{"schemaVersion":"jobsearcher.job.v1","id":"18e12ec7867a81cb7c4a883c","url":"https://jobsearcher.com/jobs/18e12ec7867a81cb7c4a883c","canonicalUrl":"https://jobsearcher.com/jobs/18e12ec7867a81cb7c4a883c","title":"Engineer, Production Engineering","description":"Engineer — Production Engineering Location: San Francisco Bay Area (Hybrid/Onsite)\nType: Full-time\nStage: Early-stage startup\nAbout the Role We are building the control plane for AI agents in teams and companies.\nAs a Production Engineer, you will own the infrastructure, security, and compliance systems that allow our platform to ship fast and run reliably at scale. This is not a traditional ops role — you will write real code, contribute directly to the product, and own the full security and compliance surface of an early-stage company.\nYou'll work across Kubernetes infrastructure, cloud delivery, agent sandboxing, SOC2 compliance, IT systems, and production observability — and you'll contribute to the product itself, building security-sensitive features and auditing application code for vulnerabilities.\nIf you want to own the production backbone for the agent-native era — from a Terraform module to a pentest to an API key implementation — we want to talk.\nWhat You'll Own 1. Cloud & Kubernetes Infrastructure\nOur Stack: Manage and evolve our production and staging infrastructure on GCP (GKE) using Terraform. Own DNS, networking, and environment configuration end-to-end.\n\nCustomer Environments: Deploy and operate within customer VPCs across AWS, Azure, and GCP — adapting to varied infrastructure constraints, security requirements, and enterprise networking configurations.\n\nAgent Sandboxing: Build and maintain Kubernetes-based sandboxing for agent execution — ensuring agents operate within strict network boundaries and must route through our API gateway rather than having unfettered internet access.\n\nObservability: Own our observability stack, including OpenTelemetry instrumentation and integrations with New Relic and Splunk, to give the team deep visibility into system performance and agent runtime behavior.\n\n2. Security, Compliance & IT\nSOC2 & Audits: Lead infrastructure and operational work to support SOC2 compliance, including audit preparation, evidence collection, and control implementation.\n\nPenetration Testing & Bug Bounty: Manage our HackerOne engagement — coordinating pentests, triaging incoming bug bounty reports, and driving remediation.\n\nProduct Security: Audit application code for security vulnerabilities, contribute security-sensitive product features (e.g., API key management), and ensure product and infrastructure security are coherent end-to-end.\n\nIT & Identity: Own our IT stack — Okta, device management, and access controls — keeping the company secure as we scale.\n\n3. CI/CD & Progressive Delivery\nDeployment Pipelines: Design and maintain safe, automated CI/CD workflows supporting rollout strategies like canary and blue‑green deployments.\n\nRelease Velocity: Make shipping to production a routine, boring, highly automated non‑event.\n\nWhat We're Looking For Strong Fit\nExperience: 5+ years in Production Engineering, Platform Engineering, or a security-focused infrastructure role, ideally at a fast-growing startup or SaaS company.\n\nOur Stack: Strong hands‑on experience with Kubernetes and GCP in production; comfortable with Terraform for managing real infrastructure.\n\nCode over Click: Strong programming skills (Python, Go, TypeScript, etc.) with a passion for automating away toil.\n\nSecurity Depth: Hands‑on experience with compliance frameworks (SOC2), vulnerability management, and secure system design.\n\nBonus Points\nBackground with multi‑tenant SaaS or enterprise security and procurement requirements.\n\nExposure to AI/ML infrastructure, particularly agent runtimes.\n\nExperience building security-sensitive product features alongside infrastructure work.\n\nExperience supporting pentests / bug bounties\n\nExperience deploying and operating in customer VPCs or other external cloud environments across AWS, Azure, and/or GCP — navigating enterprise networking, security, and access constraints.\n\nWhy This Role is Unique Broad Ownership: You'll own the full security and compliance surface of an early-stage company — from SOC2 to sandboxed agent execution to IT — while also contributing directly to the product.\n\nAgent Infrastructure: You'll design infrastructure for autonomous AI agents, not just traditional web services — introducing unique sandboxing, observability, and security challenges.\n\nOur Infra and Theirs: You'll operate across both our own production environment and customer cloud environments, requiring you to be fluent across AWS, Azure, and GCP.\n\nHigh Autonomy: As an early hire, you'll have a seat at the table to choose the tools and define the architecture that carries us to scale.\n\nWho Thrives Here Engineers who are as comfortable reading application code for vulnerabilities as they are writing a Terraform module.\n\nPeople who enjoy owning the full security and compliance surface, not just one layer of it.\n\nBuilders who can navigate the constraints of customer enterprise environments without losing velocity.\n\nThose who are energized — not overwhelmed — by the breadth of an early‑stage technical operations role.