Security Engineer - Network Security

CoreWeave is seeking an experienced Senior Network Security Engineer to lead our edge security initiatives and protect our rapidly scaling cloud infrastructure. In this role, you will architect and implement cutting-edge security solutions focused on edge security at our network perimeter. You will work in a high-scale environment (CoreWeave is positioning itself as the next major hyperscaler) and ensure our network and services remain secure, resilient, and trustworthy. The ideal candidate is a seasoned security expert (5–10 years experience) with a deep understanding of modern cloud/network architectures and a passion for mentoring others in a security-first culture.

• Edge Security Architecture: Design and deploy robust security measures at the network edge (e.g., perimeter firewalls, proxies, WAFs, CDN security) to protect CoreWeave’s globally distributed infrastructure. Ensure that all entry points and services are fortified against unauthorized access and attacks.
• DDoS Mitigation: Develop and implement advanced DDoS mitigation strategies to safeguard our platforms and ensure high availability. Continuously monitor traffic patterns, tune defenses (e.g., anti-DDoS services, rate-limiting, traffic filtering), and respond swiftly to volumetric attacks or anomalous traffic.
• Zero Trust Implementation: Champion a Zero Trust security model across CoreWeave’s network and cloud environment. Architect solutions that enforce least-privilege access, continuous verification, and micro-segmentation of services – ensuring no implicit trust at any layer.
• Security Monitoring & Incident Response: Establish robust monitoring for network security events and potential breaches. Proactively identify vulnerabilities or indicators of compromise, and coordinate incident response efforts for any network or edge-related security incidents to minimize impact.
• Cross-Functional Collaboration: Work closely with Networking, Infrastructure, SRE/DevOps, and Software Engineering teams to integrate security best practices into architecture, deployments, and processes. Provide expert guidance during design and code reviews to ensure new services and features are secure by design.
• Leadership & Mentorship: Drive security initiatives and foster a security-first mindset across the organization. Mentor junior engineers and peer teams on network security principles, conduct security training sessions, and lead by example in following and enforcing security policies and standards.
• Policy Development: Develop, implement, and continually refine security policies and standard operating procedures for a highly scalable, distributed environment. Regularly review network and cloud security postures, ensuring compliance with industry best practices and adapting policies as the company grows.

• Experience: 5–10 years of hands-on experience in network security engineering, with exposure to large-scale cloud or hyperscaler environments. Proven track record protecting complex, distributed systems at scale.
• Edge Security Expertise: Deep understanding of edge security principles and technologies – including experience mitigating DDoS attacks, defending against web exploits, and implementing zero trust methodologies.
• Cloud & Network Architecture: Strong conceptual and practical knowledge of securing modern cloud and network architectures. Proficient in network protocols (TCP/IP, DNS, BGP, HTTP/S, etc.), network segmentation, VPNs, and firewall configurations. Experience securing cloud platforms (AWS, GCP, Azure or custom hyperscale infrastructure) and containerized environments.
• Security Leadership: Demonstrated ability to lead security initiatives and projects end-to-end. Experience mentoring engineers or leading security teams, with a talent for instilling a security-first mindset across diverse teams.
• Cross-Team Collaboration: Excellent communication and collaboration skills. Ability to work closely with cross-functional teams (Networking, Infrastructure, DevOps/SRE, Software) to design and implement security solutions that enable the business while protecting critical assets.
• Policy and Compliance: Experience in designing, implementing, and reviewing security policies and controls for highly scalable, distributed systems. Familiarity with industry standards and compliance frameworks (e.g., NIST, ISO 27001, SOC2) and how they apply in a cloud environment.

• Hyperscaler Environment: Prior experience working in a top-tier cloud provider or hyperscale environment is a strong plus (FAANG or similar organization). Understanding of the unique security challenges at massive scale.
• DDoS and WAF Technologies: Familiarity with enterprise-grade DDoS protection and web application security solutions (e.g., Cloudflare, AWS Shield, Akamai, Arbor Networks, F5, etc.). Experience fine-tuning WAF rules and traffic scrubbing techniques.
• Zero Trust & Identity: Experience designing zero trust networks, including identity and access management (IAM) systems, single sign-on, multi-factor authentication, and network access control solutions.
• Automation & Scripting: Proficiency in scripting or programming (Python, Go, or similar) for automating security tasks, integrating security tools, and handling infrastructure-as-code. Experience with DevSecOps practices and CI/CD pipeline security is a plus.
• Security Certifications: Relevant certifications such as CISSP, CCSP, GIAC (GSEC, GCIH, etc.), or cloud security certifications (AWS/Azure Security Specialty) are advantageous, demonstrating a strong foundation in security best practices.
• Continuous Learning: Active involvement in the security community or contributions to open-source security projects. Up-to-date knowledge of the latest threats, vulnerabilities, and mitigation strategies in network and cloud security.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $185,000-$230,000. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.