Senior Platform Engineer, Security

SimplesenseDenver, CO
Hybrid

About The Position

Simplesense is looking for a Senior Platform Engineer, Security to join our hybrid, US-based team. The Senior Platform Engineer, Security owns the automation, hardening, and deployment of our security tooling and architecture across hybrid environments, with a specific focus on protecting a hybrid Information Technology (IT) and Operational Technology (OT) environment. You will bridge the gap between modern infrastructure-as-code (IaC) and the rigorous demands of enterprise cloud and platform security. This position will drive the technical implementation, configuration automation, foundational security reviews, and remediation process for our core security capabilities. The ideal candidate is an automation-first security professional who values infrastructure as code, possesses a deep understanding of modern identity, remote access, discovery, observability and vulnerability tooling, and thrives in navigating complex, highly regulated environments. You can complete work skillfully, independently, and are excellent at giving and receiving constructive technical feedback.

Requirements

  • Extensive professional experience (5-10 years) in platform engineering, system administration, cloud engineering, or DevSecOps, with an emphasis on security and automation.
  • Deep, hands-on experience deploying, configuring, and tuning enterprise security tooling
  • Proven track record of managing infrastructure-as-code (IaC) via tools like Cloudformation, Terraform, OpenTofu, or Ansible, across hybrid environments.
  • Strong experience working with application APIs for configuration automation and management.
  • Solid understanding of secure software supply chain mechanics, including package repositories, artifact management, and proxy configurations.
  • Strong AWS cloud engineering and security background, with demonstrated experience in network topology automation, firewalls, autoscaling groups, and native security services (SecurityHub, GuardDuty, Inspector).
  • Familiarity with NIST 800-53 and NIST 800-82 compliance
  • Ability to work a hybrid schedule, primarily based in the Denver metro area , with an expectation of being in the office at least two or three times weekly.
  • Must be a U.S. Citizen and able to obtain a DoD NIPR network account and Common Access Card (CAC).
  • Current DoD 8140 Intermediate or Advanced Foundational Qualification or ability to obtain within 90 days of hire
  • Must have, or be able to obtain, a Secret Clearance.

Nice To Haves

  • Experience in the Operational Technology (OT), ICS/SCADA, or industrial technology sectors and OT/CS security tooling (ex: Nozomi).
  • Familiarity with the DoD Zero Trust strategy and target level objectives
  • Relevant certifications (e.g., AWS Certified Security - Specialty, GIAC GICSP/GRID, CISSP).
  • Experience automating NIST 800-53 frameworks or DISA STIG compliance.

Responsibilities

  • Security Tooling & Compliance Codification: Partner with the Security Team to intake defined compliance baselines and translate them into automated configuration management playbooks for enterprise tools.
  • IaC Deployment & Configuration Automation: Build, maintain, and scale automated IaC deployments to ensure operational environments and tools are managed as code.
  • Access & Identity Automation: Collaborate with Security and Platform team members to automate user provisioning and access through existing application features, APIs and IaC methodologies.
  • DevSecOps: Embed security concepts and tooling into the development and deployment pipeline to facilitate early identification and remediation opportunities.
  • Cloud Network Security: Implement and harden automated security groups, network policies, and cloud infrastructure to securely segment dataflows across environments following Zero Trust principals.
  • Secure Package Management: Deploy, configure, and maintain secure package management proxies and local repos to safeguard infrastructure pipelines and the software supply chain.
  • Hands-on Engineering (70%): Write clean, reusable infrastructure code, configuration scripts, and API integrations, setting the technical pattern for secure-by-default platform architecture.
  • Cross-Functional Alignment (30%): Collaborate with engineering and security teams to embed security tools directly into core infrastructure pipelines, breaking down work and resolving deployment bottlenecks.

Benefits

  • Equity
  • Medical, Life, Short-Term Disability, and AD&D insurance
  • Medical travel coverage
  • Dental coverage
  • Vision coverage
  • 401k matching
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service