Security Engineer

Security Engineer ABOUT THE ROLE Second Front Systems (2F) is seeking an ambitious and visionary Security Engineer. You will be at the intersection of engineering and defense — building and securing cloud-native systems that power the Game Warden platform. Our Cybersecurity team safeguards mission-critical infrastructure for the DoD and other government customers by designing, deploying, and automating detection and response capabilities across our multi-cloud environments. You’ll lead efforts to build and automate Blue Team tooling, improve visibility into system activity, and strengthen our ability to detect, contain, and respond to security threats in real time. At 2F, we thrive on innovation and purpose, combining a startup’s agility with a clear mission to support national security. You will be at the forefront of driving the DevSecOps strategy behind the deployment and scaling of our revolutionary Game Warden https://www.secondfront.com/game-warden platform—an industry-leading tool that is accelerating the secure adoption of mission-critical SaaS solutions for the U.S. government. If you’re ready to contribute to a team that values ingenuity, collaboration, and impact, we want to hear from you Note: This role requires U.S. citizenship due to government contract requirements. Additionally, candidates must reside in one of our approved hiring hubs: - DC/Maryland/Virginia - Raleigh/Durham/Chapel Hill, NC - Denver/Colorado Springs, CO - Dallas/Fort Worth, TX WHAT YOU’LL DO - Design, develop, and deploy security automation and monitoring microservices in Go (Golang). - Build and maintain security automation and monitoring solutions with a focus on Azure environments, leveraging tools such as Microsoft Defender for Cloud, Azure Monitor, and Azure AD. - Enhance and maintain SIEM integrations, log pipelines, and threat detection logic across AWS, Kubernetes, and application layers. - Build infrastructure as code (IaC) with Pulumi in Go to securely deploy cloud-native services. - Develop and maintain incident detection and response automation, integrating with tools such as AWS Security Hub, GuardDuty, Inspector, Wazuh, and others. - Create and manage dashboards, alerts, and playbooks to support real-time monitoring and Blue Team operations. - Support threat-hunting initiatives through custom log enrichment, alert tuning, and behavioral detection. - Work closely with the other Security Engineers and the platform team to assess risk, harden configurations, and evolve security posture. - Document architectures, detection logic, and operational procedures to ensure repeatability and scalability. SKILLS YOU’LL BRING TO OUR TEAM - 3–5 years of experience in DevSecOps, Blue Team engineering, or security automation. - Strong experience developing tools and microservices in Go (Golang). - Proficiency with Pulumi or similar Infrastructure-as-Code (IaC) frameworks. - Deep understanding of AWS security services, IAM, and networking fundamentals. - Experience with Kubernetes, Docker, and GitLab CI/CD pipelines. - Proven ability to analyze logs, correlate events, and respond to incidents. - Experience integrating or managing SIEMs (e.g., Wazuh, Elastic, Opensearch). - Familiarity with threat detection, alerting, and response automation in cloud environments. - DoD Secret Clearance (active or eligible). - DoD 8570/8140 compliant IAT2 PREFERRED QUALIFICATIONS - Certified AWS, CKA, CKAD, - CySA+, Sec+, or DoD 8570/8140 compliant IAT2 OR - Ability to attain DoD 8570 IAT Level II certification within 3 months of hire. - Hands-on experience with threat intelligence enrichment, behavioral analytics, or custom detections. - Familiarity with cilium, keycloak, kyverno, or tetragon for runtime security and observability. - Experience in data engineering or security data pipelines (PLG stack, cloudtrail, guardDuty.). The expected base salary range for this role is $137,000-$191,000. Final compensation will be based on ... (truncated, view full listing at source)