Job Opportunities in the Seedcamp Portfolio

About Fluidstack

At Fluidstack, we’re building the infrastructure for abundant intelligence. We partner with top AI labs, governments, and enterprises - including Mistral, Poolside, Black Forest Labs, Meta, and more - to unlock compute at the speed of light.

We’re working with urgency to make AGI a reality. As such, our team is highly motivated and committed to delivering world-class infrastructure. We treat our customers’ outcomes as our own, taking pride in the systems we build and the trust we earn. If you’re motivated by purpose, obsessed with excellence, and ready to work very hard to accelerate the future of intelligence, join us in building what's next.

About the Role

The Information Security Engineer, Bare Metal will be a critical part of the infrastructure team, responsible for designing, implementing, and maintaining the security of Fluidstack’s bare metal fleet. This role is highly technical and requires deep expertise in hardware, operating systems, and network security in a high-scale, high-performance environment.

Key Responsibilities:

• Bare Metal Lifecycle Security: Own the security throughout the entire lifecycle of the bare metal fleet, from provisioning and hardening to decommission.

• Image Security and Hardening: Design and implement secure, hardened base operating system images (Linux) for all production and development environments, including automated vulnerability scanning and patch management.

• Baseboard Management Controller (BMC) Security: Define and enforce security best practices for BMCs, including access controls, credential management, logging, and firmware integrity/patching.

• Network Security: Collaborate with network engineering to design and implement secure network architectures, including micro-segmentation, intrusion detection/prevention systems (IDS/IPS), and firewall policies for the bare metal environment.

• Storage and Data Protection: Implement strong security controls for storage systems, focusing on data-at-rest encryption, key management, and secure access protocols for both local and networked storage.

• Automation: Develop security automation and tooling (e.g., configuration management scripts) to ensure security is enforced consistently and at scale across the fleet.

• Security Monitoring and Incident Response: Configure and manage security monitoring for bare metal infrastructure and participate in the incident response process for critical security events.

• Security Review: Conduct regular security audits and threat modeling exercises for new hardware and infrastructure designs.

Focus

• Securing and hardening base images (Linux/OS).

• Baseboard Management Controller (BMC) access control and firmware security.

• Infrastructure network segmentation and policy enforcement.

• Storage encryption, data integrity, and key management.
  

About You

• 7+ years of experience in an Information Security or Infrastructure Engineering role, with a strong focus on bare metal, IaaS, or high-scale cloud infrastructure.

• Deep practical experience with Linux operating system hardening (e.g., SELinux, AppArmor, kernel-level security).

• Expert-level knowledge of network security principles, including TCP/IP, VPNs, firewall rulesets, and zero-trust concepts.

• Proven ability to implement and manage encryption technologies, including disk-level encryption (e.g., LUKS) and hardware-level encryption.

• Strong scripting and automation skills in languages such as Python, Go, or Rust, and experience with configuration management tools (e.g., Ansible, Puppet, Chef).

• Understanding of hardware security modules (HSMs) and trusted computing concepts (e.g., TPM/TXT).

• Excellent problem-solving and communication skills, with the ability to work collaboratively across engineering teams.

Nice to Haves

• Experience with specific BMC platforms (e.g., OpenBMC, Dell iDRAC, HPE iLO).

• Familiarity with compliance standards relevant to bare metal environments (e.g., SOC 2, ISO 27001, FedRAMP).

• Experience with hardware-level root of trust and secure boot implementations.

• Relevant security certifications (e.g., CISSP, OSCP, CEH).

Salary & Benefits

• Competitive total compensation package (salary + equity).

• Retirement or pension plan, in line with local norms.

• Health, dental, and vision insurance.

• Generous PTO policy, in line with local norms.

The base salary range for this position is $150,000 - $250,000 per year, depending on experience, skills, qualifications, and location. This range represents our good faith estimate of the compensation for this role at the time of posting. Total compensation may also include equity in the form of stock options.

We are committed to pay equity and transparency.

Fluidstack is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Fluidstack will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

.