GRC Careers

JobsPrincipal Compliance Engineer

Principal Compliance Engineer

True Anomaly
ComplianceOn-siteFull-timeDenver, CO or Long Beach, CA or SF Bay Area or Washington D.C.

div class= content-intro p class= ms-outlook-mobile-reference-message Space is a warfighting domain. True Anomaly seeks those with the talent and ambition to build the technology that secures it. /p p class= ms-outlook-mobile-reference-message u OUR MISSION /u /p p class= ms-outlook-mobile-reference-message True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft, advanced payloads, mission software, and space-based interceptors — enabling the U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground. /p p class= ms-outlook-mobile-reference-message u OUR VALUES /u /p ul li class= ms-outlook-mobile-reference-message strong Be the offset. /strong span class= Apple-converted-space nbsp; /span We create asymmetric advantages with creativity and ingenuity. /li li class= ms-outlook-mobile-reference-message strong What would it take? /strong nbsp;We challenge assumptions to deliver ambitious results. /li li class= ms-outlook-mobile-reference-message strong It’s the people. /strong nbsp;Our team is our competitive advantage and we are better together. /li /ul /div p u YOUR MISSION /u /p p We are seeking an experienced Principal Compliance Engineer to lead the design and implementation of secure, compliant architectures within highly regulated cloud environments. This role requires deep expertise in STIG development, encryption standards, and vulnerability remediation, alongside a strong foundation in DevOps and SecOps practices, particularly within the AWS and Azure Government platform. nbsp; /p p The ideal candidate brings at least 10 years of experience in security engineering or technical compliance and will work cross-functionally to align cloud infrastructure and operations with frameworks such as RMF (DoD IL5 and IL6), and CMMC. This is a hands-on technical role focused on enabling and sustaining system authorization through security automation, technical control implementation, and audit readiness. nbsp; /p p strong RESPONSIBILITIES /strong /p p strong span data-contrast= none span data-ccp-parastyle= Normal (Web) Security amp; Compliance Engineering /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /strong /p ul li span data-contrast= none span data-ccp-parastyle= Normal (Web) Architect, implement, and nbsp; /span span data-ccp-parastyle= Normal (Web) maintain /span span data-ccp-parastyle= Normal (Web) nbsp;secure, audit-ready systems and services in nbsp; /span span data-ccp-parastyle= Normal (Web) AWS and nbsp; /span span data-ccp-parastyle= Normal (Web) Azure nbsp; /span span data-ccp-parastyle= Normal (Web) Government environments. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Develop and nbsp; /span span data-ccp-parastyle= Normal (Web) maintain /span span data-ccp-parastyle= Normal (Web) nbsp;custom STIGs (Security Technical Implementation Guides) for cloud infrastructure, SaaS applications, and IaaS/PaaS configurations /span span data-ccp-parastyle= Normal (Web) nbsp;and customer-deployed applicati /span span data-ccp-parastyle= Normal (Web) ons. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Design and enforce secure configurations using encryption standards such as FIPS 140-2/FIPS 140-3, TLS 1.2+, and data-at-rest protections for regulated data. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li /ul p strong span data-contrast= none span data-ccp-parastyle= Normal (Web) DevOps amp; SecOps Integration /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /strong /p ul li span data-contrast= none span data-ccp-parastyle= Normal (Web) Embed compliance and security checks into CI/CD pipelines, ensuring that infrastructure-as-code meets regulatory and organizational policies. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Integrate technical controls to support monitoring, logging, and alerting consistent with nbsp; /span span data-ccp-parastyle= Normal (Web) RMF /span span data-ccp-parastyle= Normal (Web) nbsp;and CMMC requirements. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Partner with nbsp; /span span data-ccp-parastyle= Normal (Web) cyber /span span data-ccp-parastyle= Normal (Web) security operations teams to support incident response, log review, and system hardening efforts. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li /ul p strong span data-contrast= none span data-ccp-parastyle= Normal (Web) Vulnerability Management amp; Remediation /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /strong /p ul li span data-contrast= none span data-ccp-parastyle= Normal (Web) Lead the technical remediation of vulnerabilities nbsp; /span span data-ccp-parastyle= Normal (Web) identified /span span data-ccp-parastyle= Normal (Web) nbsp;through internal scans, third-party testing, or external audits. