Partner with engineering teams to design, build, and operate secure-by-default cloud infrastructure across AWS and Google Cloud.
Build reusable Terraform modules and policy-as-code guardrails to make secure implementation easier for engineering teams.
Operate CSPM/CNAPP tooling and drive remediation of cloud vulnerabilities and misconfigurations.
Fullscript is a health technology company that provides a platform for practitioners to access clinical insights, lab interpretations, and high-quality supplements, serving over 125,000 practitioners and 10 million patients. The company has a remote-first culture, emphasizes work-life balance, and values inclusivity and continuous learning.
Build and lead a high-performing Infrastructure Security team focused on cloud security, SASE, WAF, and edge technologies.
Drive security improvements, maintain KPIs on cloud security posture and incident response, and ensure tactical team oversight.
Partner with cross-functional teams and assume the role of Incident Manager during cloud or edge security events.
Applied Systems is an insurtech company that delivers innovative software and services to transform the insurance industry. With over 40 years of experience, the company fosters a culture of learning, collaboration, and diversity to empower its employees and customers alike.
Champion a security-first mindset within Engineering to set the security posture of platform infrastructure.
Design and build automation that makes compliance evidence continuous and translates HITRUST controls into tests.
Embed security into the platform by default through guardrails, policy-as-code, and well-documented patterns.
Redox accelerates healthcare transformation with useful data via its interoperability platform. The fully remote US-based team operates with radical transparency and ownership.
Lead a specialized team of security engineers focused on application, cloud, and AI system security.
Champion shift-left security practices including threat modeling, secure code review, and developer training.
Define cloud security standards and enforce security for AI systems including LLM-based agents.
Acquia empowers ambitious brands to create digital customer experiences using open source Drupal. Headquartered in Boston, MA, it is a Great Place to Work-Certified company and among the world's top software companies.
Design, deploy, and maintain secure cloud environments in AWS and Azure with compliance to DoD frameworks.
Configure IAM, RBAC, and cloud networking like VPC peering and VPNs for secure operations.
Support Infrastructure-as-Code using Terraform, CloudFormation, and optimize cloud resources for cost and security.
Founded in 1989, SOSi is among the largest private, founder-owned technology and services integrators in the defense and government services industry. They deliver tailored solutions and trusted results to enable national security missions worldwide.
Partner with engineering teams to review cloud and compute architecture design changes.
Develop or adopt open-source tools to monitor and harden cloud infrastructure and detect intrusions.
Drive the definition and implementation of security policies and monitor conformance.
Quora operates a global knowledge sharing platform with over 300M monthly unique visitors and Poe, a platform for AI language model interaction. It is a privately held, remote-first company with a culture rooted in transparency, idea-sharing, and experimentation.
Enable software engineering teams to continuously improve the security posture of products and SaaS environments through AppSec and DevSecOps expertise.
Serve as the go-to AppSec expert, mentoring engineers on secure design patterns and coding practices while collaborating on threat models and design reviews.
Lead automation of vulnerability management tooling across CI/CD pipelines, perform security code reviews, and contribute to compliance strategies.
Hypori is a high-growth cybersecurity SaaS company transforming how organizations think about secure mobility. Backed by $55M in funding from investors including UBS and AE Industrial Partners, the company is expanding into new commercial and regulated markets.
Jobgether uses an AI-powered matching process to connect candidates with hiring companies quickly and objectively. They are a remote-first, globally distributed company with an inclusive engineering culture.
Own the operational health of one or two engineering domains (identity, network, cloud, endpoint, monitoring) and lead cross-team security initiatives.
Design security patterns, reference architectures, and standards that the team executes against, ensuring audit-ready documentation.
Mentor mid and associate engineers through pairing, code review, and clear standards to elevate team capability.
Aprio is a Top 20 CPA and advisory firm with over 40 U.S. office locations, international offices, and more than 3,200 team members speaking 60+ languages. They provide expertise and strategic foresight for fast-growing industries, fostering a progressive and innovative culture.
Design and implement defense-in-depth infrastructure and application security solutions for customer-facing SaaS platform in AWS.
Drive architecture, automation, and configuration of native and third-party cloud security solutions for hardening, detection, and response.
Work closely with Product, Engineering, and IT in a DevSecOps model on technologies like WAFs, IAM, Kubernetes, and endpoint security.
Tala is AI-native credit infrastructure for the global majority, combining proprietary risk intelligence with an expanding network of capital and distribution partners to power credit access at scale. Backed by more than $500 million in funding, Tala has distributed over $7 billion to more than 13 million customers across Africa, Latin America, and Asia, with a remote-first culture and office hubs globally.
Lead integration of security across the SDLC, embedding automated testing into CI/CD pipelines.
Secure cloud-native AWS architectures and enforce least privilege access and runtime protections.
