Application Security Engineer

Costa Mesa, CA

Anduril Industries

Transforming US & allied military capabilities with advanced technology.

View company page

Anduril is a defense technology company, bringing Silicon Valley talent and funding to the defense sector. Our technology helps our customers solve their toughest challenges by enabling them to make better, more informed decisions in life-and-death situations. We've assembled a diverse team of experts in artificial intelligence, computer vision, sensor fusion, optics, and data analysis that are creating software and hardware solutions to radically evolve the capabilities of the United States and our allies. If you are passionate about solving problems that have real impact, come join Anduril and build the future of defense.
We're seeking an application security engineer to build and integrate infrastructure for discovering and remediating vulnerabilities, develop secure/hardened baselines to be leveraged by our products, and ultimately secure our suite of advanced technologies including artificial intelligence systems, command and control platforms, aerospace vehicles, and long range sensors.
The ideal candidate has a background in software or systems engineering, has experience working with or building CI/CD integrations, and has pivoted to a product or application security role. They will be able to conduct complex security architecture reviews, design and build solutions to integrate with both in-house and third-party tools, and work with other engineering teams to build resiliency into our products and supporting infrastructure.

Responsibilities:

  • Build, integrate, and operate security infrastructure and tooling as part of Anduril’s CI/CD processes
  • Design, build, and integrate software components to optimize security principles employed in our products
  • Assesses security of software and firmware leveraging automated tools (e.g. static/dynamic analysis, fuzzing, SCA)
  • Evaluates real-world impact of discovered vulnerabilities and works with application teams to mitigate
  • Triages and responds to publicly disclosed vulnerabilities to assure appropriate mitigation actions are executed

Requirements:

  • Experience with one or more programming languages (e.g. C/C++, Golang, Python, Javascript/Typescript)
  • Experience working within or building and sustaining CI/CD systems
  • Experience assessing security of firmware, web applications, IoT, or embedded systems
  • Experience auditing source code
  • Experience conducting fuzzing or dynamic code analysis
  • Strong and professional communication skills (written and verbal)

Preferred Qualifications:

  • Excels at the above listed Requirements
  • Familiarity with security architectures of cloud, micro-service, or cyber-physical systems
  • Experience with NixOS
  • Secret or TS/SCI clearance
U.S. Person status is required as this position needs to access export controlled data.
Anduril is an equal-opportunity employer, and we encourage candidates from all backgrounds to apply. If you are someone passionate to work on problems that matter, we’d love to hear from you!

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Application security Artificial Intelligence Audits C CI/CD Clearance Cloud Code analysis Golang JavaScript Python TS/SCI TypeScript Vulnerabilities

Region: North America
Country: United States
Job stats:  6  1  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.