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Work with engineering and DevOps teams to drive secure patch management, system baseline enforcement, and automated vulnerability response workflows. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Maintain and operationalize vulnerability metrics dashboards aligned with continuous monitoring plans ( /span span data-ccp-parastyle= Normal (Web) ConMon /span span data-ccp-parastyle= Normal (Web) ). /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li /ul p strong span data-contrast= none span data-ccp-parastyle= Normal (Web) Audit Readiness amp; Documentation /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /strong /p ul li span data-contrast= none span data-ccp-parastyle= Normal (Web) Able to support nbsp; /span span data-ccp-parastyle= Normal (Web) and manage detailed system documentation including SSPs, network diagrams, control implementations, and POA amp;Ms. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Serve as a technical point /span span data-ccp-parastyle= Normal (Web) nbsp;of contact during audits and assessments, capable of nbsp; /span span data-ccp-parastyle= Normal (Web) demonstrating /span span data-ccp-parastyle= Normal (Web) nbsp;compliance posture through hands-on walkthroughs and evidence collection. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Collaborate with nbsp; /span span data-ccp-parastyle= Normal (Web) DevOps, Cybersecurity /span span data-ccp-parastyle= Normal (Web) nbsp;teams to translate security requirements into enforceable technical controls and testable artifacts. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li /ul p strong span data-contrast= none span data-ccp-parastyle= Normal (Web) Cross-Functional Collaboration amp; Leadership /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /strong /p ul li span data-contrast= none span data-ccp-parastyle= Normal (Web) Partner with product, engineering, and compliance teams to implement secure system boundaries nbsp; /span span data-ccp-parastyle= Normal (Web) and customer segmentation /span span data-ccp-parastyle= Normal (Web) nbsp;strategies for multi-tenant environments. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Provide technical mentorship and occasional leadership to junior compliance engineers or project contributors. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Track emerging requirements and proactively update system configurations to meet evolving DoD IL5 /span span data-ccp-parastyle= Normal (Web) , IL6 /span span data-ccp-parastyle= Normal (Web) , and CMMC mandates. /span /span span data-ccp-props= { quot;134233117 quot;:false, quot;134233118 quot;:false, quot;201341983 quot;:0, quot;335559738 quot;:0, quot;335559739 quot;:0, quot;335559740 quot;:240} nbsp; /span /li /ul p strong QUALIFICATIONS /strong /p ul li 10+ years of experience in cybersecurity engineering, cloud compliance, or DevSecOps roles. nbsp; /li li Proven experience designing STIG-compliant configurations, including custom STIG development and validation. nbsp; /li li Deep understanding of FIPS-validated encryption, TLS configurations, and cryptographic module implementation for data protection. nbsp; /li li Hands-on experience with vulnerability scanning, remediation planning, and automated patching workflows. nbsp; /li li Familiarity with DoD RMF (IL5 and IL6), CMMC and related audit frameworks. nbsp; /li li Proficiency with tools such as Terraform, Ansible, Azure Policy, GitHub Actions, and common SIEM/logging platforms. nbsp; /li li Experience with authorization boundary design and customer isolation techniques in AWS and Azure Gov environments. nbsp; /li li Position requires an active security clearance. While all clearance levels will be considered, TS/SCI clearance holders are preferred. /li /ul p strong PREFERRED SKILLS AND EXPERIENCE /strong /p ul li span data-contrast= none span data-ccp-parastyle= Normal (Web) Experience nbsp; /span span data-ccp-parastyle= Normal (Web) with nbsp; /span /span span data-contrast= none span data-ccp-parastyle= Normal (Web) DoD /span span data-ccp-parastyle= Normal (Web) nbsp;RMF (IL5 and IL6 /span span data-ccp-parastyle= Normal (Web) ) /span /span span data-contrast= none span data-ccp-parastyle= Normal (Web) nbsp; /span span data-ccp-parastyle= Normal (Web) cloud environments. /span /span span data-ccp-props= { quot;134233117 quot;:true, quot;134233118 quot;:true, quot;201341983 quot;:0, quot;335559739 quot;:160, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Working knowledge of container security, particularly in AKS or Kubernetes-based deployments. /span /span span data-ccp-props= { quot;134233117 quot;:true, quot;134233118 quot;:true, quot;201341983 quot;:0, quot;335559739 quot;:160, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Basic people leadership