Security Infrastructure Engineer

About Higgsfield

Higgsfield AI is the leading video AI company redefining synthetic media on socials. The company is entering its next stage of scale with $300M+ run-rate sales in just 12 months after launch, and a $130M Series A.

Role Overview

We’re looking for a highly operational Infrastructure Security Engineer to own and scale core security operations across endpoints, cloud infrastructure, internal systems, and corporate access controls. This role will sit at the intersection of Security, IT, DevOps, and Engineering, helping establish scalable security practices in a fast-moving, high-growth environment.

You will be responsible for both hands-on implementation work and long-term operational ownership across endpoint security, infrastructure monitoring, vulnerability management, access governance, and internal security tooling.

We are looking for someone who is highly execution-oriented, systems-minded, and comfortable operating autonomously in an evolving startup environment.

This role will require close coordination with on-site infrastructure and operational teams, particularly for corporate and network security workstreams.

Key Responsibilities

Endpoint & Infrastructure Security

• Own and scale endpoint security across the organization, including laptops, cloud endpoints, and employee devices.
• Evolve the firm’s security posture.
• Take ownership of the company’s Mobile Device Management (MDM) environment, including policy enforcement, device compliance, provisioning, and lifecycle management.
• Implement and maintain EDR/XDR solutions to improve endpoint visibility, threat detection, and incident response capabilities.
• Build and maintain centralized monitoring across cloud infrastructure and corporate endpoints to improve operational visibility and security posture.
• Partner closely with IT and Engineering teams to strengthen endpoint hardening standards and operational security processes.

Cloud & Network Security

• Evaluate, implement, and maintain cloud security tooling, including determining the need for a Cloud Security Posture Management (CSPM) solution.
• Manage infrastructure and container vulnerability management processes across cloud environments.
• Drive remediation efforts and improve visibility into infrastructure risk areas.
• Design and implement network segmentation strategies to improve internal security boundaries and reduce risk exposure.

Corporate Access Control & Internal Security

• Own and maintain corporate access management systems and security configurations across internal tooling.
• Own access governance, and credential management best practices.
• Partner with Engineering, DevOps, and IT teams to improve identity and access management standards across the organization.

Strategic Leadership

• Mentor junior engineers,
• Create security policies,
• Drive cross-functional security initiatives, and serving as a technical lead for security projects

Knowledge, Skills, and Qualifications

• 4+ years of experience in infrastructure security, security engineering, IT security, or related roles, preferably in high-growth startups, FAANG, or large enterprise environments
• Solid understanding of networking, operating systems, and cryptography fundamentals.
• Hands-on experience managing endpoint security platforms, MDM solutions, and EDR/XDR tooling.
• Strong understanding of cloud infrastructure security principles and vulnerability management processes.
• Experience securing SaaS environments and internal collaboration tooling (Slack, password managers, identity providers, etc.).
• Familiarity with container and infrastructure security best practices.
• Comfortable working cross-functionally with DevOps, Engineering, and IT teams in a fast-paced environment.
• Strong operational instincts with the ability to independently identify and solve security gaps.
• Experience implementing scalable security processes in startup or high-growth environments preferred.

Nice to Have

• Experience implementing CSPM solutions.
• Experience with sandboxing, container isolation, or secure execution environments.
• Familiarity with SOC 2 or similar compliance frameworks.
• Experience supporting distributed or global workforces.
• Exposure to incident response and security monitoring workflows.
• Experience working in cloud-native infrastructure environments.
• Fluent in Russian.

Compensation & Benefits

We offer a competitive and thoughtfully structured compensation package designed to align with impact and growth.

Base Salary: The anticipated salary range for this role is $160,000 - $187,000, depending on experience, skills, and location.

In addition to cash compensation, we offer equity and a benefits package to support you both professionally and personally.

Higgsfield AI is an equal opportunity employer. We are committed to building a diverse and inclusive team and do not discriminate on the basis of race, color, religion, sex, gender identity or expression, sexual orientation, national origin, age, disability, veteran status, or any other protected characteristic.