Network Security Engineer
$2,000 per monthEtched
Job Description
Job Description
About Etched
Etched is building hardware for frontier intelligence. We co-design chips, racks, software, and manufacturing to deliver best-in-class throughput and latency across both prefill and decode workloads. Our first products are heavily focused on inference . Backed by hundreds of millions from top-tier investors and staffed by leading engineers, Etched is redefining the infrastructure layer for the fastest growing industry in history.
Job Summary
Etched's infrastructure spans some of the most sensitive compute environments in the industry: bare-metal HPC clusters running proprietary ASIC workloads, hybrid on-prem/cloud deployments, and internal toolchains that house irreplaceable chip design IP. As we scale from early silicon to production, securing these environments is foundational — not an afterthought.
As our first dedicated Network Security Engineer, you will own the design and implementation of Etched's network security posture end to end. You'll work alongside the infrastructure team to harden our physical and virtual networks, enforce least-privilege access to chip design environments, and build the detection and response capabilities that keep our most sensitive assets safe.
This is a high-ownership role for someone who wants to shape security architecture at a company building the compute infrastructure for the next decade of AI — not maintain someone else's stack.
Key Responsibilities
Design and implement a zero-trust network architecture across on-prem datacenters, multiple office locations, and multi-cloud platforms, including secure remote access that eliminates VPN sprawl without sacrificing engineer usability and speed
Define and enforce network segmentation policies that isolate sensitive ASIC development workflows from general infrastructure, customer access, validation labs, and manufacturing infrastructure
Balancing prevention and detection, deploy, tune, and operate NDR, IDS/IPS, and next-generation firewalls across our physical and virtual network fabric; build automation to continuously assess and enforce firewall rules, ACLs, and routing policies - treating network security configuration as code
Integrate and operate EDR/XDR, MDM/MAM, SASE, and CASB tooling in partnership with end-user and IT teams, enforcing unified DLP policies and device compliance posture across endpoint, cloud, and network control planes to eliminate data exfiltration risk
Own our vulnerability management process for network-layer exposure: scanning, prioritization, and remediation tracking in partnership with infrastructure engineers
Lead incident response for network-layer security events: detection, containment, root-cause analysis, and post-incident hardening
Partner with legal, compliance, and leadership to support regulatory requirements and customer security reviews as they arise
Architect and deploy network segmentation for our HPC clusters, isolating EDA tool traffic, ASIC simulation workloads, and CI pipelines from each other and from the corporate network
Architect and deploy a ZTNA-based corporate network that eliminates VPN sprawl and ensures end-user devices maintain a consistent security posture and seamless access to sensitive development environments - whether engineers are on-site, remote, or traveling - replacing location-dependent trust with continuous identity and device health verification
Design and implement a scalable NDR pipeline that ingests flow data across bare-metal switches and cloud VPCs, feeds a centralized SIEM, and generates actionable alerts with low false-positive rates
Develop runbooks and automated playbooks for the highest-probability incident scenarios - credential compromise, lateral movement, and exfiltration from IP-sensitive environments
Integrate EDR/XDR telemetry with SASE enforcement and CASB inline controls to build a unified DLP detection and response pipeline spanning endpoints, cloud SaaS, and the corporate network
Partner with end-user and IT teams to roll out MDM/MAM policies that containerize sensitive IP on engineer devices and enforce compliance-based conditional access across managed and unmanaged environments
You may be a good fit if you have (Must-have qualifications)
Bring deep, broad networking expertise - from low-level packet analysis and firewall log forensics to BGP configuration, multi-cloud networking, and CASB/SASE integration across a diverse SaaS landscape
Have hands-on experience with the Fortinet ecosystem - firewalls, FortiSASE, FortiAPs, and switches - and are comfortable with Arista switch platforms, including configuration, EOS automation, and integration into a broader security architecture
Treat security as an engineering discipline: you write code and automation rather than relying on point-and-click tooling, version-control your configurations, and develop intent-driven network automation
Have experience securing high-value compute environments - datacenters, HPC clusters, semiconductor design environments, or similar settings where the cost of a breach is extremely high
Have deployed and integrated EDR/XDR, MDM/MAM, SASE, and CASB tooling, and understand how to stitch them together into a unified DLP and access control framework that spans endpoints, cloud, and the network
Have built or operated ZTNA-based access models and understand how to enforce consistent security posture across on-site, remote, and traveling users without degrading the experience for engineers
Are comfortable owning your domain with minimal oversight: you can independently scope a project, identify the right tooling, and drive it to completion
Have strong Linux fundamentals and understand how OS-level networking (iptables/nftables, network namespaces, eBPF) interacts with physical and virtual network security controls
Have built or operated network security monitoring at scale - you know the difference between a good alert and noise, and you can architect a detection pipeline that surfaces real signal
Can communicate risk clearly to both technical peers and non-technical leadership, and can translate security requirements into actionable infrastructure changes
Strong candidates may also have experience with (Nice-to-have qualifications)
Experience with EDA environments or semiconductor IP security
Familiarity with cloud-native network security controls on AWS, GCP, or Azure (security groups, VPC flow logs, cloud firewalls, CSPM)
Background in or exposure to NIST, SOC 2, or ISO 27001 frameworks
Experience with eBPF-based network observability and security tooling
Benefits
Medical, dental, and vision packages with generous premium coverage
$500 per month credit for waiving medical benefits
Housing subsidy of $2k per month for those living within walking distance of the office
Relocation support for those moving to San Jose (Santana Row)
Various wellness benefits covering fitness, mental health, and more
Daily lunch and dinner in our office
Unlimited compute budget subject to ROI justification
How we're different
Etched believes in the Bitter Lesson. We are the first inference-focused frontier AI system, betting early on transformer and transformer-like architectures and on increasing model sizes. Our addressable market is the entirety of inference, unlike many of our competitors.
