Data Security Engineer

Medal
New York, US
On-site

Who this role is best for

Geared toward mid-level security engineers comfortable with securing cloud environments and data pipelines in AI and gaming domains.

Best fit for

  • Engineers with hands-on experience hardening GCP and Kubernetes infrastructure.
    — “You harden GCP (AWS equivalents fine), Kubernetes, and containers from the inside out
  • Professionals who can balance security with research and product velocity.
    — “design secure-by-default foundations without slowing down research or product teams
  • Candidates adept at securing data pipelines for AI training.
    — “protect the data pipelines - encrypting and isolating the video/metadata ETL

Things to consider

  • Must manage security across both AI research and gaming platforms.
    — “secures the infrastructure bridging GI's AI research and Medal's creator platform
  • Responsibility extends to compliance with creator and AI data regulations.
    — “keep us compliant across creator data and AI training data

How to stand out

  • Demonstrate experience with Terraform and GitHub Actions in securing deployments.
    — “IaC & CI/CD: Terraform, GitHub Actions
  • Highlight past work on identity management and secrets rotation.
    — “You own identity, access, and secrets - privileged-access visibility, key rotation
  • Showcase involvement in threat modeling or red-team exercises.
    — “You run the op-sec program - threat modeling, red-team and tabletop drills
Pace · SteadyCollaboration · HighAutonomy · MediumDecision Impact · TeamLevel · Mid

Derived from job-description analysis by Serendipath's career intelligence engine.

What success looks like

  • Harden cloud environments
  • Protect data pipelines
  • Secure software supply chain
Typical background
Experience in cloud securityTechnical background

Skills & requirements

Required

Cloud SecurityData ProtectionSupply Chain SecurityIdentity And Access ManagementOperational Security

Preferred

AI SecurityThreat Modeling

Stack & domain

Cloud SecurityGCPKubernetesContainersData PipelinesObservabilityIdentity ManagementSoftware Supply Chain SecurityLeadershipTeam ManagementProblem SolvingCommunicationAISpace Technology

About the role

Original posting from Medal via Ashby

ABOUT GENERAL INTUITION

General Intuition is the frontier research lab for acting in space and time. We build large action models that can perceive, predict, and act across virtual and physical environments. We recently raised $320M at a $2.3B valuation led by Khosla Ventures with participation from General Catalyst, Eric Schmidt, and Jeff Bezos, to discover the next generation of real-world intelligence. Our models learn from Medal, the largest platform for gaming clips, where millions of gamers capture and share the moments that form our underlying dataset.

THE ROLE

This role secures the infrastructure bridging GI's AI research and Medal's creator platform. You will harden our cloud environments, protect our data pipelines, and ensure our deployment systems are safe from supply-chain attacks and other threats.

You'll design secure-by-default foundations without slowing down research or product teams, blending off-the-shelf security tooling with custom guardrails where necessary. Your work directly reduces operational risk across both General Intuition and Medal.

WHAT WE'RE LOOKING FOR

  • You harden GCP (AWS equivalents fine), Kubernetes, and containers from the inside out - workload isolation, network segmentation, IAM discipline, and secure-by-default guardrails baked into Terraform, CI/CD, and deployments.
  • You protect the data pipelines - encrypting and isolating the video/metadata ETL, with full logging and observability (Cloud Logging, SIEM, OpenTelemetry, Honeycomb) into how AI training data moves and is used.
  • You own identity, access, and secrets - privileged-access visibility, key rotation, least-privilege baselines, workload identity, and PKI (cloud-native KMS / Secret Manager).
  • You secure the software supply chain - scanned builds and dependencies, artifact provenance, hardened GitHub Actions runners.
  • You run the op-sec program - threat modeling, red-team and tabletop drills, incident response, and external pen-tests.
  • You keep us compliant across creator data and AI training data.

OUR STACK

Cloud: GCP (GKE, Cloud Run, Cloud SQL, GCS, Pub/Sub, BigQuery), Cloudflare + Akamai edge · IaC & CI/CD: Terraform, GitHub Actions · Identity & secrets: Cloud IAM, workload identity, KMS / Secret Manager · Observability: Cloud Logging, SIEM, OpenTelemetry, Honeycomb

Source: Medal careers (Ashby)

Similar roles