Security Engineer, Network Security

CoreWeave is the AI Hyperscaler™, delivering a cloud platform of cutting edge services powering the next wave of AI. Our technology provides enterprises and leading AI labs with the most performant, efficient and resilient solutions for accelerated computing. Since 2017, CoreWeave has operated a growing footprint of data centers covering every region of the US and across Europe. CoreWeave was ranked as one of the TIME100 most influential companies of 2024.

As the leader in the industry, we thrive in an environment where adaptability and resilience are key. Our culture offers career-defining opportunities for those who excel amid change and challenge. If you’re someone who thrives in a dynamic environment, enjoys solving complex problems, and is eager to make a significant impact, CoreWeave is the place for you. Join us, and be part of a team solving some of the most exciting challenges in the industry.  

CoreWeave powers the creation and delivery of the intelligence that drives innovation. 

Role Overview

CoreWeave is seeking an experienced Senior Network Security Engineer to lead our edge security initiatives and protect our rapidly scaling cloud infrastructure. In this role, you will architect and implement cutting-edge security solutions focused on edge security at our network perimeter. You will work in a high-scale environment (CoreWeave is positioning itself as the next major hyperscaler) and ensure our network and services remain secure, resilient, and trustworthy. The ideal candidate is a seasoned security expert (5–10 years experience) with a deep understanding of modern cloud/network architectures and a passion for mentoring others in a security-first culture.

Key Responsibilities

• Edge Security Architecture: Design and deploy robust security measures at the network edge (e.g., perimeter firewalls, proxies, WAFs, CDN security) to protect CoreWeave’s globally distributed infrastructure. Ensure that all entry points and services are fortified against unauthorized access and attacks.
• DDoS Mitigation: Develop and implement advanced DDoS mitigation strategies to safeguard our platforms and ensure high availability. Continuously monitor traffic patterns, tune defenses (e.g., anti-DDoS services, rate-limiting, traffic filtering), and respond swiftly to volumetric attacks or anomalous traffic.
• Zero Trust Implementation: Champion a Zero Trust security model across CoreWeave’s network and cloud environment. Architect solutions that enforce least-privilege access, continuous verification, and micro-segmentation of services – ensuring no implicit trust at any layer.
• Security Monitoring & Incident Response: Establish robust monitoring for network security events and potential breaches. Proactively identify vulnerabilities or indicators of compromise, and coordinate incident response efforts for any network or edge-related security incidents to minimize impact.
• Cross-Functional Collaboration: Work closely with Networking, Infrastructure, SRE/DevOps, and Software Engineering teams to integrate security best practices into architecture, deployments, and processes. Provide expert guidance during design and code reviews to ensure new services and features are secure by design.
• Leadership & Mentorship: Drive security initiatives and foster a security-first mindset across the organization. Mentor junior engineers and peer teams on network security principles, conduct security training sessions, and lead by example in following and enforcing security policies and standards.
• Policy Development: Develop, implement, and continually refine security policies and standard operating procedures for a highly scalable, distributed environment. Regularly review network and cloud security postures, ensuring compliance with industry best practices and adapting policies as the company grows.

Required Qualifications

• Experience: 5–10 years of hands-on experience in network security engineering, with exposure to large-scale cloud or hyperscaler environments. Proven track record protecting complex, distributed systems at scale.
• Edge Security Expertise: Deep understanding of edge security principles and technologies – including experience mitigating DDoS attacks, defending against web exploits, and implementing zero trust methodologies.
• Cloud & Network Architecture: Strong conceptual and practical knowledge of securing modern cloud and network architectures. Proficient in network protocols (TCP/IP, DNS, BGP, HTTP/S, etc.), network segmentation, VPNs, and firewall configurations. Experience securing cloud platforms (AWS, GCP, Azure or custom hyperscale infrastructure) and containerized environments.
• Security Leadership: Demonstrated ability to lead security initiatives and projects end-to-end. Experience mentoring engineers or leading security teams, with a talent for instilling a security-first mindset across diverse teams.
• Cross-Team Collaboration: Excellent communication and collaboration skills. Ability to work closely with cross-functional teams (Networking, Infrastructure, DevOps/SRE, Software) to design and implement security solutions that enable the business while protecting critical assets.
• Policy and Compliance: Experience in designing, implementing, and reviewing security policies and controls for highly scalable, distributed systems. Familiarity with industry standards and compliance frameworks (e.g., NIST, ISO 27001, SOC2) and how they apply in a cloud environment.

Preferred Skills & Qualifications

• Hyperscaler Environment: Prior experience working in a top-tier cloud provider or hyperscale environment is a strong plus (FAANG or similar organization). Understanding of the unique security challenges at massive scale.
• DDoS and WAF Technologies: Familiarity with enterprise-grade DDoS protection and web application security solutions (e.g., Cloudflare, AWS Shield, Akamai, Arbor Networks, F5, etc.). Experience fine-tuning WAF rules and traffic scrubbing techniques.
• Zero Trust & Identity: Experience designing zero trust networks, including identity and access management (IAM) systems, single sign-on, multi-factor authentication, and network access control solutions.
• Automation & Scripting: Proficiency in scripting or programming (Python, Go, or similar) for automating security tasks, integrating security tools, and handling infrastructure-as-code. Experience with DevSecOps practices and CI/CD pipeline security is a plus.
• Security Certifications: Relevant certifications such as CISSP, CCSP, GIAC (GSEC, GCIH, etc.), or cloud security certifications (AWS/Azure Security Specialty) are advantageous, demonstrating a strong foundation in security best practices.
• Continuous Learning: Active involvement in the security community or contributions to open-source security projects. Up-to-date knowledge of the latest threats, vulnerabilities, and mitigation strategies in network and cloud security.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $185,000-$230,000. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.

What We Offer

The range we’ve posted represents the typical compensation range for this role. To determine actual compensation, we review the market rate for each candidate which can include a variety of factors. These include qualifications, experience, interview performance, and location.

In addition to a competitive salary, we offer a variety of benefits to support your needs, including:

• Medical, dental, and vision insurance - 100% paid for by CoreWeave
• Company-paid Life Insurance 
• Voluntary supplemental life insurance 
• Short and long-term disability insurance 
• Flexible Spending Account
• Health Savings Account
• Tuition Reimbursement 
• Mental Wellness Benefits through Spring Health 
• Family-Forming support provided by Carrot
• Paid Parental Leave 
• Flexible, full-service childcare support with Kinside
• 401(k) with a generous employer match
• Flexible PTO
• Catered lunch each day in our office and data center locations
• A casual work environment
• A work culture focused on innovative disruption

Our Workplace

At CoreWeave, we are committed to operating as a hybrid workplace, offering employees flexibility in how they structure their time between in-office and remote work. We recognize the significance of fostering connections, collaboration, and creativity within our office culture and its positive impact on our business. Our philosophy operating as a hybrid workplace underscores our dedication to enabling employees to tailor work-life balance to their individual preferences.

For those who do not live within 30 miles of one of our offices, we are open to considering remote work for candidates whose skills and experience strongly align with the role. While we prioritize a hybrid work environment for most roles, we understand the importance of flexibility and are open to remote work for specific positions and specialized skill sets. Onboarding is essential to your success. New employees not based out of an office will be invited to attend onboarding training at one of our hubs within their first month of employment. We continue to foster a collaborative environment by bringing teams together quarterly.

California Consumer Privacy Act - California applicants only

CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace. All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.

As part of this commitment and consistent with the Americans with Disabilities Act (ADA), CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship. If reasonable accommodation is needed, please contact: careers@coreweave.com.