experience, including mentoring or technical guidance responsibilities. /span /span span data-ccp-props= { quot;134233117 quot;:true, quot;134233118 quot;:true, quot;201341983 quot;:0, quot;335559739 quot;:160, quot;335559740 quot;:240} nbsp; /span /li li span data-contrast= none span data-ccp-parastyle= Normal (Web) Industry certifications such as CISSP, CCSP, Azure Security Engineer, or relevant compliance certs (e.g., /span span data-ccp-parastyle= Normal (Web) nbsp; /span span data-ccp-parastyle= Normal (Web) CMMC RP). /span /span span data-ccp-props= { quot;134233117 quot;:true, quot;134233118 quot;:true, quot;201341983 quot;:0, quot;335559739 quot;:160, quot;335559740 quot;:240} nbsp; /span /li /ul p strong COMPENSATION /strong /p ul li data-leveltext=  data-font= Symbol data-listid= 2 data-list-defn-props= { quot;335552541 quot;:1, quot;335559685 quot;:720, quot;335559991 quot;:360, quot;469769226 quot;: quot;Symbol quot;, quot;469769242 quot;:[8226], quot;469777803 quot;: quot;left quot;, quot;469777804 quot;: quot; quot;, quot;469777815 quot;: quot;hybridMultilevel quot;} data-aria-posinset= 1 data-aria-level= 1 strong span data-contrast= none Colorado Base Salary: /span /strong span data-contrast= none $195,000-$270,000 /span /li li data-leveltext=  data-font= Symbol data-listid= 2 data-list-defn-props= { quot;335552541 quot;:1, quot;335559685 quot;:720, quot;335559991 quot;:360, quot;469769226 quot;: quot;Symbol quot;, quot;469769242 quot;:[8226], quot;469777803 quot;: quot;left quot;, quot;469777804 quot;: quot; quot;, quot;469777815 quot;: quot;hybridMultilevel quot;} data-aria-posinset= 1 data-aria-level= 1 strong span data-contrast= none California Base Salary: /span /strong span data-contrast= none $205,000-$285,000 for Long Beach, $225,000 to $310,000 for SF Bay Area /span /li li data-leveltext=  data-font= Symbol data-listid= 2 data-list-defn-props= { quot;335552541 quot;:1, quot;335559685 quot;:720, quot;335559991 quot;:360, quot;469769226 quot;: quot;Symbol quot;, quot;469769242 quot;:[8226], quot;469777803 quot;: quot;left quot;, quot;469777804 quot;: quot; quot;, quot;469777815 quot;: quot;hybridMultilevel quot;} data-aria-posinset= 1 data-aria-level= 1 strong span data-contrast= none Washington D.C. Base Salary: /span /strong span data-contrast= none $205,000-$285,000 /span /li li data-leveltext=  data-font= Symbol data-listid= 2 data-list-defn-props= { quot;335552541 quot;:1, quot;335559685 quot;:720, quot;335559991 quot;:360, quot;469769226 quot;: quot;Symbol quot;, quot;469769242 quot;:[8226], quot;469777803 quot;: quot;left quot;, quot;469777804 quot;: quot; quot;, quot;469777815 quot;: quot;hybridMultilevel quot;} data-aria-posinset= 1 data-aria-level= 1 strong span data-contrast= none Equity + Benefits /span /strong span data-contrast= none including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave /span span data-ccp-props= { quot;134233117 quot;:true, quot;134233118 quot;:true, quot;201341983 quot;:0, quot;335559739 quot;:160, quot;335559740 quot;:240} nbsp; /span /li /ul p span data-ccp-props= { quot;134233117 quot;:true, quot;134233118 quot;:true, quot;201341983 quot;:0, quot;335559739 quot;:160, quot;335559740 quot;:240} em span class= TextRun SCXW83253800 BCX0 lang= EN-US data-contrast= none span class= NormalTextRun SCXW83253800 BCX0 Your actual level and base salary will be nbsp; /span span class= NormalTextRun SCXW83253800 BCX0 determined /span span class= NormalTextRun SCXW83253800 BCX0 on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, location, and experience. /span /span /em span class= EOP SCXW83253800 BCX0 data-ccp-props= { quot;335559739 quot;:0} nbsp; /span /span /p p strong ADDITIONAL REQUIREMENTS /strong /p ul li strong Work Location /strong —Successful candidates will be located near one of our office locations including Centennial, CO; Long Beach, CA; SF Bay Area, or Washington D.C. nbsp; /li li strong Work environment /strong —the work environment; temperature, noise level, inside or outside, or other factors that will affect the person s working conditions while performing the job. /li li strong Physical demands /strong —the physical demands of the job, including bending, sitting, lifting and driving. /li /ul p span class= TextRun SCXW267002851 BCX0 lang= EN-US data-contrast= auto span class= NormalTextRun SCXW267002851 BCX0 This position will be open until it is successfully filled. To /span span class= NormalTextRun SCXW267002851 BCX0 submit /span span class= NormalTextRun SCXW267002851 BCX0 your application, please follow the directions below. br #LI-Onsite /span /span /p div class= content-conclusion p To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State. /p p True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation, please do not hesitate to let us. /p p nbsp; /p /div

Apply for this role → Back to all jobs