About the Company

Gauntlet builds the financial systems of the future. While much of onchain finance is focused on point solutions, Gauntlet operates across the entire stack to offer best-in-class vault products. The company serves over $1.5B in client TVL across some of the largest fintechs/neobanks, protocols, exchanges, and capital allocators in crypto — and, increasingly, traditional asset management. The team brings together traditional finance and crypto-native expertise to deliver durable, sophisticated products for institutional clients moving onchain.

About the Role

Infrastructure & Security keeps Gauntlet's services shipping safely and reliably. You'll take real ownership of the infrastructure workload across GCP, Kubernetes, and Terraform stack: unblocking application teams, hardening CI/CD, and driving infrastructure projects end-to-end so the platform can scale with the company. This is the team's second infrastructure hire; you'll work directly with the infra/platform lead, own real surface area from week one, and have a genuine say in the tools, patterns, and direction the team takes. You'll partner closely with application teams (Aera, Vault Curation) and with Security.

Responsibilities

• Support application teams: turn around infra requests (permissions, roles, service setup, project peering) so product engineers stay focused on shipping.
• Own CI/CD and deployments: maintain and extend GitHub Actions workflows and help migrate toward a dedicated CD tool with proper permissioning — the goal is fully automated, locked-down deploys via service accounts, no direct engineer access to production.
• Build and maintain infrastructure as code: author and update Terraform modules for new and existing services across GCP environments.
• Run Kubernetes the right way: manage service deployments via Helm (Helm 4), keep async workloads healthy on Dagster.
• Unify observability (likely first project): consolidate today's per-team alerting into a single view — system-to-system dashboards plus incident alerting that routes upstream service/vendor failures to the right impacted teams and on-call rotations.
• Advance resilience: help move toward a fully region- and cloud-agnostic posture so services can pick up and move if something fails.
• Strengthen security & access: apply IAM, secrets management, least privilege, and auditability; contribute to SOC 2 readiness.
• Automate with AI: build agent skills so routine tasks (provisioning access, simple changes) can be handled by an agent instead of human engineering hours, and use AI to reason through bigger problems.

Requirements

• Strong software-engineering fundamentals in at least one production language (Python, Go, TypeScript, or Rust); Python especially valued, plus comfort scripting and working in the shell.
• Hands-on experience with cloud infrastructure and core cloud services, especially GCP (AWS/Azure transferable).
• Experience operating large-scale Kubernetes production systems.
• Experience with Infrastructure as Code, especially Terraform.
• Familiarity with CI/CD systems, especially GitHub Actions or Octopus Deploy.
• Ability to debug production issues using logs, metrics, traces, shell tools, and source code.
• Security and access-control fundamentals: IAM, secrets management, least privilege, and auditability.
• Clear written communication around incidents, design decisions, and operational procedures.

Bonus Points

• Supporting SOC 2 controls - evidence collection, access reviews, change management, or audit readiness.
• Observability with Datadog, Prometheus, Grafana, OpenTelemetry, Honeycomb, or similar.
• Improving developer experience through internal tooling, templates, scripts, or platform APIs.
• Incident response experience, including postmortems and follow-up remediation.
• Experience with Dagster, Helm 3+, high-scale CD tooling (Bazel, Octopus), or AI/agent-assisted ops.
• Basic web3 / DeFi literacy (transactions, wallets) and genuine curiosity about onchain.

Compensation

Base salary range: $150,000 - $175,000 plus additional On Target Earnings potential by level and equity in the company.

Location

Remote (contiguous United States and Canada)