Security Engineer (DevSecOps)

TL;DR

Security Engineer (DevSecOps): Building and securing cloud-native systems that power the Game Warden platform with an accent on security automation, monitoring microservices, and threat detection across multi-cloud environments. Focus on developing tools in Go, IaC with Pulumi, and integrating SIEM, log pipelines, and incident response automation.

Location: Remote from approved US hiring hubs only: DC/Maryland/Virginia, Raleigh/Durham/Chapel Hill NC, Denver/Colorado Springs CO, Dallas/Fort Worth TX. U.S. citizenship required due to government contract requirements. DoD Secret Clearance (active or eligible) or DoD 8570/8140 compliant IAT2.

Salary: $137,000–$191,000

Company

Public-benefit software company enabling secure, rapid deployment of mission-critical SaaS for U.S. government and national security.

What you will do

• Design, develop, and deploy security automation and monitoring microservices in Go, focusing on Azure environments with Microsoft Defender for Cloud, Azure Monitor, and Azure AD.
• Enhance SIEM integrations, log pipelines, and threat detection logic across AWS, Kubernetes, and application layers.
• Build infrastructure as code (IaC) with Pulumi in Go to deploy cloud-native services securely.
• Develop incident detection and response automation, integrating AWS Security Hub, GuardDuty, Inspector, Wazuh, and others.
• Create dashboards, alerts, and playbooks for real-time monitoring and Blue Team operations.
• Support threat-hunting with log enrichment, alert tuning, and behavioral detection; collaborate on risk assessment and security posture improvement.
• Document architectures, detection logic, and procedures for scalability.

Requirements

• 3–5 years in DevSecOps, Blue Team engineering, or security automation.
• Strong experience developing tools and microservices in Go (Golang).
• Proficiency with Pulumi or similar IaC frameworks.
• Deep AWS security services, IAM, and networking knowledge.
• Experience with Kubernetes, Docker, GitLab CI/CD.
• Log analysis, event correlation, incident response skills.
• SIEM integration/management (e.g., Wazuh, Elastic, Opensearch).
• DoD Secret Clearance (active or eligible); DoD 8570/8140 compliant IAT2.

Nice to have

• Certified AWS, CKA, CKAD, CySA+, Sec+, or ability to attain DoD 8570 IAT Level II within 3 months.
• Threat intelligence enrichment, behavioral analytics, custom detections.
• Familiarity with cilium, keycloak, kyverno, tetragon for runtime security.
• Data engineering or security data pipelines (PLG stack, CloudTrail, GuardDuty).

Culture & Benefits

• 100% healthcare, vision, dental coverage; 401(k) + 3% company contribution; equity incentive plan.
• Tech/office supplies stipend; annual professional development stipend.
• Flexible paid time off + federal holidays; parental leave; work from anywhere (within approved hubs).
• Referral bonus; purpose-driven team focused on innovation, collaboration, impact for national security.