About TensorWave Our mission is simple: deliver seamless, secure, reliable, and resilient AI compute at scale. We've built a versatile cloud platform that eliminates infrastructure barriers, empowering builders to focus on innovation instead of fighting their stack. Becausebreakthrough AI should move at the speed of ideas, not infrastructure.
About the Role We've established a hardened security baseline and are now scaling it into a mature, enterprise-grade security estate. Reporting directly to the CISO and partnering with leads across Engineering, Platform, and the business, you'll be the technical linchpin who designs the architecture and writes the code that makes it real.
This is a hybrid architect-builder role. You'll move between high-level design sessions on our next-gen GPU fabric and the editor where you ship the Go, Python, or Rust that secures our APIs, orchestration plane, and firmware stack. If you believe the best way to prove an architecture is to build it, this is your seat.
What You'll Do - Architect and build security across the stack. Partner with Core Architecture and DevOps on threat modeling, design reviews, and the automated guardrails that let engineering move fast without breaking the security promise.
- Harden the fabric, cradle to grave. Own hardware lifecycle security across our AMD Instinct clusters and high-speed fabrics (InfiniBand / RoCE). Build the code behind TPM 2.0 / Secure Boot, cryptographic attestation, and programmable trust.
- Lead our open firmware security commitment. Keep our OpenBMC, coreboot, and ROCm ecosystems continuously secure, auditable, and open. Design and implement the tooling that makes hardware management transparent by default.
- Engineer Zero-Trust IAM. Design and implement least-privilege automation across the management plane, with identity-based micro-segmentation wired into our orchestration engines.
- Make compliance push-button. Act as the CISO's right hand scaling SOC2 and ISO 27001. Replace manual evidence collection with continuous monitoring and "always-on" controls.
- Operate as a purple teamer. Think like an attacker, then ship the telemetry, detections, and hardening to close what you found.
- Evangelize Security-as-Code. Version-controlled policy, shift-left integration, self-healing infrastructure. Manual configuration is a vulnerability we don't accept.
Who You AreRequired Qualifications - Deep experience securing High-Performance Computing or large GPU environments, including Linux internals and high-speed fabric isolation (InfiniBand / RoCE).
- Strong coding chops in Go, Python, or Rust you build functions that run themselves rather than dashboards that need to be watched.
- Hands-on with Infrastructure-as-Code (Terraform, Pulumi, Ansible) and Kubernetes at production scale.
- Working knowledge of hardware roots of trust: TPM 2.0, Secure Boot, measured boot, attestation.
- Familiarity with open firmware stacks (OpenBMC, coreboot) and the AMD / ROCm ecosystem is a strong plus.
- Proven track record building Zero-Trust architectures and driving SOC2 / ISO 27001 programs toward automation.
- Background in a fast-scaling startup or high-end security consultancy where you built things from scratch and then wrote the code to keep them secure.
- Architect-builder mindset: equally comfortable in a whiteboard session and a pull request review.
What We Offer - 100% paid Medical, Dental, and Vision insurance for Employees
- Company Health Savings Account Contributions
- 100% paid Short Term and Long Term Disability Insurance for Employees
- Life and Voluntary Supplemental Insurance Options
- Other Insurance Options, such as Pet & Legal Insurance
- Various Supplementary Health Benefits, such as discounted Virtual Healthcare Appointments and Serious Illness Support
- Flexible Spending Account
- Employee Assistance Program
Equal Employment Opportunity TensorWave is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate on the basis of any protected status under applicable law.
Reasonable Accommodations TensorWave provides reasonable accommodations in accordance with applicable laws. If you require accommodation during the hiring process, please contact accomodations@tensorwave.com.
Employment Eligibility All offers of employment are contingent upon verification of identity and authorization to work in United States, as required by law.
Background Checks Where permitted by law, employment may be contingent upon the successful completion of a job-related background check.
Data Privacy Notice By submitting an application, you acknowledge that TensorWave may collect, use, and retain your personal information for recruiting and employment-related purposes in accordance with applicable data privacy laws.
