Senior Platform Engineer - Security

Responsibilities

• Assess, implement, and maintain security hardening (CIS Benchmarks, STIGs, or equivalent) across Linux hosts, hypervisors, and the cloud control plane, using automated baselines with tools such as Ansible and Terraform.
• Track and remediate vulnerabilities at the infrastructure layer, including operating systems and platform components such as OpenStack, Ceph, and Kubernetes, maintaining accurate inventory, patch SLAs, and risk-based prioritization.
• Coordinate with the DevSecOps Engineer on application- and pipeline-layer remediation, ensuring alignment between platform hardening and SSDLC practices.
• Serve as a primary technical contributor to internal and external audits, including evidence collection, control narratives, and responses to auditor questions, mapping work to ISO 27001 and other relevant frameworks.
• Operate and improve core platform services on Linux infrastructure, contributing to automation, capacity planning, incident response, and reliability engineering.
• Help design logging, monitoring, and alerting that support both operational and security use cases, in collaboration with platform, security, and SRE teams.
• Document hardening baselines, security controls, and operational procedures clearly so that they are repeatable, testable, and auditable.

Requirements

• Strong Linux systems engineering background (systemd, networking, storage, package management) on major Linux distributions.
• Hands-on experience applying security hardening standards such as CIS Benchmarks, STIGs, or equivalent at production scale.
• Solid understanding of vulnerability management (CVSS scoring, risk-based prioritization) and Linux security controls (SELinux or AppArmor, auditd, PAM, host firewalling).
• Experience with infrastructure automation using Ansible, Terraform, and scripting in Bash and/or Python.
• Experience supporting compliance or audit activities, including evidence collection, control documentation, and working directly with auditors or security teams.
• Strong understanding of identity and authentication concepts (SSO, OAuth2/OIDC, privileged access) and excellent documentation skills.
• Security certifications such as CISSP, CISM, CCSP, GSEC, GCIH, Security+, or equivalent; more senior certifications are a significant plus.
• Experience supporting ISO 27001, SOC 2, PCI DSS, or FedRAMP audits in a hands-on capacity.
• Familiarity with OpenStack services (Nova, Neutron, Keystone, Cinder) and/or Ceph.
• Experience with Kubernetes security and hardening, including CIS Kubernetes Benchmarks and Pod Security Standards.
• Background with SIEM, EDR, or log aggregation tools (Elastic, Splunk, Wazuh, Falco), secrets management (Vault), and disk encryption (LUKS/dm-crypt).
• Annual Compensation Range:
• $165,000 - $205,000 USD base + benefits + equity (If based in the United States)
• $122,000 - $158,000 CAD base + benefits + equity (If based in Canada)
• Why Our Team Loves Working Here:
• We are making a significant financial impact for our video creator community; we're proud of their success stories
• We enjoy challenging the status quo and going head-to-head against Big Tech
• We aren't afraid to try new things; we act fast and want to win
• We pay competitive salaries and provide great benefits
• EEO Statement

Benefits

Additional Information

Rumble is the Freedom-First technology platform. We proudly offer a video platform, cloud services, advertising solutions, and a non-custodial cryptocurrency wallet. Rumble Cloud is seeking a Senior Platform Engineer (Security) to help operate, secure, and continuously harden the infrastructure that powers our public cloud, built on OpenStack and Ceph. This role sits at the intersection of platform engineering and security operations: you'll apply and maintain security hardening across our Linux fleet and cloud control plane, track vulnerabilities through to remediation, and serve as a key engineering partner for internal and external audits. Strong Linux fundamentals are essential, and demonstrated security expertise, ideally backed by certification, is a significant differentiator. You'll work across operating systems, OpenStack and Ceph components, and Kubernetes, using automation to keep baselines consistent and auditable. You'll partner closely with cloud engineering, DevSecOps, and compliance stakeholders to ensure the platform meets both reliability and security expectations as it grows. If you enjoy hardening Linux at scale, working directly with vulnerability and control frameworks such as CIS Benchmarks and ISO 27001, and contributing to the security posture of mission-critical cloud infrastructure, this role offers substantial impact and technical depth.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at rumble? Share your experience