We are a fully in-person team in San Jose (Santana Row), and greatly value engineering skills. We do not have boundaries between engineering and research, and we expect all of our technical staff to contribute to both and work across disciplines as needed.
Compensation Range: $175K - $275K
$127.6k - $206.53k
Our Mission At Palo Alto Networks®, we’re united by a shared mission—to protect our digital... .... Job Summary The Team Information Security - We’re not your ordinary Information Security... ...Job Summary As a Staff Network Security Engineer on our Enterprise Security team, you...SuggestedFull timeWork at officeVisa sponsorshipWork visa$88k - $107k
Fortinet is looking for a Technical Support Engineer to join the Switching and Wireless Team. In this full-time role, you will provide... ...products, and recommend corrective actions. Strong networking knowledge is essential. We offer a competitive salary range of...SuggestedFull time$48 - $50 per hour
Akraya, Inc. is looking for a Senior Network Security Engineer in Santa Clara, CA. The role involves leveraging expertise in network security and NGFW technologies to maximize product potential while working closely with Product and Engineering teams. Candidates should...SuggestedHourly payContract work$106.7k - $130.5k
Fortinet is seeking a Network & Security QA Engineer at its Sunnyvale headquarters. Responsibilities include testing Fortinet's cloud services for scalability and resiliency, along with documenting validation results. The ideal candidate will have strong experience in...Suggested$307k - $427k
Google Inc. is seeking a Cloud Networking AI Principal Engineer in Sunnyvale, CA, to enhance its Networking Security portfolio. This role involves architecting intelligent systems for network security while integrating AI to tackle emerging threats. Candidates should possess...Suggested$127.6k - $206.53k
Palo Alto Networks, Inc. is seeking a Staff Network Security Engineer to protect infrastructure in cloud and on-premises environments. This role focuses on designing secure network architectures and automating security controls. The ideal candidate should have 5-8 years...$150k - $350k
...home. We are based in San Jose, CA and require 5 days/week in-office collaboration. It’s time to build. We are looking for a Security Engineer to join the Security & Privacy team at Figure, focusing on security of the robot as well as associated backend services. We are...Full timeWork at office- ...Trinnex is seeking a Senior Cyber Security Analyst to join their Security Team in San Jose, California. This role involves protecting critical software systems for water utilities by embedding security into the software development lifecycle and managing vulnerabilities...
- ...mission‑critical programs across national security, defense, and public service delivery.... ...national scale. The Junior Security Engineer supports 24x7 enterprise cybersecurity... ...environments, operating systems, databases, and network/security infrastructure. Job-Specific...Minimum wageFull timeContract workTemporary workWork experience placementRemote work
$150k - $250k
Cylake Inc. is looking for a technical leader to build their core endpoint security software. This role involves developing a lightweight yet resilient agent offering comprehensive security across various operating systems. The ideal candidate will have over five years...- Illumio in Sunnyvale seeks an experienced software engineer to lead the development of innovative Zero Trust Segmentation solutions. The role focuses on designing scalable software and mentoring junior engineers within a dynamic cybersecurity environment. Candidates should...
$216k - $264k
Senior Security Engineer Fortinet is looking for a Senior Security Engineer to join the Corporate Information Security team. This highly technical... ..., IDS/IPS, switching, routing, firewall, VPN and content networking, across a wide range of complex architectures, platforms and...Full timeWork experience placement- Intel Corporation seeks an Identity Security - PKI Engineer to design and manage Public Key Infrastructure solutions supporting US Government operations. The successful candidate will engage with various teams to integrate PKI solutions. Applicants must possess a Bachelor...
