Qureos

Find The RightJob.

companyLogo
URun

Founding Security Engineer / Head of Security

The Problem

AI is moving from transactional to interactive. For years, the model of AI has been: send a query, wait, get a response, reset. Powerful, but fundamentally batch. What is happening now is different. Models are staying alive between turns, holding context for hours, responding in real time. Output stops feeling like output. It starts to feel continuous.

The bottleneck has shifted. It is no longer intelligence per token. It is tokens per second. And the infrastructure required to deliver interactive AI at scale, inference that holds session state, runs continuously, and keeps the model alive between turns, does not exist yet in any secure, production-ready form.

That is the problem. And as these systems move from research to production, from demos to enterprise contracts, the cost of getting security wrong becomes existential. The platform others build on cannot afford to be the weak link.

What We Are Building

uRun is the inference cloud for the interactive era. Founded by Keegan McCallum, former Head of ML at Luma AI, we are building the compute layer that makes real-time, stateful AI inference possible at scale: video pipelines, avatar pipelines, world models, each one holding session state and staying alive between turns.

We came out of stealth in April 2026, are backed by top-tier investors, and are already running generative models in production for some of the leading teams in the AI space. We are not building the next AI app. We are the infrastructure others build on.

The Purpose of This Role

This is a founding role. You will be uRun's first dedicated security hire, joining at the exact moment it matters most: as we move from stealth to scale, begin enterprise partnerships, and approach our Series A.

The technical problem you are here to solve: build a security foundation worthy of the infrastructure we are building. That means hardening a distributed AWS and Kubernetes stack running stateful inference at scale, standing up the compliance program that unlocks enterprise deals, and embedding security into engineering without becoming a blocker. You will own this end to end, and as the team grows, you will build and lead your own function.

What You Will Do

Compliance and risk

  • Own SOC 2 Type II end to end: scoping, control design, evidence collection, and audit

  • Drive ISO 27001 and other frameworks as we scale into enterprise partnerships

  • Set up and manage Vanta or Drata for compliance automation

  • Respond to vendor security questionnaires and represent uRun's security posture on customer calls

  • Build and maintain security policies, procedures, and documentation

Infrastructure and cloud security

  • Harden our AWS environment: IAM, KMS, secrets management, GuardDuty, CloudTrail, VPC

  • Secure our Kubernetes and EKS stack: container security, RBAC, network policies, runtime controls

  • Embed security into CI/CD pipelines: SAST, dependency scanning, secrets scanning

  • Build detection and response capabilities: alerting, playbooks, and incident response processes

  • Drive vulnerability management end to end, from detection through remediation and reporting

Partnerships and stakeholders

  • Work directly with engineering to resolve security blockers and unblock partnership deals

  • Manage external auditor relationships and coordinate security reviews

  • Report on security posture and risk to leadership

What We Are Looking For

  • 3 to 5+ years in security engineering, ideally with experience as a founding or sole security hire

  • Proven track record delivering SOC 2 end to end as program owner, not just contributor

  • Deep AWS experience: IAM, KMS, GuardDuty, CloudTrail, EKS, and Kubernetes security

  • Familiarity with compliance automation tooling: Vanta, Drata, or equivalent

  • Comfortable embedding security into CI/CD: SAST, DAST, secrets scanning, dependency management

  • Strong on incident response: you have handled real incidents and built playbooks from scratch

  • Able to work PST hours and thrive in a fast-moving, ambiguous environment

  • Clear communicator, able to represent security to technical and non-technical stakeholders alike

Nice to have

  • Familiarity with AI security frameworks: OWASP LLM Top 10, MITRE ATLAS

  • Certifications: AWS Security Specialty, CISSP, CISM, or equivalent

What We Offer

  • Competitive salary and equity — Up to $250k base depending on experience, with meaningful equity in a high-growth AI infrastructure company.

  • Health, dental, and vision — Full coverage so you can focus on building, not admin.

  • 401k — Company-supported retirement savings to set you up for the long term.

  • FSA/HSA — Flexible spending accounts to cover healthcare costs on your terms.

  • Unlimited paid time off — We trust you to manage your time. Take what you need.

  • Latest software — Access to the best AI tools available: Claude, Codex, Kimi, and whatever else helps you move faster.

  • MacBook Pro and AirPods — The hardware you need to do your best work, on us.

Learn How We Think and Work

We build the stage, not the show. We are an infrastructure company, a developer tools company, a production partner for model labs, and a bridge from research to deployment. Focus is a strategic choice. We made it. We hold to it.

We move fast, hold a high bar, and hire small and elite. If you want to understand how we think before you apply, start here:

  • Watch our launch party video

  • Read the manifesto

  • Follow us on LinkedIn

  • Follow us on X

Compensation Range: $200K - $250K

Similar jobs

No similar jobs found

© 2026 Qureos. All rights reserved.

Term of usePrivacy policy