Runpod is the AI Developer Cloud. More than one million developers, from indie researchers to teams running frontier models in production, use Runpod to experiment, train, fine-tune, deploy, and scale AI on one platform. The platform has processed more than 20 billion inference requests. We closed a $100M Series A in June 2026. We're at an inflection point for AI infrastructure, and we're building the platform the next generation of developers will depend on.
We're a small, remote-first team. We take ownership seriously, move fast, and ship work that more than a million developers rely on every day. We're looking for people who care deeply, build with urgency, and want to matter at scale.
Learn more in our CEO's funding announcement: https://www.runpod.io/blog/one-million-developers.
As RunPod continues to revolutionize the GPU cloud computing landscape, we are seeking a Full Stack Security Engineer to secure our customer-facing products, APIs, and internal services. This critical position will ensure the security of the software that powers our platform, enabling continued growth while protecting user data, billing systems, and web interfaces.
The ideal candidate possesses strong software development abilities coupled with deep experience in application security, DevSecOps, and modern web architectures. You will embed directly with our engineering teams to ensure our product is secure by design.
RunPod is seeking a proactive AppSec professional who believes in Integrated Security. You won't just toss PDF reports over the fence; you will write code to fix vulnerabilities, build automated security guardrails into our CI/CD pipelines, and foster a security-first culture among our developers.
Responsibilities:
Product Security: Lead threat modeling, architecture reviews, and code reviews for our web applications, APIs, and microservices.
Vulnerability Remediation: Actively develop and commit code to fix security flaws in our Python, Go, or JavaScript/TypeScript codebases alongside the engineering team.
DevSecOps: Implement, tune, and manage security testing tools (SAST, DAST, SCA) within our CI/CD pipelines to catch vulnerabilities early in the SDLC.
Edge & Application Defense: Configure and manage application-layer security controls, including Web Application Firewalls (WAF), bot protection, and API gateways.
Security Championing: Provide security guidance, secure coding training, and standard operating procedures to development teams.
Compliance & Operations: Collaborate with operations to ensure product-level adherence to relevant frameworks (e.g., SOC 2, ISO 27001, GDPR) and participate in bug bounty triage.
Required Qualifications:
5+ years of experience in application security, product security, or as a software engineer with a heavy security focus.
Strong programming and code-review skills in languages like Python, Go, JavaScript/TypeScript, or similar modern stacks.
Deep understanding of web application vulnerabilities (OWASP Top 10), API security (REST/GraphQL), and modern authentication flows (OAuth, OIDC, JWT).
Hands-on experience with offensive web security testing tools (e.g., Burp Suite, ZAP).
Experience building and maintaining automated security pipelines (DevSecOps).
Ability to translate complex security risks into actionable engineering tasks.
Preferred Qualifications:
Relevant application security certifications (e.g., OSWE, GWAPT, CISSP).
Experience securing cloud-native applications running on Kubernetes/Docker environments.
Background in managing bug bounty programs or coordinated vulnerability disclosures.
What You’ll Receive:
The competitive base pay for this position ranges from ($152,000 - $175,000). This salary range may be inclusive of several career levels at Runpod and will be narrowed during the interview process based on a number of factors, including the candidate’s experience, qualifications, and location
Meaningful equity in a fast-growing company- everyone on the team receives stock options — your impact drives our growth, and you share in the upside.
Generous medical, dental & vision plans
Flexible PTO- take the time you need to recharge
Most roles are remote work first with an inclusive, collaborative teams utilizing slack as the main form of internal communication
Join a passionate team on the cutting edge of AI infrastructure — where culture, learning, and ownership are at the heart of how we scale.
$1,200 Home Office & Equipment Stipend- We set you up for success from day one with gear and support to create your ideal workspace
Runpod is committed to maintaining a workplace free from discrimination and upholding the principles of equality and respect for all individuals. We believe that diversity in all its forms enhances our team. As an equal opportunity employer, Runpod is committed to creating an inclusive workforce at every level. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, protected veteran status, disability status, or any other characteristic protected by law. We welcome every qualified candidate eligible to work in the United States; however, we are currently unable to sponsor employment visas.
Skills Required
- 5+ years experience in application security, product security, or as a software engineer with heavy security focus
- Strong programming and code-review skills in Python, Go, JavaScript/TypeScript or similar modern stacks
- Deep understanding of web application vulnerabilities (OWASP Top 10), API security (REST/GraphQL), and authentication flows (OAuth, OIDC, JWT)
- Hands-on experience with offensive web security testing tools (e.g., Burp Suite, ZAP)
- Experience building and maintaining automated security pipelines (DevSecOps) including SAST, DAST, SCA in CI/CD
- Ability to translate complex security risks into actionable engineering tasks
- Relevant application security certifications (e.g., OSWE, GWAPT, CISSP)
- Experience securing cloud-native applications running on Kubernetes/Docker
- Background in managing bug bounty programs or coordinated vulnerability disclosures
Runpod Compensation & Benefits Highlights
-
Healthcare Strength — Public listings indicate fully paid health benefits for full‑time employees, plus dental and vision coverage. Feedback suggests wellness programs also support overall health.
-
Retirement Support — Public materials call out 401(k) matching as part of the package. Feedback suggests this provides structured long‑term savings alongside salary.
-
Equity Value & Accessibility — Job postings state everyone on the team receives stock options. Feedback suggests this makes ownership broadly accessible across roles.
Runpod Insights
What We Do
Runpod is pioneering the future of AI and machine learning, offering cutting-edge cloud infrastructure for full-stack AI applications. Founded in 2022, we are a rapidly growing, well-funded company with a remote-first organization spread globally. Our mission is to empower innovators and enterprises to unlock AI's true potential, driving technology and transforming industries. Join us as we shape the future of AI. We are building Cloud services focused on accelerating AI adoption. Whether you're an experienced ML developer training a large language model, or an enthusiast tinkering with stable diffusion, we strive to make GPU compute as seamless and affordable as possible.
Why Work With Us
Our Guiding Virtues Give a sh*t - We want to work with people who care - about our customers and about each other. Look in the mirror - We deeply reflect on our own actions and seek to better ourselves. Courage over comfort - We tackle hard truths and tough situations directly, even when it makes us uncomfortable.
Gallery
Runpod Offices
Remote Workspace
Employees work remotely.
We’re remote-first, offering flexibility with virtual tools for collaboration. For those nearby, we have coworking spaces in SF and Seattle. Enjoy the choice of office or remote work, with a focus on flexibility and work-life balance






