Staff Software Engineer, Kernel Security

Crusoe is building the World’s Favorite AI-first Cloud infrastructure company. We’re pioneering vertically integrated,  purpose-built AI infrastructure solutions trusted by Fortune 500 companies to power their most advanced AI applications. Crusoe is redefining AI cloud infrastructure, with a mission to align the future of computing with the future of the climate. Our AI platform is recognized as the "gold standard" for reliability and performance. Our data centers are optimized for AI workloads and are powered by clean, renewable energy.

Be part of the AI revolution with sustainable technology at Crusoe. Here, you'll drive meaningful innovation, make a tangible impact, and join a team that’s setting the pace for responsible, transformative cloud infrastructure.

About This Role:

The Crusoe Cloud Software Development team is seeking a passionate and experienced Senior Software Engineer specializing in Linux Kernel Security. This critical role is essential in strengthening the security posture of our core Linux kernel and operating system components, which underpin our cutting-edge hardware and software solutions for the AI cloud. A deep understanding of Linux kernel internals, security vulnerabilities, mitigation techniques, and secure development practices is paramount for developing reliable, high-assurance systems. This is a full-time position.

What You’ll Be Working On:

• Kernel Security Hardening: Identify, analyze, and implement robust security enhancements and hardening measures within the Linux kernel and its modules. This includes exploring and integrating new kernel security features, such as LSMs (Linux Security Modules), integrity measurement, and memory safety improvements.

• Vulnerability Research & Analysis: Proactively research and analyze potential security vulnerabilities (e.g., CVEs) affecting the Linux kernel, device drivers, and core OS components. Develop and implement strategies for their detection, mitigation, and remediation.

• Secure Development Practices: Establish and advocate for secure coding standards and best practices for kernel-level development. Conduct security-focused code reviews to identify and eliminate potential vulnerabilities early in the development lifecycle.

• Security Auditing & Tools: Utilize and develop specialized tools for kernel security auditing, fuzzing, static analysis, and dynamic analysis to uncover hidden vulnerabilities and ensure compliance with security policies.

• Incident Response Support: Provide expert support during security incidents involving kernel or OS-level compromises, assisting with root-cause analysis, containment, and recovery efforts.

• Performance and Security Balance: Work to ensure that security enhancements do not unduly impact system performance, especially critical for our high-performance AI infrastructure.

• Cross-Functional Collaboration: Collaborate closely with other engineering teams (hardware, hypervisor, OS development, cloud infrastructure, and security operations) to integrate security best practices and ensure a comprehensive security strategy across the stack.

• Technical Leadership: Provide technical guidance and mentorship to junior engineers on kernel security best practices, fostering a culture of security awareness and excellence.

• Debugging and Root-Cause Analysis: Debug and root-cause a variety of complex security-related issues at the kernel level.

What You’ll Bring to the Team:

• Linux Kernel Security Expertise: Proven deep knowledge of Linux kernel internals (e.g., memory management, process scheduling, system calls, I/O subsystems) with a strong focus on security aspects.

• Vulnerability & Exploitation Knowledge: Solid understanding of common kernel vulnerabilities (e.g., privilege escalation, information disclosure, denial of service) and associated exploitation techniques.

• Security Mitigations: Experience with existing Linux kernel security mitigations (e.g., ASLR, DEP/NX, SMEP/SMAP, KASLR, namespaces, cgroups, LSMs like SELinux/AppArmor).

• Secure Coding: Strong background in secure coding principles and experience conducting security-focused code reviews, particularly in C.

• Debugging & Analysis Tools: Proficiency with kernel debugging tools (e.g., GDB, crash, kgdb) and security analysis tools (e.g., valgrind, address sanitizers, fuzzers).

• Hardware Security Concepts: Familiarity with hardware-assisted security features (e.g., Intel SGX, AMD SEV, ARM TrustZone) and their relevance to kernel security.

• Technical Proficiency: Experienced C programmer; assembly language proficiency is a plus.

• Education & Experience: Bachelor's degree in Computer Science, Computer Engineering, or a related field, and a minimum of 5 years of relevant industry experience with at least 3 years focused on low-level operating systems or kernel security.

• Safety and Compliance: Must be able to pass a background check.

• Company Values: Embody the Company values.

Bonus Points:

• Experience with specific kernel security projects or contributions to open-source kernel security initiatives.

• Familiarity with hypervisor security and the interaction between the hypervisor and the guest kernel's security.

• Experience with hardware security modules (HSMs) or Trusted Platform Modules (TPMs).

• Background in offensive security or penetration testing at the kernel level.

Benefits:

• Industry competitive pay

• Restricted Stock Units in a fast growing, well-funded technology company

• Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents

• Employer contributions to HSA accounts

• Paid Parental Leave

• Paid life insurance, short-term and long-term disability

• Teladoc

• 401(k) with a 100% match up to 4% of salary

• Generous paid time off and holiday schedule

• Cell phone reimbursement

• Tuition reimbursement

• Subscription to the Calm app

• MetLife Legal

• Company paid Commuter FSA benefit of $200 per month

Compensation:

Compensation will be paid in the range of $204,000- $247,000. Restricted Stock Units are included in all offers. Compensation to be determined by the applicant’s education, experience, knowledge, skills, and abilities, as well as internal equity and alignment with market data.

Crusoe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, disability, genetic information, pregnancy, citizenship, marital status, sex/gender, sexual preference/ orientation, gender identity, age, veteran status, national origin, or any other status protected by law or regulation.