As a Senior Compliance Engineer at Anduril Industries, you will be responsible for driving automation, compliance, and security engineering principles into the design, integration, and operation of Anduril's internal systems. This is a technically hands-on role that requires a strong DevSecOps background with deep expertise in cloud infrastructure security, embedded systems security, and federal compliance frameworks.

Key Responsibilities

• Design, develop, and maintain Infrastructure as Code (IaC) and Policy as Code (PaC) that enforce compliance with NIST SP 800-171 and 800-53, CMMC, and other applicable frameworks, enabling developers to deploy CMMC-certified applications using pre-packaged, compliant infrastructure templates.
• Architect, build, and deploy robust, scalable security controls across Anduril's corporate, development, and production cloud environments (AWS, Azure, GCP) and on-premise environments.
• Develop and automate IaC pipelines for managing and scaling cloud deployments securely and efficiently, including automated pipelines for deploying infrastructure, applications, and updates.
• Build automation for procedural compliance controls, generating compliance and audit artifacts at scale without manual intervention.
• Develop security models that integrate Continuous Monitoring (ConMon), DISA STIG scanning, and compliance reporting into a unified, automated workflow.

Compliance Engineering & Framework Implementation

• Analyze, interpret, and operationalize federal and industry cybersecurity regulations, including NIST SP 800-171 and 800-53, CMMC, FedRAMP, and SOC 2, translating regulatory language into actionable engineering guidance and enforceable technical controls.
• Evaluate system architectures and configurations to ensure alignment with required security controls for moderate-impact information systems.
• Interface directly with infrastructure teams to verify and enforce compliance across existing on-premise and cloud stacks, identifying gaps and driving remediation.

Cross-Functional Collaboration & Enablement

• Partner with engineers, the DevSecOps Team, and the Automation Team to implement and verify security controls in both corporate and product software environments.
• Act as a force multiplier by embedding security best practices into the workflows of infrastructure, application, and product teams, particularly for environments holding mission-critical data.

Strategic & Advisory

• Develop strategies and implementation plans for compliance-related matters, advising management on risk posture, regulatory changes, and investment priorities.
• Institute best-practice procedures for compliance and risk mitigation across the organization.

Required Qualifications

• 3+ years of professional experience in Cloud Security, DevSecOps, Site Reliability Engineering (SRE), or a related security engineering role.
• Background in one or more of the following disciplines: Systems Security Engineering, Cybersecurity, Systems Engineering, Software Engineering, Computer Engineering, or Computer Science.
• Proven experience building and securing complex cloud environments at scale.
• 3+ years of hands-on experience working with compliance frameworks such as CMMC, NIST SP 800-171 and/or 800-53, and FedRAMP.

XML job scraping automation by YubHub

The company's family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a real-time, 3D command and control centre.

As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion and networking technology to the military in months, not years.

We are seeking a mission-driven Cloud Infrastructure Engineer to take a leading role in designing and implementing world-class defensive controls. This is a high-impact role with the autonomy to shape security architecture and protect the technology that is changing the future of defence.

Key Responsibilities:

• Design and Own Security Architecture: Architect, build and deploy robust, scalable security controls for our corporate, development and production cloud environments (AWS, Azure, GCP).

• Automate Everything: Develop and automate infrastructure-as-code (IaC) to manage and scale our cloud deployments securely and efficiently.

• Proactively Defend: Continuously monitor, identify and remediate security weaknesses and configuration drift across our entire cloud footprint.

• Be a Force Multiplier: Partner with infrastructure, application and product teams to embed security best practices into their workflows and secure environments holding mission-critical data.

• Enable Scale and Reliability: Engineer systems and processes that ensure our platforms are highly available, resilient and prepared for rapid growth.

• Serve as a Cloud Security Expert: Act as the go-to subject matter expert for teams across Anduril, providing guidance, mentorship and paved-road solutions for building securely in the cloud.

Requirements:

• Proven experience building and securing complex cloud environments, typically gained through 3+ years in a Cloud Security, DevOps or SRE role.

• Deep proficiency in at least one major cloud provider (AWS, Azure or GCP).

• Strong hands-on experience with Infrastructure as Code (e.g., Terraform, CloudFormation, Bicep).

• Solid programming/scripting ability in one or more languages (e.g., Python, Go, Rust).

• Firm understanding of public cloud networking principles (e.g., VPCs, subnets, routing, security groups).

• Must be a U.S. Person and eligible to obtain and maintain a U.S. Top Secret security clearance.

