CoreWeave is the AI Hyperscaler™, delivering a cloud platform of cutting edge services powering the next wave of AI. Our technology provides enterprises and leading AI labs with the most performant, efficient and resilient solutions for accelerated computing. Since 2017, CoreWeave has operated a growing footprint of data centers covering every region of the US and across Europe. CoreWeave was ranked as one of the TIME100 most influential companies of 2024.
As the leader in the industry, we thrive in an environment where adaptability and resilience are key. Our culture offers career-defining opportunities for those who excel amid change and challenge. If you’re someone who thrives in a dynamic environment, enjoys solving complex problems, and is eager to make a significant impact, CoreWeave is the place for you. Join us, and be part of a team solving some of the most exciting challenges in the industry.
CoreWeave powers the creation and delivery of the intelligence that drives innovation.
At CoreWeave we're seeking an experienced Engineer to spearhead the design, development, and maintenance of PKI and secrets management across a next generation, AI Hyperscale cloud. Our infrastructure is powering leading AI Labs around the world and your innovative solutions will significantly impact our entire security posture.
Responsibilities:
- Design and implement a comprehensive PKI architecture, including Root CA, Intermediate CAs, issuance policies and HSMs
- Design and implement a secrets management solution to securely store and manage sensitive credentials across the organization
- Develop and implement operational procedures for PKI and secrets management, ensuring high availability, disaster recovery, and auditable logging
- Work closely with engineering teams to integrate PKI and secrets management into new and existing workflows
Minimum Qualifications & Experience:
- 5+ years of of experience in information security, with a focus on PKI and/or secrets management
- Proven track record of leading small teams to scale large challenges
- Proven experience in designing, implementing, and managing PKI infrastructure, including highly available HSM designs
- Proficiency with popular secrets management tools (Hashicorp Vault, Doppler, etc)
- Solid foundation in container technologies and application containerization
- Demonstrated ability to design, troubleshoot, and thoroughly document solutions
- Proficiency in writing code with modern languages (Go, Python, Javascript, etc)
- Applicants must have work authorization that does not require sponsorship from the company now or in the future.
Nice to Have:
- Deep understanding of Kubernetes architecture, particularly how secrets and certificates should be managed within a cluster.
- Knowledge of Kubernetes operators for managing PKI certificates (e.g., cert-manager).
- Experience with integrating Secrets Management solutions directly into Kubernetes deployments (e.g., Vault sidecar injection, Kubernetes Secrets Store CSI Driver).
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $240,000 - $275,000 annually. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.
What We Offer
The range we’ve posted represents the typical compensation range for this role. To determine actual compensation, we review the market rate for each candidate which can include a variety of factors. These include qualifications, experience, interview performance, and location.
In addition to a competitive salary, we offer a variety of benefits to support your needs, including:
- Medical, dental, and vision insurance - 100% paid for by CoreWeave
- Company-paid Life Insurance
- Voluntary supplemental life insurance
- Short and long-term disability insurance
- Flexible Spending Account
- Health Savings Account
- Tuition Reimbursement
- Mental Wellness Benefits through Spring Health
- Family-Forming support provided by Carrot
- Paid Parental Leave
- Flexible, full-service childcare support with Kinside
- 401(k) with a generous employer match
- Flexible PTO
- Catered lunch each day in our office and data center locations
- A casual work environment
- A work culture focused on innovative disruption
Our Workplace
At CoreWeave, we are committed to operating as a hybrid workplace, offering employees flexibility in how they structure their time between in-office and remote work. We recognize the significance of fostering connections, collaboration, and creativity within our office culture and its positive impact on our business. Our philosophy operating as a hybrid workplace underscores our dedication to enabling employees to tailor work-life balance to their individual preferences.
For those who do not live within 30 miles of one of our offices, we are open to considering remote work for candidates whose skills and experience strongly align with the role. While we prioritize a hybrid work environment for most roles, we understand the importance of flexibility and are open to remote work for specific positions and specialized skill sets. Onboarding is essential to your success. New employees not based out of an office will be invited to attend onboarding training at one of our hubs within their first month of employment. We continue to foster a collaborative environment by bringing teams together quarterly.
California Consumer Privacy Act - California applicants only
CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace. All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.
As part of this commitment and consistent with the Americans with Disabilities Act (ADA), CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship. If reasonable accommodation is needed, please contact: [email protected].
