Senior Software Engineer, Security Applications & Tools

Anduril Industries•Washington, DC

15h

About The Position

Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the defense industry, Anduril is changing how military systems are designed, built and sold. Anduril’s family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a realtime, 3D command and control center. As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years. Team Overview The Security Applications & Tools (SAT) team within Lattice Platform Security builds custom software systems that detect, manage, and remediate vulnerabilities across Anduril's product ecosystem at scale. We don't just deploy scanners — we design and build distributed scanning infrastructure, policy enforcement engines, and vulnerability management platforms from the ground up. Our stack includes event-driven architectures on AWS, custom Go services, policy-as-code systems, and integrations that span CI pipelines to production environments. Job Description We're looking for a senior software engineer to design and build the systems that keep Anduril's software secure. This is a software engineering role first — you'll architect distributed systems, write production Go and Python, build APIs, and operate services at scale. The domain is security, but the work is building real software: custom scanning orchestration pipelines, policy engines that evaluate thousands of configurations against security rules, and data systems that track vulnerabilities across an entire product ecosystem. If you want to write code that solves hard engineering problems in the security space rather than configure off-the-shelf tools, this is the role.

Requirements

5+ years of experience designing and developing production software systems
Strong proficiency in Go — this is the team's primary language for backend services
Experience building distributed systems or data pipelines (event-driven architectures, message queues, APIs, worker systems)
Proficiency with Python for scripting, automation, and tooling
Experience with cloud infrastructure (AWS preferred: Lambda, SQS, S3, ECR, or equivalent)
Ability to read and understand security tool output (vulnerability reports, SBOMs, static analysis results) and build systems around it
Strong communication skills with the ability to work across teams
Eligible to obtain and maintain active U.S. Secret security clearance

Nice To Haves

Experience with CI/CD systems (CircleCI, GitHub Actions) and building integrations for developer workflows
Familiarity with container security concepts, SBOM generation tools (Syft), and vulnerability scanners (Trivy, Grype, Semgrep)
Experience with Terraform and infrastructure-as-code
Experience with policy-as-code frameworks (OPA/Rego, Conftest)
Background in application security or product security engineering
Experience with Kubernetes and container orchestration
Familiarity with Nix build systems

Responsibilities

Design and build distributed services for vulnerability scanning, policy enforcement, and remediation workflows
Develop and extend the team's scanning orchestration platform — an event-driven architecture built on AWS (SQS, Lambda, S3, ECR) that processes scan events at org-wide scale
Build and maintain policy-as-code systems that programmatically enforce security policy in CI/CD pipelines and deployment configurations
Design APIs and CLIs that integrate security tooling into developer workflows without creating friction
Develop data pipelines that aggregate, normalize, and route findings from multiple scanning engines into vulnerability management systems
Collaborate with engineering teams across Anduril to understand their security needs and build tooling that addresses them
Evaluate third-party security tools and build custom integrations or replacements where needed
Participate in on-call rotation for security tooling infrastructure

Benefits

Healthcare Benefits
US Roles: Comprehensive medical, dental, and vision plans at little to no cost to you.
UK & AUS Roles: We cover full cost of medical insurance premiums for you and your dependents.
IE Roles: We offer an annual contribution toward your private health insurance for you and your dependents.
Additional Benefits
Income Protection: Anduril covers life and disability insurance for all employees.
Generous time off: Highly competitive PTO plans with a holiday hiatus in December. Caregiver & Wellness Leave is available to care for family members, bond with a new baby, or address your own medical needs.
Family Planning & Parenting Support: Coverage for fertility treatments (e.g., IVF, preservation), adoption, and gestational carriers, along with resources to support you and your partner from planning to parenting.
Mental Health Resources: Access free mental health resources 24/7, including therapy and life coaching. Additional work-life services, such as legal and financial support, are also available.
Professional Development: Annual reimbursement for professional development
Commuter Benefits: Company-funded commuter benefits based on your region.
Relocation Assistance: Available depending on role eligibility.
Retirement Savings Plan
US Roles: Traditional 401(k), Roth, and after-tax (mega backdoor Roth) options.
UK & IE Roles: Pension plan with employer match.
AUS Roles: Superannuation plan.