\n\n#J-18808-Ljbffr","company":"Guild","rawCompany":"guild","city":"Millbrae","state":"CA","isRemote":false,"isActive":false,"createdAt":"2026-06-20T03:35:51.979Z","occupations":[{"code":"15-1299.08","title":"Computer Systems Engineers/Architects","slug":"computer-systems-engineers-architects"},{"code":"15-1252.00","title":"Software Developers","slug":"software-developers"},{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"}],"industries":[{"code":"513210","title":"Software Publishers","slug":"software-publishers"},{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541511","title":"Custom Computer Programming Services","slug":"custom-computer-programming-services"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"Engineer, Production Engineering","description":"Engineer — Production Engineering Location: San Francisco Bay Area (Hybrid/Onsite)\nType: Full-time\nStage: Early-stage startup\nAbout the Role We are building the control plane for AI agents in teams and companies.\nAs a Production Engineer, you will own the infrastructure, security, and compliance systems that allow our platform to ship fast and run reliably at scale. This is not a traditional ops role — you will write real code, contribute directly to the product, and own the full security and compliance surface of an early-stage company.\nYou'll work across Kubernetes infrastructure, cloud delivery, agent sandboxing, SOC2 compliance, IT systems, and production observability — and you'll contribute to the product itself, building security-sensitive features and auditing application code for vulnerabilities.\nIf you want to own the production backbone for the agent-native era — from a Terraform module to a pentest to an API key implementation — we want to talk.\nWhat You'll Own 1. Cloud & Kubernetes Infrastructure\nOur Stack: Manage and evolve our production and staging infrastructure on GCP (GKE) using Terraform. Own DNS, networking, and environment configuration end-to-end.\n\nCustomer Environments: Deploy and operate within customer VPCs across AWS, Azure, and GCP — adapting to varied infrastructure constraints, security requirements, and enterprise networking configurations.\n\nAgent Sandboxing: Build and maintain Kubernetes-based sandboxing for agent execution — ensuring agents operate within strict network boundaries and must route through our API gateway rather than having unfettered internet access.\n\nObservability: Own our observability stack, including OpenTelemetry instrumentation and integrations with New Relic and Splunk, to give the team deep visibility into system performance and agent runtime behavior.\n\n2. Security, Compliance & IT\nSOC2 & Audits: Lead infrastructure and operational work to support SOC2 compliance, including audit preparation, evidence collection, and control implementation.\n\nPenetration Testing & Bug Bounty: Manage our HackerOne engagement — coordinating pentests, triaging incoming bug bounty reports, and driving remediation.\n\nProduct Security: Audit application code for security vulnerabilities, contribute security-sensitive product features (e.g., API key management), and ensure product and infrastructure security are coherent end-to-end.\n\nIT & Identity: Own our IT stack — Okta, device management, and access controls — keeping the company secure as we scale.\n\n3. CI/CD & Progressive Delivery\nDeployment Pipelines: Design and maintain safe, automated CI/CD workflows supporting rollout strategies like canary and blue‑green deployments.\n\nRelease Velocity: Make shipping to production a routine, boring, highly automated non‑event.\n\nWhat We're Looking For Strong Fit\nExperience: 5+ years in Production Engineering, Platform Engineering, or a security-focused infrastructure role, ideally at a fast-growing startup or SaaS company.\n\nOur Stack: Strong hands‑on experience with Kubernetes and GCP in production; comfortable with Terraform for managing real infrastructure.\n\nCode over Click: Strong programming skills (Python, Go, TypeScript, etc.) with a passion for automating away toil.\n\nSecurity Depth: Hands‑on experience with compliance frameworks (SOC2), vulnerability management, and secure system design.\n\nBonus Points\nBackground with multi‑tenant SaaS or enterprise security and procurement requirements.\n\nExposure to AI/ML infrastructure, particularly agent runtimes.\n\nExperience building security-sensitive product features alongside infrastructure work.\n\nExperience supporting pentests / bug bounties\n\nExperience deploying and operating in customer VPCs or other external cloud environments across AWS, Azure, and/or GCP — navigating enterprise networking, security, and access constraints.\n\nWhy This Role is Unique Broad Ownership: You'll own the full security and compliance surface of an early-stage company — from SOC2 to sandboxed agent execution to IT — while also contributing directly to the product.\n\nAgent Infrastructure: You'll design infrastructure for autonomous AI agents, not just traditional web services — introducing unique sandboxing, observability, and security challenges.\n\nOur Infra and Theirs: You'll operate across both our own production environment and customer cloud environments, requiring you to be fluent across AWS, Azure, and GCP.\n\nHigh Autonomy: As an early hire, you'll have a seat at the table to choose the tools and define the architecture that carries us to scale.\n\nWho Thrives Here Engineers who are as comfortable reading application code for vulnerabilities as they are writing a Terraform module.\n\nPeople who enjoy owning the full security and compliance surface, not just one layer of it.\n\nBuilders who can navigate the constraints of customer enterprise environments without losing velocity.\n\nThose who are energized — not overwhelmed — by the breadth of an early‑stage technical operations role.\n\n#J-18808-Ljbffr","datePosted":"2026-06-20T03:35:51.979Z","dateModified":"2026-06-20T03:35:51.979Z","hiringOrganization":{"@type":"Organization","name":"Guild","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Millbrae","addressRegion":"CA","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"18e12ec7867a81cb7c4a883c"},"url":"https://jobsearcher.com/jobs/18e12ec7867a81cb7c4a883c"}}