Open Role
Lead Security & Infrastructure Engineer
at NewLimit
South San Francisco, CA·Posted today
About the role
About NewLimit
NewLimit is a biotechnology company working to radically extend human healthspan. We’re developing medicines to treat age-related diseases by reprogramming the epigenome, a new therapeutic mechanism to restore regenerative potential in aged and diseased cells. We leverage functional genomics, pooled perturbation screening, and machine learning models to unravel the biology of epigenetic aging and disease using experiments of unprecedented scale.
Position
We’re hiring our first dedicated Security & Infrastructure Engineer to build and own the security, infrastructure, and internal systems foundation for a clinical-stage biotech entering its first-in-human program. This is a rare ground-floor role: you’ll define what “secure and scalable” means for a company moving toward clinical, manufacturing, regulatory, and sponsor-facing operations, then build the systems that make it real.
The scope is broad and high-impact. You'll own security across identity, endpoint, and cloud, plus the operational backbone underneath it, from internal tooling and integrations to backups, recovery, and support for our lab and research environments. As our clinical and manufacturing partnerships expand, strong access control, audit logging, vendor oversight, and incident readiness become increasingly essential. You’ll own that readiness end to end, with the autonomy to help decide what gets built, bought, automated, or outsourced.
We want a builder, not a ticket-router. The best version of this person uses automation and AI agents to amplify their impact. Where a SaaS tool or a consultant is the faster, cheaper path, you make that call, and a managed service provider already handles helpdesk and on/offboarding so your time goes to high-leverage work.
You also won't be doing this on an island. The role sits inside our Computational Sciences team and reports to our Head of Computational Sciences, alongside computational biologists and software and ML engineers who can help think through hard systems problems and build with you. This is a chance to shape the security function early and create infrastructure that directly supports a new generation of medicines.
What you’ll do
• Own identity and access end to end, with least-privilege administration, phishing-resistant authentication, and SSO across our core applications.
• Set the security and management standards for our macOS and Windows endpoint fleet (encryption, patch posture, device compliance, remote lock/wipe) while relying on our MSP for routine execution.
• Own and scale security operations, from monitoring, detection, alerting, and response coordination to post-incident reporting and tabletop readiness, using MSP, MDR, or IR partners where they add leverage.
• Own the secure operational backbone across corporate, lab, and cloud environments: integrations, data transfers, vendor-managed systems, backup, recovery, continuity, and reliable access.
• Build internal tooling and automation for onboarding, access reviews, security reporting, and agent/LLM governance, including scoped credentials, sandboxed execution, and audit logging.
Requirements
• Several years across security engineering, SRE, platform, or infrastructure, including time as an early or sole security and IT owner at a startup.
• Fluency across core security and IT systems: identity providers, endpoint management, AWS security tooling, networking, collaboration tools, end-user computing, backups, and operational systems of record.
• Proven ability to scale security operations with modular solutions, built in-house or managed through MSP, MDR, or technical vendor partners.
• Experience supporting technical, scientific, or laboratory environments where vendor-managed systems, instruments, and uptime matter, and managing MSPs and vendors directly.
• Demonstrated use of AI agents and automation to force-multiply your work, paired with a clear grasp of how to secure them.
• A track record of right-sizing controls to company stage, with the judgment and presence to communicate clearly with scientists, operators, executives, vendors, auditors, and sponsors.
Nice to haves
• Experience supporting GxP, clinical, or other regulated environments, or hands-on readiness work for SOC 2, ISO 27001, or sponsor and clinical-trial audits.
• Familiarity with data-integrity expectations such as audit trails and ALCOA+ for regulated data handoffs.
• You program. You write real code to automate operations (and leverage LLMs to help).
Benefits
• Health, dental, and vision insurance
• 401(k) with company match
• Industry-leading paid time off (PTO), 20 days/year for all employees plus holidays
• Paid parental leave
• Meals and snacks on-site
Salary Range: $160,000 to $240,000. Compensation for the role will depend on a number of factors, including a candidate’s qualifications, skills, competencies, and experience. NewLimit offers a competitive benefits package, which includes a 401k, healthcare coverage, and 20 days of PTO. Learn more at: https://www.newlimit.com/careers *This compensation and benefits information is based on Company's good faith estimate as of the date of publication and may be modified in the future.
About NewLimit

Extends human healthspan.
View full profile →- HQ
- South San Francisco, CA
- Stage
- Series C+
- Total Raised
- $754.5M
- Employees
- 21-50
- Founded
- 2022