FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.

Information Security Engineer – Bare Metal
FluidStackInformation Security Engineer securing AI infrastructure in dynamic environment. Leading initiatives in end-to-end security for servers and infrastructure supporting AI technology.
Posted 7/17/2026full-timeNew York City • New York • 🇺🇸 United StatesMid-LevelSenior💰 $168,000 - $225,000 per yearWebsite
Core Competencies
Role fitCore Competencies
Use this summary to align your resume positioning with the role.
Demonstrates expertise in end-to-end server security, including hardening, vulnerability management, and incident response. Proficient in automation and encryption practices within high-scale cloud infrastructure and bare metal environments.
Highest-signal resume keywords
End-To-End Server SecurityLinux Hardening (SELinux, AppArmor)Encryption Implementation (LUKS, HSM)Automation (Python, Go, Rust)Compliance Standards (SOC 2, ISO 27001)
ATS Keywords
Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills
Linux HardeningVulnerability ScanningConfiguration Management (Ansible, Puppet, Chef)Data-At-Rest EncryptionNetwork Security (TCP/IP, VPNs)Zero-Trust ArchitectureThreat ModelingIncident ResponseFirmware IntegrityMicro-Segmentation
Soft Skills
Cross-Team CollaborationClear Communication
Tools & Technologies
BMC Platforms (OpenBMC, iDRAC, iLO)IDS/IPSFirewall ArchitectureSecure BootTrusted Computing (TPM/TXT)
Certifications & Qualifications
CISSPOSCPCEH
Industry Keywords
Infrastructure EngineeringIaaSHigh-Scale Cloud InfrastructureAudit LoggingCredential Rotation
Tech Stack
Tools & technologiesAnsibleChefCloudGoLinuxPuppetPythonRustTCP/IP
About the role
Key responsibilities & impact- Own end-to-end security for every server in the bare metal fleet, from supply chain and provisioning through hardening, operation, and secure decommissioning.
- Design and maintain hardened golden OS images with automated vulnerability scanning, patch pipelines, and configuration-drift detection.
- Define and enforce the BMC security model (access control, credential rotation, audit logging, firmware integrity) for one of the most under-defended surfaces in the industry.
- Partner with network engineering on micro-segmentation, IDS/IPS, and firewall architecture, applying zero-trust from the top-of-rack up.
- Implement data-at-rest encryption, key management, and secure storage access at fleet scale, and build the automation that makes secure-by-default the path of least resistance.
- Lead threat modeling and security reviews for new hardware platforms and network designs, and respond to incidents touching the physical fleet.
Requirements
What you’ll need- You've worked in information security or infrastructure engineering with a strong focus on bare metal, IaaS, or high-scale cloud infrastructure.
- You harden Linux deeply (SELinux, AppArmor, kernel-level security) and command network security (TCP/IP, VPNs, firewall rulesets, zero-trust).
- You implement encryption in practice, including disk-level (LUKS) and hardware-level, and you understand HSMs and trusted computing (TPM/TXT).
- You automate fluently in Python, Go, or Rust, with configuration management (Ansible, Puppet, Chef).
- You work well across engineering teams and communicate security decisions clearly.
- Bonus: BMC platforms (OpenBMC, iDRAC, iLO). Hardware root of trust and secure boot. Compliance standards (SOC 2, ISO 27001, FedRAMP). CISSP, OSCP, or CEH.
Benefits
Comp & perks- Offers Equity 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score