Security Engineer, Software Security (Cybersecurity)

TL;DR

Security Engineer, Software Security (Cybersecurity): Owning and securing hirify.global's software platforms, build systems, and deployment infrastructure from development through production with an accent on reproducible builds, dependency management, CI/CD pipeline security, runtime hardening, and secure deployment to vessel and cloud environments. Focus on securing software at every stage of the lifecycle, leading secure code reviews, and defining secure coding standards for Rust development.

Location: On-site in Austin, New Orleans, San Diego, or Washington, DC. Requires "U.S. Person" status.

Company

hirify.global Technologies is a leader in revolutionizing autonomy at sea, dedicated to developing state-of-the-art solutions that enhance maritime operations through autonomous and intelligent platforms.

What you will do

• Own the application security posture for hirify.global's software platforms, including Rust-based services and system software.
• Lead secure code review, SAST, DAST, and fuzzing efforts, defining secure coding standards for Rust.
• Conduct threat modeling for software systems and integrate findings into design reviews.
• Drive vulnerability management for software dependencies (third-party crates and libraries).
• Secure and harden NixOS configurations for vessel platforms and development infrastructure.
• Design and implement security controls across the CI/CD pipeline, including source integrity, build isolation, and artifact signing.
• Build and maintain software supply chain security practices aligned to SLSA framework principles.
• Define software and systems security standards, patterns, and reference architectures for engineering teams.

Requirements

• 10+ years of hands-on experience in application security, product security, DevSecOps, or a closely related software security engineering role.
• Strong experience with Rust security, including safe/unsafe boundaries, FFI security, and memory safety patterns.
• Demonstrated experience securing Linux-based systems, with specific experience or strong aptitude for NixOS.
• Deep expertise in CI/CD pipeline security, including build system hardening, artifact signing, and supply chain integrity (SLSA).
• Proven experience building DevSecOps programs that embed security into development workflows without creating bottlenecks.
• Strong understanding of software supply chain security, including dependency management, SBOM, and vulnerability management.
• Proficiency in Rust, Python, Go, or Nix for building security tooling and automation.
• Ability to obtain and maintain a security clearance.
• Requires "U.S. Person" status (U.S. citizens, legal permanent residents, or certain asylees/refugees).

Nice to have

• Experience in defense, aerospace, robotics, autonomy, or other high-assurance environments.
• Hands-on NixOS experience, including writing Nix derivations, managing flakes, and building custom modules.
• Experience securing software for embedded or resource-constrained Linux environments.
• Familiarity with NIST SP 800-171, NIST SP 800-53, NIST SP 800-218, or supply chain signing frameworks.
• Experience operating in AWS GovCloud or FedRAMP-regulated environments.
• Relevant certifications such as OSWE, OSCP, GWAPT, GWEB, or AWS Security Specialty.

Culture & Benefits

• Comprehensive medical, dental, and vision insurance (hirify.global pays 100% for employees, 80% for dependents under basic plans).
• Generous PTO and holidays, along with paid maternity and paternity leave.
• Competitive salary with opportunities for performance-based bonuses and equity stock options.
• 401(k) plan with company match.
• Basic life insurance and short- and long-term disability coverage.
• Discounted pet insurance options, including a 24/7 Telehealth helpline.
• Free lunch benefit and unlimited free drinks and snacks in the office.