About TensorWave Our mission is simple: deliver seamless, secure, reliable, and resilient AI compute at scale. We've built a versatile cloud platform that eliminates infrastructure barriers, empowering builders to focus on innovation instead of fighting their stack. Becausebreakthrough AI should move at the speed of ideas, not infrastructure.
About the Role We've established a hardened security baseline and are now scaling it into a mature, enterprise-grade security estate. Reporting directly to the CISO and partnering with leads across Engineering, Platform, and the business, you'll be the technical linchpin who designs the architecture and writes the code that makes it real.
This is a hybrid architect-builder role. You'll move between high-level design sessions on our next-gen GPU fabric and the editor where you ship the Go, Python, or Rust that secures our APIs, orchestration plane, and firmware stack. If you believe the best way to prove an architecture is to build it, this is your seat.
What You'll Do - Architect and build security across the stack. Partner with Core Architecture and DevOps on threat modeling, design reviews, and the automated guardrails that let engineering move fast without breaking the security promise.
- Harden the fabric, cradle to grave. Own hardware lifecycle security across our AMD Instinct clusters and high-speed fabrics (InfiniBand / RoCE). Build the code behind TPM 2.0 / Secure Boot, cryptographic attestation, and programmable trust.
- Lead our open firmware security commitment. Keep our OpenBMC, coreboot, and ROCm ecosystems continuously secure, auditable, and open. Design and implement the tooling that makes hardware management transparent by default.
- Engineer Zero-Trust IAM. Design and implement least-privilege automation across the management plane, with identity-based micro-segmentation wired into our orchestration engines.
- Make compliance push-button. Act as the CISO's right hand scaling SOC2 and ISO 27001. Replace manual evidence collection with continuous monitoring and "always-on" controls.
- Operate as a purple teamer. Think like an attacker, then ship the telemetry, detections, and hardening to close what you found.
- Evangelize Security-as-Code. Version-controlled policy, shift-left integration, self-healing infrastructure. Manual configuration is a vulnerability we don't accept.
Who You AreRequired Qualifications - Deep experience securing High-Performance Computing or large GPU environments, including Linux internals and high-speed fabric isolation (InfiniBand / RoCE).
- Strong coding chops in Go, Python, or Rust you build functions that run themselves rather than dashboards that need to be watched.
- Hands-on with Infrastructure-as-Code (Terraform, Pulumi, Ansible) and Kubernetes at production scale.
- Working knowledge of hardware roots of trust: TPM 2.0, Secure Boot, measured boot, attestation.
- Familiarity with open firmware stacks (OpenBMC, coreboot) and the AMD / ROCm ecosystem is a strong plus.
- Proven track record building Zero-Trust architectures and driving SOC2 / ISO 27001 programs toward automation.
- Background in a fast-scaling startup or high-end security consultancy where you built things from scratch and then wrote the code to keep them secure.
- Architect-builder mindset: equally comfortable in a whiteboard session and a pull request review.
What We Offer - 100% paid Medical, Dental, and Vision insurance for Employees
- Company Health Savings Account Contributions
- 100% paid Short Term and Long Term Disability Insurance for Employees
- Life and Voluntary Supplemental Insurance Options
- Other Insurance Options, such as Pet & Legal Insurance
- Various Supplementary Health Benefits, such as discounted Virtual Healthcare Appointments and Serious Illness Support
- Flexible Spending Account
- Employee Assistance Program
Equal Employment Opportunity TensorWave is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate on the basis of any protected status under applicable law.
Reasonable Accommodations TensorWave provides reasonable accommodations in accordance with applicable laws. If you require accommodation during the hiring process, please contact accomodations@tensorwave.com.
Employment Eligibility All offers of employment are contingent upon verification of identity and authorization to work in United States, as required by law.
Background Checks Where permitted by law, employment may be contingent upon the successful completion of a job-related background check.
Data Privacy Notice By submitting an application, you acknowledge that TensorWave may collect, use, and retain your personal information for recruiting and employment-related purposes in accordance with applicable data privacy laws.
