Senior Software Engineer, Application Security
About the role
The Security Applications & Tools (SAT) team within Lattice Platform Security builds custom software systems that detect, manage, and remediate vulnerabilities across Anduril's product ecosystem at scale. We don't just deploy scanners — we design and build distributed scanning infrastructure, policy enforcement engines, and vulnerability management platforms from the ground up. Our stack includes event-driven architectures on AWS, custom Go services, policy-as-code systems, and integrations that span CI pipelines to production environments.
Responsibilities
- Design and build distributed services for vulnerability scanning, policy enforcement, and remediation workflows
- Develop and extend the team's scanning orchestration platform — an event-driven architecture built on AWS (SQS, Lambda, S3, ECR) that processes scan events at org-wide scale
- Build and maintain policy-as-code systems that programmatically enforce security policy in CI/CD pipelines and deployment configurations
- Create APIs and CLIs that integrate security tooling into developer workflows without creating friction
- Design and develop data pipelines that aggregate, normalize, and route findings from multiple scanning engines into vulnerability management systems
- Collaborate with engineering teams across Anduril to understand their security needs and build tooling that addresses them
- Evaluate third-party security tools and build custom integrations or replacements where needed
- Participate in on-call rotation for security tooling infrastructure
Requirements
- 5+ years of experience designing and developing production software systems
- Strong proficiency in Go — this is the team's primary language for backend services
- Experience building distributed systems or data pipelines (event-driven architectures, message queues, APIs, worker systems)
- Proficiency with Python for scripting, automation, and tooling
- Experience with cloud infrastructure (AWS preferred: Lambda, SQS, S3, ECR, or equivalent)
- Ability to read and understand security tool output (vulnerability reports, SBOMs, static analysis results) and build systems around it
- Strong communication skills with the ability to work across teams
- Eligible to obtain and maintain active U.S. Secret security clearance
Qualifications
- Experience with CI/CD systems (CircleCI, GitHub Actions) and building integrations for developer workflows
- Familiarity with container security concepts, SBOM generation tools (Syft), and vulnerability scanners (Trivy, Grype, Semgrep)
- Experience with Terraform and infrastructure-as-code
- Experience with policy-as-code frameworks (OPA/Rego, Conftest)
- Background in application security or product security engineering
- Experience with Kubernetes and container orchestration
- Familiarity with Nix build systems
Skills
- Experience with AWS services (Lambda, SQS, S3, ECR)
- Proficiency in Go and Python
- Experience with event-driven architectures and cloud-native development
- Knowledge of security tool outputs and integration
- Experience with CI/CD systems and security tooling
- Experience with policy-as-code frameworks
- Experience with container security and SBOM generation
- Experience with Kubernetes and container orchestration
- Experience with Nix build systems
Benefits
Highly competitive equity grants are included in the majority of full time offers; and are considered part of Anduril's total compensation package. Additionally, Anduril offers top-tier benefits for full-time employees, including:
- Comprehensive, competitive benefits package
- Health, recovery, and future support
Pay
US Salary Range $191,000—$253,000 USD
Schedule
Flexible work schedule to accommodate the needs of the role and the team.