Crusoe's mission is to accelerate the abundance of energy and intelligence. We’re crafting the engine that powers a world where people can create ambitiously with AI — without sacrificing scale, speed, or sustainability.
Be a part of the AI revolution with sustainable technology at Crusoe. Here, you'll drive meaningful innovation, make a tangible impact, and join a team that’s setting the pace for responsible, transformative cloud infrastructure.
About This Role
Crusoe’s mission is to accelerate the abundance of energy and intelligence. We’re seeking a Staff Infrastructure Security Engineer to secure the foundations of Crusoe Cloud, our purpose-built compute platform for AI and high-performance workloads. This role focuses on designing and embedding security controls directly into our global infrastructure, enabling customers to train advanced models within a trusted, secure-by-default environment.
You’ll operate at the intersection of infrastructure, security, and reliability; architecting identity, network, and cloud security systems that scale with a high-growth cloud provider.
What You’ll Be Working On
Architecting security controls across compute, networking, and storage layers of a global cloud platform
Championing Infrastructure-as-Code (IaC) standards (e.g., Terraform) to enforce secure defaults, immutability, and drift detection
Building automated security guardrails embedded directly into CI/CD and deployment pipelines
Collaborating on a centralized Vault-as-a-Platform service to manage secrets, encryption keys, and internal PKI
Designing and operating certificate lifecycles (X.509, SSH) to support secure machine-to-machine trust
Driving adoption of short-lived, Just-In-Time (JIT) access models to reduce standing privileges and improve auditability
Securing core network foundations, including global DNS architecture, service discovery, and network authentication systems
Designing and maintaining authentication controls for network infrastructure to ensure secure, monitored access
Partnering closely with infrastructure, platform, and SRE teams to identify and remediate security gaps in foundational systems
What You’ll Bring to the Team
8+ years of hands-on experience in infrastructure engineering, SRE, or security engineering
Deep understanding of security principles across the stack, from Linux and container runtimes to cloud control planes
Proven experience using Infrastructure-as-Code (Terraform) to manage complex, multi-environment infrastructure at scale
Strong knowledge of cryptography, secrets management, PKI, and modern authentication standards
Experience securing public cloud (AWS, GCP) and/or bare-metal environments
Strong networking fundamentals, including routing, segmentation, firewalls, and Zero Trust architectures
Hands-on experience with Kubernetes and container security, including secure secrets injection into microservices
Fluency in at least one programming language (Go or Python preferred) for automation and tooling
Bonus Points
Experience building or operating internal security platforms (e.g., Vault-as-a-Service)
Background securing high-scale cloud or AI infrastructure
Experience implementing Zero Trust identity architectures end-to-end
Familiarity with bare-metal provisioning and data center security considerations
Compensation Range
Compensation will be paid in the range of up to $210,000 - $265,000 + Bonus. Restricted Stock Units are included in all offers. Compensation to be determined by the applicants knowledge, education, and abilities, as well as internal equity and alignment with market data.
Crusoe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, disability, genetic information, pregnancy, citizenship, marital status, sex/gender, sexual preference/ orientation, gender identity, age, veteran status, national origin, or any other status protected by law or regulation.
