Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the defense industry, Anduril is changing how military systems are designed, built and sold. Anduril’s family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a realtime, 3D command and control center. As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years. ## Key Responsibilities
Design and build distributed services for vulnerability scanning, policy enforcement, and remediation workflows
Develop and extend the team's scanning orchestration platform — an event-driven architecture built on AWS (SQS, Lambda, S3, ECR) that processes scan events at org-wide scale
Build and maintain policy-as-code systems that programmatically enforce security policy in CI/CD pipelines and deployment configurations
Design APIs and CLIs that integrate security tooling into developer workflows without creating friction
Develop data pipelines that aggregate, normalize, and route findings from multiple scanning engines into vulnerability management systems
Collaborate with engineering teams across Anduril to understand their security needs and build tooling that addresses them
Evaluate third-party security tools and build custom integrations or replacements where needed
Participate in on-call rotation for security tooling infrastructure
Required Qualifications
5+ years of experience designing and developing production software systems
Strong proficiency in Go — this is the team's primary language for backend services
Experience building distributed systems or data pipelines (event-driven architectures, message queues, APIs, worker systems)
Proficiency with Python for scripting, automation, and tooling
Experience with cloud infrastructure (AWS preferred: Lambda, SQS, S3, ECR, or equivalent)
Ability to read and understand security tool output (vulnerability reports, SBOMs, static analysis results) and build systems around it
Strong communication skills with the ability to work across teams
Eligible to obtain and maintain active U.S. Secret security clearance
Preferred Qualifications
Experience with CI/CD systems (CircleCI, GitHub Actions) and building integrations for developer workflows
Familiarity with container security concepts, SBOM generation tools (Syft), and vulnerability scanners (Trivy, Grype, Semgrep)
Experience with Terraform and infrastructure-as-code
Experience with policy-as-code frameworks (OPA/Rego, Conftest)
Background in application security or product security engineering
Experience with Kubernetes and container orchestration
Familiarity with Nix build systems
US Salary Range
$191,000—$253,000 USD
The salary range for this role is an estimate based on a wide range of compensation factors, inclusive of base salary only. Actual salary offer may vary based on (but not limited to) work experience, education and/or training, critical skills, and/or business considerations. Highly competitive equity grants are included in the majority of full time offers; and are considered part of Anduril's total compensation package. Additionally, Anduril offers top-tier benefits for full-time employees, including:
Benefits
At Anduril, we invest in our people. Our comprehensive, competitive benefits package (available at little to no cost to employees) ensures you’re supported in health, recovery, and whatever comes next. For more information, Explore Our Benefits.
LocationBoston, Massachusetts, United States; Costa Mesa, California, United States; Seattle, Washington, United States; Washington, District of Columbia, United States
