About this role
Kaizen builds modern AI-native software that replaces legacy government systems. The platform already reaches 40 million residents across 50+ agencies in 17 states. As the first dedicated security engineer on the platform team, you will own security architecture and federal compliance end to end.
You will architect controls across infrastructure, platform, CI/CD, and application layers with a focus on AWS GovCloud and Terraform. The role includes writing SSPs, managing POA&Ms, and embedding compliance into daily engineering workflows rather than bolting it on afterward.
Kaizen has signed multiple federal customers and continues to expand. You will partner directly with engineering teams while serving as the technical voice with assessors, auditors, and federal security stakeholders in a fast-moving early-stage environment.
The position offers the chance to establish secure-by-default practices that residents and public servants can trust. You will shape continuous compliance workflows and leverage modern tooling to scale security across a growing federal footprint.
Requirements
- 5+ years of hands-on experience building and securing cloud-native platforms in AWS and Terraform
- Direct experience with federal authorization work such as FedRAMP, CMMC, or DoD IL
- Deep familiarity with NIST 800-53 and the ability to translate controls into pragmatic engineering work
- Strong working knowledge of modern supply chain security including SBOMs, image signing, workload identity, and secure CI/CD
- Track record operating effectively in early-stage or fast-moving environments
Responsibilities
- Architect and operationalize security across infrastructure, platform, CI/CD, and application layers with a focus on AWS and Terraform
- Lead readiness across FedRAMP, CMMC, and DoD Impact Levels by translating NIST 800-53 controls into engineering implementations
- Own the SSPs, POA&Ms, and technical policy documentation for federal authorization work
- Build continuous compliance and audit-readiness workflows that make accreditation a byproduct of how the team ships
- Establish secure software supply chain practices including SBOMs, image signing, workload identity, and hardened deployment pipelines
- Own the technical relationship with assessors, auditors, and federal security stakeholders
- Drive a secure-by-default engineering culture using AI-driven scanning and hardened-image platforms
Similar roles
Linux Site Reliability Engineer (SRE)
2d2 days agoOCBC Bank
Cyberjaya, MY · Full-time · MYR 120,000 – MYR 180,000
Detection Engineer
2w2 weeks agoOTP Bank
Budapest, HU · Full-time
Senior Application Security Engineer
2w2 weeks agoFree
Paris, FR · Full-time · €70,000 – €95,000
Senior Security Engineer - AWS Security
2w2 weeks agoAmazon.com
Seattle, US · Full-time · $178,400 – $226,700