Preferred Qualifications:

• Experience hardening and monitoring Kubernetes clusters (EKS, GKE, AKS).

• Experience with cloud security posture management (CSPM) or threat detection tooling.

• Familiarity with CI/CD pipelines and securing the software supply chain.

• Knowledge of compliance frameworks such as FedRAMP, MRL, SOC 2 or CMMC.

• On-premises network engineering experience.

XML job scraping automation by YubHub

As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years.

Key Responsibilities:

• Own the technical vision and architecture for platform security across Anduril's product ecosystem
• Design cryptographic systems, protocols, and key management architectures for autonomous and robotic platforms operating in contested and disconnected environments
• Lead the design of hardware root-of-trust architectures integrating TPMs, TEEs, HSMs, and secure boot across diverse embedded platforms
• Drive the strategy for promoting business-line security implementations into shared, composable platform services
• Serve as the senior technical authority for security architecture reviews across the organization, providing definitive guidance on cryptographic design, protocol security, and system hardening
• Define security patterns, reference architectures, and engineering standards that enable teams across Anduril to build securely and independently
• Mentor and develop senior engineers on the team, raising the bar for security engineering across the organization
• Represent Anduril's security engineering capabilities to customers, partners, and auditors when deep technical credibility is required
• Evaluate emerging threats, cryptographic standards, and security technologies, driving adoption where they strengthen the platform

Required Qualifications:

• 12+ years of experience in software engineering, with significant depth in systems security and cryptography
• Expert-level knowledge of cryptographic protocol design, including key management architectures, certificate systems, and cryptographic agility
• Deep experience with hardware security: TPM, TEE, HSM, secure boot, and hardware root-of-trust design across multiple platform types
• Proficient in two or more of: C++, Rust, Go
• Experience designing security architectures for embedded, real-time, or robotic systems with constrained environments
• Track record of leading cross-organizational technical initiatives and driving architectural decisions that span multiple teams
• Strong ability to communicate complex security concepts to engineering leadership, product teams, and external stakeholders
• Experience performing and leading threat modeling, security architecture reviews, and cryptographic design reviews
• Eligible to obtain and maintain active U.S. Secret security clearance

Preferred Qualifications:

• Experience with post-quantum cryptography, distributed key generation (DKG), or threshold cryptographic schemes
• Background in defense, aerospace, or autonomous systems with exposure to FIPS 140, Common Criteria, or NSA CSfC requirements
• Experience designing secure communication protocols for autonomous platforms or mesh networks
• Deep knowledge of Linux kernel security, mandatory access controls (SELinux/AppArmor), and OS hardening at scale
• Experience building and evolving platform security services consumed by dozens of teams
• Familiarity with compliance frameworks (STIGs, NIST 800-53, CMMC) and translating them into engineering controls that don't compromise developer velocity
• Publications, patents, or recognized contributions in cryptography or systems security
• Experience with Nix build systems and reproducible build pipelines for security-critical software

US Salary Range: $254,000-$336,000 USD

XML job scraping automation by YubHub

The ideal candidate brings experience securing aerospace or defense products and approaches compliance as an enabler of mission success. This role emphasizes practical, engineering-driven security decisions that balance regulatory requirements with system performance, autonomy, and operational realities.

Responsibilities: Serve as the product security lead and ISSM for operational autonomous aircraft platforms. Own and guide RMF activities, including ATO packages, ongoing authorization, and customer security engagements Translate security and compliance requirements into product-appropriate, technically sound controls Partner closely with systems, software, hardware, and platform engineering teams throughout the product lifecycle Evaluate the security impact and operational tradeoffs of design decisions Support government and customer audits, assessments, and security reviews Contribute to the maturation of product security and compliance practices across Shield AI

Required qualifications: Experience functioning as an Information System Security Manager (ISSM) or senior ISSO for complex systems Experience securing aerospace and/or defense products Strong working knowledge of RMF, NIST 800-53, and the ATO process Enough systems engineering or technical depth to assess the reasonableness and impact of security requirements Ability to work effectively with engineering teams in fast-paced, product-driven environments Active U.S. Secret security clearance Ability to work on-site in Frisco, TX

Preferred qualifications: Active Top Secret (TS) clearance Experience with CMMC and ISO 27001 implementation or assessment Product security experience beyond enterprise IT or GRC-only roles Commercial technology experience in addition to defense Familiarity with secure development lifecycles and embedded or autonomous systems

$138,000 - $207,000 a year Full-time regular employee offer package: Pay within range listed + Bonus + Benefits + Equity Temporary employee offer package: Pay within range listed above + temporary benefits package (applicable after 60 days of employment)

XML job scraping automation by YubHub

This is a hands-on security engineering role; not a GRC or project management role. You'll identify the frameworks that apply, architect the vessel's security to satisfy them, and drive authorization to completion. Where standards don't yet exist, you'll define them.

