Software Engineer, Security Automation

<div class="content-intro"><p>Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the defense industry, Anduril is changing how military systems are designed, built and sold. Anduril’s family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a realtime, 3D command and control center. As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years.</p></div><h3>ABOUT THE TEAM</h3> <p>The Lattice Foundations organization is responsible for enabling Anduril’s software products to reach a new standard of software excellence. We build tools, operate services, define processes, and develop frameworks to allow Anduril’s engineers and operators to execute at all stages of the software development lifecycle with efficiency, quality, and delight. We adapt industry best practices to the complexities of Anduril’s domain, develop new systems when we can improve on the state of the art, and integrate it all into a unitary foundation underlying Anduril’s software development.<br><br>The Security Application Tools team within Lattice Foundations is responsible for creating and maintaining the tools and workflows that software engineering teams across Anduril need to improve software security at scale. These tools include systems to avoid, detect, manage, and propose corrections for first party and supply chain vulnerabilities across all the types of software artifacts that Anduril creates and deploys. We aim to reduce the number of vulnerabilities in Anduril's products, to improve the developer experience for security, and to decrease the time and effort required for security audits.</p> <h3>ABOUT THE JOB</h3> <p>We are looking for an experienced software engineer to join our team. In this position you will play a key role in designing, developing, and improving the software that lets Anduril tackle security at scale. You’ll work with developers to understand their needs and work with open-source projects and third party vendors to understand the current state of the art. You’ll design and build the systems that let Anduril detect, manage, and resolve all classes of software security problems across thousands of different software repositories deployed to dozens of different products. You’ll work to continually improve the scope, accuracy, and capability of these systems, improving both Anduril’s security posture and the quality of life for our developers.<br><br>If you’re passionate about creating robust large-scale software systems, improving security, and enhancing the developer experience, then this may be the position for you.<br><br></p> <h4>WHAT YOU’LL DO</h4> <ul> <li>Design and develop production-grade security software used across Anduril’s diverse product ecosystem.</li> <li>Drive continual improvements in the quality and automation of vulnerability detection, adjudication, and remediation.</li> <li>Stay current with the latest security vulnerabilities and mitigation techniques and help create Anduril’s security automation roadmap.</li> <li>Collaborate closely with developers to understand their needs, explain vulnerabilities and potential mitigations, and review requests for exceptions.</li> <li>Operate and maintain Anduril’s security automation tools as a member of the team’s on-call rotation.</li> <li>Work with third-party vendors to evaluate and potentially integrate their security solutions.</li> </ul> <h4>REQUIRED QUALIFICATIONS</h4> <ul> <li>5+ years experience designing and developing production software.</li> <li>2+ years experience in product security, application security, dev infrastructure, or a related field.</li> <li>Pro ... (truncated, view full listing at source)