Infrastructure & Security Engineer

CivilGrid is the trusted civil design platform powering affordable infrastructure renewal and growth. We give utilities, civil engineers, and municipalities a single, collaborative source of truth for what's underground so teams can plan, design, and build faster, smarter, and safer.

Our platform consolidates utility records, geotechnical and environmental data, paving moratoriums, and jurisdictional requirements directly from 3,000+ utilities, agencies, and municipalities with full chain-of-custody documentation. Teams at PG&E, Mark Thomas, and dozens of leading engineering firms use CivilGrid to cut research time by up to 88%, reduce project costs, prevent dig-ins, and accelerate delivery on the projects that keep communities running.

We're a venture-backed Series A startup tackling a $4.7T US infrastructure market that has been underserved by software for decades. Founded by industry insiders, each with 10+ years in utilities and civil engineering, we move fast, ship work that matters, and stay close to the customers and field teams we build for.

We're looking for an Infrastructure & Security Engineer to own our cloud platform, reliability, and security posture as we scale into large utilities and civil engineering firms. You'll be the first dedicated infra and security hire, working across engineering, IT, and leadership. The role spans DevOps, SRE, and security in equal parts.

This role reports to the Head of Product & Engineering. It is a hybrid role with expectations that you are working from our Boston, MA office at least 2 days per week if hired.

• →

  Own our AWS environment end to end: VPC architecture, ECS, RDS, secrets management, IAM, networking, and cost optimization

• →

  Define and improve reliability practices: SLOs, observability, alerting, on-call rotation, runbooks, and blameless post-incident reviews

• →

  Lead incident response for both reliability and security events, from detection through resolution and follow-up

• →

  Define and enforce policies for identity, secrets, data handling, and production access across the company

• →

  Partner with engineering to embed reliability and security into the SDLC and infrastructure decisions

• →

  Run our security program: SOC 2 readiness and audits, vendor reviews, access controls, endpoint security, and threat modeling

• →

  The tech:

• →

  AWS ECS, Postgres on RDS

• →

  GitHub, Slack, Notion, Figma

• 4+ years of experience across DevOps, SRE, platform, or security engineering, with hands-on ownership of production AWS infrastructure

• Deep working knowledge of AWS (VPC, ECS, RDS, IAM, Secrets Manager, CloudWatch) and infrastructure-as-code (Terraform, CDK, or equivalent)

• Track record of improving reliability in production: defining SLOs, building observability, running on-call, and leading post-incident reviews

• Experience running or supporting a SOC 2 program, including evidence collection, control design, and auditor coordination

• Startup ready: autonomous, moves fast, takes initiative without being asked

• Strong verbal and written communication, able to articulate ideas clearly and collaborate effectively

• Experience supporting B2B products sold into regulated industries (utilities, energy, public sector)

We're a small, but rapidly growing team that ships. Expect direct feedback, real ownership from day one, and proximity to customers — huge utilities, public agencies, and engineering firms whose work depends on what we build. We default to in-person collaboration where it matters and remote-friendly flexibility otherwise. We hire people who care deeply about their craft and the communities our customers serve.