Key Responsibilities:

• Own the security posture for one or more vessel programs from architecture through fielding, serving as the responsible security engineer for the product
• Drive threat modeling across vessel subsystems including embedded compute, communications, navigation, propulsion controls, sensor fusion, and C2 interfaces and define security architectures, trust boundaries, and segmentation strategies based on findings
• Identify and mitigate security risks unique to autonomous maritime platforms, including GPS/GNSS spoofing, RF interference, sensor manipulation, supply chain compromise, and physical access threats
• Own the end-to-end authorization lifecycle for vessel programs, from initial security planning through ATO or equivalent customer authorization milestones
• Navigate DoD cybersecurity authorization frameworks including RMF, CSRMC, and service-specific requirements across Navy, Coast Guard, Marine Corps, and joint programs
• Prepare and maintain authorization artifacts, security documentation, and evidence packages that satisfy Authorizing Officials and program offices
• Identify and map applicable compliance frameworks for each vessel and customer segment including NIST SP 800-53, NIST SP 800-171, CMMC 2.0, FedRAMP, IEC 62443, IMO MASS Code, and IACS UR E26/E27 and proactively define Saronic's compliance posture where standards are still emerging
• Engage directly with government program offices, Authorizing Officials, DOT&E evaluators, and classification societies as a credible technical representative of Saronic's security posture
• Support cybersecurity testing and evaluation efforts, including preparation for operational test events, red team assessments, and cooperative vulnerability assessments
• Partner with supply chain and manufacturing teams to address hardware provenance, firmware integrity, and anti-tamper requirements for production vessels
• Work with Legal and Contracts to ensure security and compliance requirements are accurately reflected in customer agreements, proposals, and contract deliverables

Required Qualifications:

• 6+ years of hands-on experience in product security, systems security engineering, authorization engineering, or a closely related security engineering role for defense or high-assurance platforms
• Strong understanding of DoD cybersecurity authorization processes (RMF, ATO/IATT, CSRMC, continuous ATO) with experience contributing to or driving systems through authorization
• Working knowledge of NIST SP 800-53, NIST SP 800-171, and CMMC 2.0 and their application to weapons systems, autonomous platforms, or similarly complex defense products
• Experience with threat modeling, security architecture, or risk assessment for cyber-physical systems, embedded systems, or operational technology environments
• Strong technical foundation, able to read architecture diagrams, evaluate security controls at a systems level, and hold credible technical conversations with hardware, software, and cloud engineers
• Ability to clearly communicate with both technical and non-technical stakeholders, including production of security documentation and authorization artifacts
• Ownership mindset with the ability to operate in ambiguity, define the path forward, and move work to completion across teams
• Ability to obtain and maintain a security clearance

Preferred Qualifications:

• Experience as a product security lead, systems security engineer, or authorization lead for a defense platform or program of record
• Direct experience engaging with government Authorizing Officials, program offices, or DOT&E as a technical security representative
• Experience in defense technology startups, DARPA programs, or organizations that move at speed within the defense acquisition system
• Familiarity with maritime-specific frameworks including IMO MASS Code, IACS UR E26/E27, IEC 62443, or classification society autonomous vessel rules
• Understanding of autonomous systems security challenges including communications security, electronic warfare hardening, GPS/GNSS resilience, and AI/ML system security
• Experience with ITAR/EAR compliance, supply chain security, or manufacturing security for defense products
• Familiarity with the defense acquisition lifecycle and how authorization milestones integrate into program schedules

Additional Information:

• Benefits: Medical Insurance, Dental and Vision Insurance, Time Off, Parental Leave, Competitive Salary, Retirement Plan, Stock Options, Life and Disability Insurance, Pet Insurance
• This role requires access to export-controlled information or items that require “U.S. Person” status.

XML job scraping automation by YubHub

This role is heavily weighted toward detection engineering. You should think in terms of adversary behaviour and telemetry coverage, not just alert triage. You'll own detections end-to-end: from identifying gaps in coverage, through designing and testing detection logic, to tuning and validating in production.

