Security Engineer

Security Engineer

Second Front Systems (2F) is seeking an ambitious and visionary Security Engineer. You will be at the intersection of engineering and defense — building and securing cloud-native systems that power the Game Warden platform. Our Cybersecurity team safeguards mission-critical infrastructure for the DoD and other government customers by designing, deploying, and automating detection and response capabilities across our multi-cloud environments. You'll lead efforts to build and automate Blue Team tooling, improve visibility into system activity, and strengthen our ability to detect, contain, and respond to security threats in real time.

At 2F, we thrive on innovation and purpose, combining a startup's agility with a clear mission to support national security. You will be at the forefront of driving the DevSecOps strategy behind the deployment and scaling of our revolutionary Game Warden platform—an industry-leading tool that is accelerating the secure adoption of mission-critical SaaS solutions for the U.S. government. If you're ready to contribute to a team that values ingenuity, collaboration, and impact, we want to hear from you.

Note: This role requires U.S. citizenship due to government contract requirements. Additionally, candidates must reside in one of our approved hiring hubs:

• DC/Maryland/Virginia
• Raleigh/Durham/Chapel Hill, NC
• Denver/Colorado Springs, CO
• Dallas/Fort Worth, TX

What You'll Do

• Design, develop, and deploy security automation and monitoring microservices in Go (Golang).
• Build and maintain security automation and monitoring solutions with a focus on Azure environments, leveraging tools such as Microsoft Defender for Cloud, Azure Monitor, and Azure AD.
• Enhance and maintain SIEM integrations, log pipelines, and threat detection logic across AWS, Kubernetes, and application layers.
• Build infrastructure as code (IaC) with Pulumi in Go to securely deploy cloud-native services.
• Develop and maintain incident detection and response automation, integrating with tools such as AWS Security Hub, GuardDuty, Inspector, Wazuh, and others.
• Create and manage dashboards, alerts, and playbooks to support real-time monitoring and Blue Team operations.
• Support threat-hunting initiatives through custom log enrichment, alert tuning, and behavioral detection.
• Work closely with the other Security Engineers and the platform team to assess risk, harden configurations, and evolve security posture.
• Document architectures, detection logic, and operational procedures to ensure repeatability and scalability.

Skills You'll Bring to Our Team

• 3–5 years of experience in DevSecOps, Blue Team engineering, or security automation.
• Strong experience developing tools and microservices in Go (Golang).
• Proficiency with Pulumi or similar Infrastructure-as-Code (IaC) frameworks.
• Deep understanding of AWS security services, IAM, and networking fundamentals.
• Experience with Kubernetes, Docker, and GitLab CI/CD pipelines.
• Proven ability to analyze logs, correlate events, and respond to incidents.
• Experience integrating or managing SIEMs (e.g., Wazuh, Elastic, Opensearch).
• Familiarity with threat detection, alerting, and response automation in cloud environments.
• DoD Secret Clearance (active or eligible).
• DoD 8570/8140 compliant IAT2

Preferred Qualifications

• Certified AWS, CKA, CKAD,
• CySA+, Sec+, or DoD 8570/8140 compliant IAT2 OR
• Ability to attain DoD 8570 IAT Level II certification within 3 months of hire.
• Hands-on experience with threat intelligence enrichment, behavioral analytics, or custom detections.
• Familiarity with cilium, keycloak, kyverno, or tetragon for runtime security and observability.
• Experience in data engineering or security data pipelines (PLG stack, cloudtrail, guardDuty.).

The expected base salary range for this role is $137,000-$191,000. Final compensation will be based on factors such as experience, skills, level, and geographic location. This role may also be eligible for discretionary bonuses and equity grants as part of the total compensation package.

Success at 2F Looks Like

• Viewing obstacles as opportunities for growth
• Having a bias toward action and tangible, measurable results
• Striving to be both compassionate and direct with your feedback
• Being team-oriented and inclusive with your actions

Perks & Benefits

This role is full time. As a public benefit corporation, we're a team of purpose-driven trailblazers transforming the future of U.S. national security. We hire the best to do their best and, as such, we are committed to providing the perks and benefits you need to be successful—both in- and outside the workplace.

We offer you:

• Competitive Salary
• 100% Healthcare, vision and dental coverage
• 401(k) + 3% company contribution
• Equity incentive plan
• Tech + office supplies stipend
• Annual professional development stipend
• Flexible paid time off + federal holidays off
• Parental leave
• Work from anywhere
• Referral Bonus

Who We Are

Second Front Systems (2F) is a public-benefit software company powering software for the free world. We eliminate the friction that slows innovation, enabling faster, more secure development and deployment of software across government and regulated networks. Built by national security veterans and backed by top-tier venture capital, our platform is trusted by the world's leading organizations to cut deployment timelines from years to weeks. We move fast, solve hard problems, and deliver trusted capabilities where they're needed most. Our work strengthens global security and gives the United States and its allies a lasting competitive advantage. Learn more at secondfront.com.

One last thing…

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, pregnancy, age, national origin, disability status, genetic information, protected veteran status, or any other characteristic protected by law.

Are you ready to join our team? To apply, click the "Apply for This Job" button at the top or bottom of this page and complete the application form.

This position will remain open until filled, and applications will be reviewed on a rolling basis.

State Notices

Colorado: In accordance with Colorado law, applicants may redact their date of birth, dates of attendance, and dates of graduation from any uploaded documents.

Maryland: Under Maryland law, an employer may not require or demand, as a condition of employment, prospective employment, or continued employment, that an individual submit to or take a polygraph examination or similar test. An employer who violates this law is guilty of a misdemeanor and subject to a fine not exceeding $100.