Cyber Security Engineer

Description

Run Buggy is the most technically advanced automotive logistics platform on the market. Period.

Backed by Porsche Ventures and Hearst Ventures, Run Buggy is transforming the way cars move. Our cutting‑edge technology is trusted by some of the largest OEMs, captive finance companies, and automotive lenders in the world to streamline vehicle transportation at scale.

Run Buggy’s end‑to‑end platform connects car shippers and haulers in real time - eliminating the friction of traditional load boards and costly custom software. For shippers, Run Buggy integrates directly into existing management systems, reducing transportation costs and accelerating delivery timelines. For transporters, we offer a smarter, more profitable way to find, accept, and manage loads - all from a single app.

Since launching in 2019, Run Buggy has grown to over 150 team members, facilitated the movement of hundreds of thousands of vehicles, and attracted tens of thousands of transporters across the U.S.

We’re not just building a better logistics platform - we’re redefining the future of automotive transportation.

Are you passionate about defending digital frontiers and tackling the latest cyber threats? At Run Buggy, we’re searching for a Cyber Security Engineer who thrives on challenge and innovation. In this pivotal role, you’ll be part of our Engineering team, safeguarding both our products and infrastructure. You’ll lead the charge in identifying and neutralizing emerging threats, investigating incidents, and driving rapid resolutions that keep our business secure and resilient.

Bring your hands‑on expertise in cloud and on‑premises security automation, infrastructure‑as‑code, and Dev Sec Ops  practices to a team that values proactive problem‑solving and continuous improvement. If you’re ready to make a real impact and grow your career in a fast‑paced, collaborative environment, we want to hear from you!

• Architect and enforce security policies for Kubernetes clusters and containerized applications, including Azure Kubernetes Service (AKS) and integration with service meshes (e.g., Istio).
• Integrate security checks into CI/CD pipelines (e.g., Git Hub Actions, Azure Dev Ops), automate vulnerability scanning (e.g., Sonar Qube, Coverity, Kube-Bench, Kube-Hunter, Falco), and manage secure base container images.
• Apply security hardening using distroless images and CIS benchmarks for Kubernetes.
• Automate infrastructure provisioning and security controls using tools like Terraform and Ansible.

• Configure and maintain network and web firewalls, ACLs, secure routing, and SSL/TLS termination at ingress points.
• Implement encryption, MFA, and secure access controls across services, including integration with CDNs (e.g., Akamai) and OAuth providers (e.g., Apigee).
• Model after AWS and Azure security best practices, staying current on the latest trends and features.

• Deploy and manage tools such as Falco, Guard Duty, IDS/IPS, and X‑ray for container image scanning.
• Monitor logs and metrics using platforms such as Grafana, Prometheus, and the Elastic Stack (Kibana, Fluentd).
• Lead incident response efforts, including investigation, documentation, and remediation of security events.
• Develop and automate expiration reporting for secrets, keys, and certificates, and implement proactive alerting for expiring credentials.

• Ensure adherence to frameworks such as NIST CSF and ISO 27001.
• Maintain and update security documentation, playbooks, and standard operating procedures.
• Assist with maintaining and updating the incident response policy, plan, and playbooks.

• Drive automation of security and infrastructure tasks using Infrastructure-as-Code (Terraform, Azure Bicep), configuration management (Ansible, Ansible Tower), and Git Ops tools (ArgoCD, Flux).
• Lead migration initiatives from on‑premises to cloud and from licensed to open‑source tools, optimizing for cost and security.
• Mentor and train team members on security automation and best practices.