Key Responsibilities:

• Design, build, test, and tune high-fidelity detection rules and analytic queries across endpoint, cloud, network, identity, and DLP telemetry sources

• Develop and maintain detection content using detection-as-code practices including version-controlled logic, automated testing, and CI/CD deployment

• Map detection coverage to MITRE ATT&CK, identify gaps, and prioritise new detection development based on threat intelligence and business risk

• Engineer correlation rules, behavioural analytics, and anomaly-based detections that minimise false positives while surfacing real adversary tradecraft

• Own the detection lifecycle from initial development through production tuning, performance monitoring, and retirement

• Build and operate pipelines to ingest, normalise, enrich, and manage security telemetry at scale across diverse data sources, using Terraform and infrastructure-as-code practices to deploy and maintain logging and detection infrastructure

• Design and maintain log collection, parsing, and enrichment configurations that ensure the right telemetry is available at the right fidelity for detection and investigation

• Evaluate and onboard new telemetry sources as Saronic's infrastructure and threat landscape evolve

• Monitor pipeline health, data quality, and ingestion reliability to ensure detections operate on complete and accurate data

• Develop and manage automated response playbooks in SOAR platforms to accelerate containment and reduce analyst toil

• Build automation that enriches alerts with contextual data, reducing investigation time and improving analyst decision-making

• Support incident response efforts and translate lessons learned into improved detections and playbooks

• Partner with SOC analysts, Cloud Security, Product Security, and IT teams to close visibility and detection gaps across environments

• Collaborate with threat intelligence to ensure detection engineering is informed by current adversary TTPs relevant to defence, maritime, and autonomous systems

Required Qualifications:

• 3+ years of hands-on experience in detection engineering, security operations, security automation, or a closely related security engineering role

• Demonstrated experience designing, testing, and tuning detection rules and analytic queries across production security telemetry (endpoint, cloud, network, identity, or DLP)

• Hands-on experience with SIEM platforms and proficiency with query languages such as SPL, KQL, or equivalent

• Experience building and operating security data pipelines, including log ingestion, normalisation, enrichment, and data quality management

• Understanding of data engineering concepts including ETL pipelines, data modelling, schema design, and indexing as applied to security telemetry

• Hands-on coding experience in Python, PowerShell, Go, or Rust for security automation, detection tooling, or pipeline development, and familiarity with Terraform for managing detection and logging infrastructure as code

• Understanding of MITRE ATT&CK framework and its application to detection coverage and gap analysis

• Ability to obtain and maintain a security clearance

Preferred Qualifications:

• Experience in defence, aerospace, robotics, autonomy, or other high-assurance environments

• Experience with EDR platforms including custom detection rule creation and telemetry analysis

• Experience with cloud-native detection in AWS and Microsoft 365/Azure

• Experience using Terraform to deploy and manage security monitoring infrastructure, log pipeline components, or cloud-native security service configurations

• Hands-on experience with incident response, threat hunting, or adversary emulation

• Exposure to embedded Linux, operational technology, or ICS telemetry and detection

• Familiarity with NIST SP 800-171, NIST SP 800-53, or CMMC and their logging and monitoring requirements

• Relevant certifications such as GCIH, GCIA, GCDA, GSOM, OSDA, or OSCP

Additional Information:

• Benefits: Medical Insurance, Dental and Vision Insurance, Time Off, Parental Leave, Competitive Salary, Retirement Plan, Stock Options, Life and Disability Insurance, Pet Insurance

• This role requires access to export-controlled information or items that require 'U.S. Person' status.

XML job scraping automation by YubHub

You will collaborate with IT and engineering teams to establish and track patching and remediation priorities, focusing on CMMC scoring impact. You will maintain ownership of all Plans of Action and Milestones (POA&Ms), validating remediation closure evidence, and ensuring alignment with DoD and CMMC requirements. You will also support continuous control monitoring activities for ongoing compliance between assessments.

As a Cyber Security Engineer, you will communicate compliance posture, risks, and remediation status to both technical and non-technical audiences, and support user and stakeholder education. You will also escalate unresolved compliance or remediation risks to cybersecurity and audit leadership as appropriate.

This is an exciting opportunity to join a driven and collaborative Cybersecurity team at Synopsys, working alongside experts in IT, Engineering, and Business Operations. You will report to the Executive Director of Cybersecurity and play a central role in audit readiness, evidence management, and cross-functional collaboration.