- Apple Inc. is seeking a Systems & Kernel Software Engineer to work in Cupertino, California. The role entails collaborating with teams to enhance the security of end-user devices through innovative software engineering on various OS layers. Candidates should have a BS...
$170.7k - $300.2k
A leading technology company is seeking a Senior Systems Security Engineer to work on the Apple Vision Pro project. This role requires a strong background in secure software development and a deep understanding of operating systems and hardware security. The ideal candidate...$170.7k - $300.2k
Senior Systems Security Engineer - Apple Vision Pro Cupertino, United States | Posted on 09/11/2023 Apple's Vision Products Group is seeking an engineer with experience in secure software development and a deep understanding of operating systems, hardware, and software...$208k - $260k
Gigamon, based in Santa Clara, CA, is seeking a Security Detection Engineer to enhance security solutions. The role entails designing security detections, collaborating across teams, and leveraging a broad technical background. Ideal candidates possess a Bachelor’s degree...$216k - $264k
Fortinet is seeking a Senior Security Engineer to ensure the security of corporate and research environments. This role involves administering... ...compliance programs. Candidates should have a strong network protocol foundation and experience in IT security engineering...$141.8k - $258.6k
Apple Inc. is seeking a Software Quality Assurance Engineer in Cupertino, California to lead testing strategies and enhance software quality. Responsibilities include developing and managing test plans, identifying bugs, and collaborating with cross-functional teams. The...- ...Our Mission At Palo Alto Networks®, we’re united by a shared mission—to protect our digital... ...Job Summary As a Principal Software Engineer within the Engineering team, you will... ...‑end delivery of next‑generation cloud security solutions. You will collaborate with cross...Full timeWork at office
- ...Cyber Security Sales Engineers - Fresher Banyan Cloud is a US-based Cyber Security Product Development Company, headquartered in San Jose... ...various channels, including social media, email campaigns, and networking. Qualify and nurture leads to convert them into sales...Internship
$147k - $237.5k
...Palo Alto Networks, Inc. is seeking a Principal Software Engineer to design and implement Threat Intelligence Services for cloud features. The role includes all phases of product development and collaboration with teams to achieve high-quality releases. Ideal candidates...$138.8k - $190.85k
...changing the timing industry. For more information, visit: . J ob Summar y We are seeking a highly skilled Senior Network and Security Engineer to coordinate our security architecture and implementation efforts. This role demands deep technical expertise and a...$175k - $230k
...agent workloads Design and enforce zero‑trust architectures with network segmentation, IAM/RBAC least‑privilege, and secrets management... ..., SSL/TLS termination, and Zero Trust access Manage DNS security (DNSSEC, DMARC, SPF, DKIM), certificate lifecycle, and API security...$184k - $287.5k
...world. Are you ready to influence the future of AI and cloud security? Join NVIDIA’s groundbreaking team in Santa Clara, CA, as a Senior... ..., turning ambiguous scenarios into practical controls that engineering teams can build and verify. Establish identity lifecycle, telemetry...Temporary work- ...Sunnyvale, California is seeking a Hardware Architect for Information Security. This individual will establish the vision for future security... .... Candidates should have a BS in electrical or computer engineering and at least 8 years of relevant experience. A collaborative...
- Ooma is seeking a Senior Support Engineer Tier 4 to work full-time in Sunnyvale, California. This role focuses on owning issues, troubleshooting advanced problems, and contributing to product validation efforts. Ideal candidates will have 8+ years of experience in VoIP...Full time
$198.7k - $298.1k
Qualcomm is looking for an experienced SoC Security Architect to join our Engineering team in Santa Clara, California. This critical role involves architecting next-generation security systems and collaborating with other platform architects to enable secure features while...$147.4k - $220.9k
Apple Inc. in Cupertino, California is hiring a Platform Engineer - Security to develop security architectures and frameworks for innovative products. You will work hands-on with cross-functional teams across software, hardware, and engineering to address security challenges...$197.4k - $292.39k
...family commitments. About the role As a Security Architect at Applied Intuition, you will... ...with ISO/SAE 21434 cybersecurity engineering standards and UN Regulations 155/156 requirements... ..., embedded systems, POSIX system, networks, and cloud infrastructure for automotive...Full timeFor contractorsFor subcontractorCasual workWork at officeRemote workDay shift
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Network Security Engineer. Be the first to apply!
- network security engineer San Jose, CA
- senior security operations engineer San Jose, CA
- senior application security engineer San Jose, CA
- information technology security engineer San Jose, CA
- sr information security engineer San Jose, CA
- aws cloud security engineer San Jose, CA
- senior cloud security engineer San Jose, CA
- IT security engineer San Jose, CA
- security engineer San Jose, CA
- director network services San Jose, CA



