Senior Security Engineer, Enterprise

YOUR MISSION

As a Senior Enterprise Security Engineer, you will be joining a team focused on securing the foundations that allow True Anomaly to fulfill its mission. In this position, you will be responsible for designing, engineering, and delivering security enhancements across employee workstations, on-prem servers, and cloud environments. You will be working closely with organizational partners to ensure we are building security directly into the foundations of our company while ensuring we align with compliance requirements. You will regularly be faced with answering the question “How can we enable the business to do this with as little risk as necessary?” 

As part of True Anomaly’s Enterprise Security team, you will have significant autonomy to design and deliver solutions for a wide variety of security challenges. In one project you might be working on improvements to enterprise identity, while in another project you might be building out guard rails for a manufacturing environment. You will be joining a fast-paced, challenging environment where your decisions and expertise will have direct, lasting impact on our security posture. 

This is an ideal role for a self-starter who thrives on ownership, wants to leave their mark on an organization, and is energized by the opportunity to solve challenging problems and build something meaningful. 

This position requires a minimum Secret clearance with strong preference for active TS/SCI clearance or the ability to obtain and maintain TS/SCI. 

RESPONSIBILITIES

• Conduct regular security assessments, vulnerability scans, and risk assessments to identify and mitigate potential threats. 
• Own and implement security hardening for all enterprise and corporate systems. 
• Provide subject matter expertise for enterprise and corporate systems security. 
• Provide recommendations and implementation guidance for management of cloud and on-premise assets. 
• Proactively identify deficiencies in the current security program and fill them. 
• Collaborate with cross-functional teams to ensure security measures are integrated into the system development lifecycle. 
• Monitor and analyze security logs from various sources (e.g., SIEMs, IDS/IPS) to identify suspicious activities and respond to security incidents. 
• Assist in the development and maintenance of security policies, procedures, and guidelines. 
• Stay updated with the latest security trends, threats, and technology solutions. 
• Provide support to internal stakeholders on compliance and security best practices. 
• Participate in change management and change review board, identifying risks in implementation process. 

QUALIFICATIONS

• Minimum of 6 years of experience in information security, with a focus on security engineering. 
• Proficiency with security tools and technologies such as SIEM, IDS/IPS, vulnerability scanners, MDM, and endpoint protection. 
• Deep understanding of common vulnerabilities and how to exploit them. 
• Strong engineering understanding of common enterprise technologies, including on-prem and SaaS. 
• Proven track record of working closely with IT to implement security at the foundations of enterprise systems 
• Excellent analytical, problem-solving, and communication skills. 
• Working knowledge of at least one programming language such as Python, Elixir, C, Rust, Go.  
• Ability to work independently and collaboratively in a fast-paced environment. 
• Relevant certifications such as CISSP, CISM, CISA, or equivalents are highly desirable. 
• This position requires a minimum Secret clearance.
  

PREFERRED SKILLS AND EXPERIENCE

• Active TS/SCI clearance or ability to obtain and maintain security clearance 
• Bachelor’s degree in Computer Science, Information Security, or equivalent professional experience. 
• Experience building and delivering solutions that improve organizational security 
• Experience working with and securing manufacturing environments 
• Experience with cloud platforms such as Azure, AWS, or Google Cloud. 
• Experience with infrastructure-as-code paradigms, Terraform, GitOps, CI/CD, etc 
• Familiarity with FedRAMP, CMMC, NIST frameworks 
• Familiarity with Threat Detection Engineering and security operations practices and tools. 
• Experience working at a startup and/or in the defense industry.

WORK ENVIRONMENT

• This role operates in a fast-paced, high-stakes environment where rapid decision-making and adaptability are essential 
• On-call rotation participation, including after-hours participation, is required in this role 
• Must be comfortable working under pressure during active security incidents 
• High degree of autonomy and ownership 
• Direct access to leadership and opportunity to influence security strategy 

COMPENSATION

• Colorado Base Salary: $155,000-$215,000
• California Base Salary: $160,000-$225,000
• Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave 

Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, location, and experience. 

ADDITIONAL REQUIREMENTS

• Work Location—while we observe a hybrid work environment, you will need to be onsite as the business needs require. On an average week, you can expect to spend at least 3 days per week in office.
• Work environment—the work environment; temperature, noise level, inside or outside, or other factors that will affect the person's working conditions while performing the job.
• Physical demands—the physical demands of the job, including bending, sitting, lifting and driving.

This position will be open until it is successfully filled. To submit your application, please follow the directions below. #LI-Hybrid