To be successful in this role, you will need:

• Security+ (SEC+) or equivalent industry-recognized cybersecurity certification
• 4+ years of experience performing Information Assurance, ISSO, ISSE, or equivalent cybersecurity assurance functions
• 2+ years supporting cybersecurity operations in a DoD or defense-adjacent enterprise environment
• Experience supporting NIST SP 800-171, RMF-aligned, or CMMC-related compliance activities
• Ability to obtain and maintain a U.S. DoD, FBI, or DHS security clearance
• Strong technical understanding of modern hardware, software, and enterprise infrastructure environments
• Familiarity with vulnerability management platforms, compliance evidence repositories, and security monitoring outputs
• Excellent organizational, prioritization, and time-management skills
• Strong analytical and problem-solving abilities with attention to detail
• Ability to work effectively across technical and non-technical teams to resolve complex compliance issues
• Strong written and verbal communication skills, including the ability to present information to leadership and stakeholder groups
• Demonstrated ability to manage multiple competing priorities in a high-assurance environment

If you are a collaborative team player who thrives in cross-functional environments, detail-oriented and diligent, proactive and resourceful, clear communicator who can translate technical concepts to non-technical audiences, analytical thinker with strong problem-solving skills, adaptable and resilient, and ethical and trustworthy, committed to maintaining high standards of integrity and confidentiality, then we encourage you to apply for this exciting opportunity.

XML job scraping automation by YubHub

As a collaborative problem-solver, you are comfortable working across teams—from executives to engineers—to ensure robust security controls and compliance. You excel at conducting security investigations, analyzing complex events and alerts, and developing actionable metrics. Your familiarity with modern security frameworks, such as MITRE ATT&CK and Cyber Kill Chain, empowers you to identify and mitigate threats proactively. You are detail-oriented, organized, and adept at multitasking, thriving in environments that require prioritization and agility.

You are committed to ongoing learning, staying current with emerging security technologies and frameworks. Your experience spans cloud security (AWS, GCP, Azure), offensive security, and incident response. You enjoy participating in audits and assessments, contributing to a culture of continuous improvement. With strong communication skills and an inclusive mindset, you foster trust and collaboration across diverse teams. If you’re ready to make an impact at the forefront of cybersecurity innovation, Synopsys is the place for you.

Design, deploy, and manage enterprise-grade security solutions including CASB, SSPM, WAF, firewalls, and email protection across global environments. Integrate and implement network security solutions, ensuring seamless operation and compliance with Zero Trust security principles. Enforce CMMC regulations, technical data controls, and export authorization rules, including U.S. person-only access restrictions for controlled systems and datasets. Conduct and support external audits, internal reviews, and compliance assessments related to CMMC and other regulatory frameworks. Research, evaluate, pilot, and implement new security solutions at a global enterprise scale, collaborating with vendors and stakeholders. Investigate security events and alerts from multiple log sources, performing end-to-end security investigations, and reporting actionable findings. Develop and manage the collection, reporting, and analysis of security events and metrics to drive continuous improvement. Participate in incident response processes and supporting light on-call pager duty rotations for critical issues.

Strengthen Synopsys’ global security posture by implementing advanced security controls and best practices. Ensure compliance with CMMC and other regulatory frameworks, enabling secure operations for critical projects. Protect sensitive data, intellectual property, and infrastructure against emerging cyber threats. Drive continuous improvement in security operations through data-driven analysis and proactive risk management. Enhance cross-functional collaboration between engineering, compliance, and executive teams to foster a culture of security awareness. Support innovation by enabling secure cloud implementations and supporting offensive security initiatives.

Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or related field required. 5+ years of hands-on experience with enterprise-grade security solutions (CASB, SSPM, WAF, firewalls, email security). 2+ years of experience installing, integrating, and deploying network security solutions. Solid understanding of Zero Trust security principles and architectures. Deep knowledge of CMMC regulations, technical data controls, and export authorization rules. Experience enforcing U.S. person-only access restrictions for controlled systems and datasets. Experience with external audits, internal reviews, and compliance assessments. Broad experience securing cloud implementations (AWS, GCP, Azure) and offensive security domains. Hands-on experience with Zscaler, Palo Alto Networks, ProofPoint, and other leading security platforms. Relevant certifications (CEH, CISSP, GIAC, OSCP, AWS Certified Advanced Networking, Security+) preferred. US citizenship or Green Card required.

XML job scraping automation by YubHub