Perform threat modeling, automate compliance, and innovate with AI security standards.
TrueML is a mission-driven financial software company that uses machine learning to improve customer experiences for distressed borrowers. The team includes data scientists, financial services experts, and customer experience fanatics building inclusive financial technology.
Lead AppSec program assessments to evaluate current state and help clients prioritize remediation efforts based on risk, resources, and organizational readiness.
Design pragmatic security workflows, processes, and tooling integrations that engineering teams will actually adopt.
Deliver polished client work including clear assessments, actionable roadmaps, and executive communications that drive decision-making.
GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. The company has grown to over 1,200 employees and serves as a trusted advisor to more than 6,200 customers.
Develop, automate, and maintain CI/CD pipelines for optimal software releases.
Collaborate with cross-functional teams to integrate DevOps practices with security.
Support cloud infrastructure using AWS services such as API Gateway, Lambda, S3, EKS, RDS, and Cognito.
LMI is a digital solutions provider dedicated to accelerating government impact with innovation and speed. The company serves defense, space, healthcare, and energy sectors with a focus on agility and collaboration.
Own the architectural shape of the platform on commercial AWS, including VPC, managed PostgreSQL, serverless compute, object storage, observability, and CI/CD defined as code.
Own security and compliance shape for federal identity standards and regulatory frameworks like FedRAMP, HIPAA, SOC 2, and ITAR.
Own internal developer experience, including logs, traces, deploy speed, and the local dev loop, while being on call for systems you design.
LTS is a technology company that applies frontier AI to modernize legacy systems still running in production. The team is small by design, with senior engineers using AI tooling natively, and they value innovation, growth, collaboration, and quality.
Assess existing Azure environment and modernization requirements to inform target architecture.
Design Azure tenant structure including management groups, subscriptions, landing zones, and networking.
Establish governance standards, IaC practices, and produce architecture documentation and runbooks.
Nava is a consultancy and public benefit corporation that helps government agencies modernize technology systems through human-centered design and engineering. It is a remote-first company with a collaborative culture focused on public good.
Develop and implement a multi-tenant Cloud strategy for Managed Services offering.
Design cloud reference architectures and document standardized infrastructure patterns and best practices.
Collaborate with Security and Operations teams to define security best practices and automate compliance.
Smile Digital Health provides a FHIR-based data liberation platform that makes it easy for healthcare stakeholders to collect and exchange data. They were ranked #19 on Deloitte's Technology Fast 50 for 2024 and foster a culture of respect, inclusion, and diversity.
Maintain Risk Management Framework artifacts for DevSecOps pipeline inheritance of NIST SP 800-53 controls.
Complete and validate STIG/SRG checklists quarterly and provide monthly application STIG status reports.
Evaluate program risks, document mitigation strategies, and recommend courses of action to ensure continuous ATO compliance.
DecisionPoint is a company providing cloud services and DevSecOps solutions, supporting ARTRANS AWS environments. It is a regular full-time employer fostering a culture of security and compliance, with an active Secret clearance required for this role.
Design, deploy, and manage cloud infrastructure on FedRAMP-authorized platforms (AWS GovCloud, Azure Government, Google Cloud for Government) supporting Army workloads.
Lead technical execution of cloud migration efforts including workload assessment, lift-and-shift, re-platforming, and cloud-native refactoring.
Implement Infrastructure as Code (IaC) using Terraform, AWS CloudFormation, Azure Bicep, or equivalent tools to automate provisioning and configuration management.
Empower AI provides AI solutions for government agencies, helping federal leaders enhance workforce potential through practical transformation. Headquartered in Reston, VA, the company leverages over 30 years of experience in Health, Defense, and Civilian missions, and is recognized as a 2024 Military Friendly Employer.
Design and implement secure, scalable Azure cloud architectures including landing zones, hybrid environments, and migration from legacy systems.
Embed Zero Trust and security-by-design principles using Azure-native tools like Defender for Cloud, Sentinel, and Entra ID.
Act as Agile Product Owner for Azure infrastructure and security services, managing backlogs and roadmaps while ensuring compliance with regulatory frameworks.
Jobgether is an AI-powered job matching platform that connects candidates with hiring companies. They use a technology-driven process to review applications and share top-fitting candidates directly with employers.
Support the day-to-day security posture of systems across cloud and on-prem environments, including vulnerability management and remediation tracking.
Partner with infrastructure, platform, and engineering teams on secure configuration, access control, logging, and incident readiness.
Support compliance activities related to GovRAMP, FedRAMP, PCI DSS, and internal reviews using AWS security tooling.
Grant Street Group is a growing company that provides SaaS products for electronic payments, auctions, and tax collection. The company fosters a culture of teamwork, professional excellence, and individual responsibility in a technology-rich remote environment.