into architecture and workflows
• Stay ahead of cloud security trends and adopt cutting-edge technologies to enhance platform resilience
• Conduct threat modeling, risk analysis, and mitigation planning for critical systems
• Drive improvements in monitoring, detection, and incident response at the platform level
• Build, deploy and maintain relevant tooling

Requirements

• 8+ years of experience in infrastructure or platform security roles
• Deep understanding of secure cloud infrastructure (AWS/GCP)
• Deep understanding of identity and access management
• Deep understanding of system hardening
• Proficient with Terraform
• Proficient with CDK
• Proficient with Kubernetes
• Proficient with CI/CD security
• Skilled at balancing engineering realities with principled security practices
• Proven track record of shipping secure, resilient systems at scale

Preferred Qualifications

• Built or scaled security automation pipelines
• Contributed to open-source security projects or tools
• GCP Security Engineer certification
• AWS certifications
• CISSP certification
• OSCP certification
• Bachelors degree in Cybersecurity or similar disciplines
• Masters degree in Cybersecurity or similar disciplines

• Competitive compensation package, including equity
• Inclusive Healthcare Package
• Mentorship and event attendance for learning and growth
• Flexible Time Off
• Company-provided gear and WFH budget
• San Francisco, CA base pay range: $208,000.00 - $312,000.00