Enterprise Security Engineer III

As an Enterprise Security Engineer, you will be joining a team focused on securing the foundations that allow True Anomaly to fulfill its mission. In this position, you will help design, implement, and maintain security controls across employee workstations, on-prem servers, and cloud environments. You will work alongside senior engineers and organizational partners to ensure we are building security directly into the foundations of our company while aligning with compliance requirements. You will regularly contribute to answering the question "How can we enable the business to do this with as little risk as necessary?"

As part of True Anomaly's Enterprise Security team, you will have the opportunity to contribute to solutions for a wide variety of security challenges. In one project you might be supporting improvements to enterprise identity, while in another you might be helping build out guard rails for a manufacturing environment. You will be joining a fast-paced, challenging environment where your contributions and growth will have a direct impact on our security posture.

This is an ideal role for someone who is eager to develop deep security engineering expertise, wants to grow within a high-impact organization, and is energized by the opportunity to solve challenging problems alongside experienced professionals.

This position requires the ability to obtain and maintain a security clearance.

• →Develop solutions to automate tasks or integrate systems in support of securing the enterprise
• →Triage vulnerability scans and perform risk assessments to identify and help mitigate potential threats.
• →Implement and maintain security hardening configurations for enterprise and corporate systems.
• →Support subject matter experts in evaluating and improving enterprise and corporate systems security.
• →Assist with management and security configuration of cloud and on-premise assets.
• →Identify potential deficiencies in the current security program and escalate recommendations.
• →Collaborate with cross-functional teams to help ensure security measures are integrated into the system development lifecycle.
• →Monitor and analyze security logs from various sources (e.g., SIEMs, IDS/IPS) to identify suspicious activities and support incident response efforts.
• →Contribute to the development and maintenance of security policies, procedures, and guidelines.
• →Stay updated with the latest security trends, threats, and technology solutions.
• →Provide support to internal stakeholders on compliance and security best practices.
• →Participate in change management processes, helping identify risks in implementation plans.

• Minimum of 4 years of experience in information security or a related technical field, with exposure to security engineering.
• Working knowledge of at least one programming language such as Python, Elixir, Rust, Go.
• Familiarity with security tools and technologies such as SIEM, IDS/IPS, vulnerability scanners, MDM, and endpoint protection.
• Understanding of common vulnerabilities and attack vectors.
• Solid technical understanding of common enterprise technologies, including on-prem and SaaS.
• Experience working alongside IT teams to support security initiatives.
• Strong analytical, problem-solving, and communication skills.
• Ability to work both independently and collaboratively in a fast-paced environment.
• Relevant certifications such as Security+, GSEC, OSCP, or equivalents are a plus.

• Active security clearance or ability to obtain and maintain security clearance.
• Bachelor's degree in Computer Science, Information Security, or equivalent professional experience.
• Experience contributing to projects that improve organizational security.
• Exposure to manufacturing or operational technology environments.
• Experience with cloud platforms such as Azure, AWS, or Google Cloud.
• Familiarity with infrastructure-as-code paradigms, Terraform, GitOps, CI/CD, etc.
• Familiarity with FedRAMP, CMMC, NIST frameworks.
• Interest in Threat Detection Engineering and security operations practices and tools.
• Experience working at a startup and/or in the defense industry.