Senior Platform Security Engineer

Senior Platform Security Engineer

Location: Dallas, TX | Hybrid

Type: Direct Hire

Relocation: Available for non-local candidates

Compensation

Competitive base salary performance bonus

100% company-paid benefits

Overview

GTN is seeking a Senior Platform Security Engineer to help secure the engineering platforms, infrastructure, and software supply chains that support a large-scale HPC and cloud environment.

This role sits within a Platform Security team responsible for building real-time security visibility, proactive vulnerability management, and embedded security controls across infrastructure, container platforms, cloud services, CI/CD workflows, and platform engineering environments.

The Senior Platform Security Engineer will partner closely with Platform Engineering, DevOps, Security Operations, and infrastructure teams to detect, assess, prioritize, and remediate vulnerabilities before they become operational risk. This is a hands-on role focused on securing highly complex environments where reliability, visibility, and speed of remediation are critical.

The ideal candidate brings strong security engineering experience across infrastructure, Kubernetes, cloud, Linux, vulnerability management, and software supply chain security, with the ability to work directly with engineering teams to harden platforms at scale.

Key Responsibilities

Platform Security & Vulnerability Management

• Own and mature the vulnerability management program across platform engineering, infrastructure, containers, cloud services, and software supply chains

• Identify, assess, prioritize, and drive remediation of vulnerabilities across bare-metal, Linux, Kubernetes, OpenStack, cloud, and CI/CD environments

• Lead vulnerability triage using risk-based prioritization, exploit maturity, asset criticality, and business impact

• Partner with engineering teams to ensure timely remediation of high-priority risks and recurring security gaps

• Conduct platform-level security assessments, attack surface analysis, and threat modeling across infrastructure and application delivery environments

Detection, Monitoring & Security Automation

• Implement, tune, and operate real-time security monitoring and threat detection tooling across HPC, cloud, and platform environments

• Build high-fidelity detection workflows that reduce noise while improving security visibility and response effectiveness

• Develop automation to continuously assess platform security posture and reduce manual vulnerability management effort

• Integrate security scanning, vulnerability assessment, and policy enforcement into CI/CD pipelines and Infrastructure-as-Code workflows

• Support runtime security, container security, and infrastructure detection use cases across production environments

Engineering Partnership & Secure Platform Practices

• Collaborate closely with Platform Engineering, DevOps, Security Operations, and infrastructure teams to embed security into engineering workflows

• Provide practical security guidance for secure configuration, secrets management, container hardening, cloud security, and platform operations

• Help define and improve platform security standards, tooling, processes, and remediation playbooks

• Contribute to a security-first engineering culture by making security actionable, automated, and aligned with how teams build and operate systems

• Stay current on emerging vulnerabilities, attack techniques, and platform security tooling relevant to high-scale infrastructure environments

Required Experience

• 6 years of experience in security engineering, with a focus on platform, infrastructure, cloud, application, or product security

• Hands-on experience with vulnerability management and security monitoring tools such as Qualys, Tenable, Wiz, Lacework, Prisma Cloud, or similar platforms

• Strong understanding of infrastructure security, container security, software supply chain risk, secrets management, secure configuration, and remediation workflows

• Experience securing Kubernetes, OpenStack, container orchestration platforms, and cloud environments such as AWS and/or Azure

• Strong Linux experience and familiarity with how platform engineering teams build, deploy, and operate infrastructure

• Experience integrating security tooling into CI/CD pipelines, DevOps workflows, and Infrastructure-as-Code practices

• Scripting or development ability in Python, Bash, Go, or similar languages

• Good understanding of CVSS, exploit maturity, vulnerability prioritization, and risk-based remediation practices

• Ability to collaborate with engineering teams, explain security risk clearly, and drive practical remediation in complex technical environments

Preferred Experience

• Experience with runtime threat detection tools such as Falco, eBPF-based security tooling, or similar platforms

• Familiarity with software supply chain security practices such as SLSA, SBOM generation, artifact signing, and Sigstore

• Background working with or alongside SOC, threat intelligence, incident response, or detection engineering teams

• Experience in HPC, AI infrastructure, data center, cloud platform, or mission-critical infrastructure environments

• Relevant certifications such as OSCP, GIAC GPEN/GWAPT/GCSA, AWS Security Specialty, or equivalent

Ideal Candidate Profile

The ideal candidate is a hands-on platform security engineer who understands both security risk and how modern infrastructure is actually built and operated. This person can work directly with engineering teams, automate security controls, improve vulnerability visibility, and drive remediation without slowing down delivery. They bring strong technical depth, practical judgment, and a proactive mindset for securing complex platform environments at scale.