Principal Compliance Engineer

Space is a warfighting domain. True Anomaly seeks those with the talent and ambition to build the technology that secures it. OUR MISSION True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft, advanced payloads, mission software, and space-based interceptors — enabling the U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground. OUR VALUES Be the offset. We create asymmetric advantages with creativity and ingenuity. What would it take? We challenge assumptions to deliver ambitious results. It’s the people. Our team is our competitive advantage and we are better together. YOUR MISSION We are seeking an experienced Principal Compliance Engineer to lead the design and implementation of secure, compliant architectures within highly regulated cloud environments. This role requires deep expertise in STIG development, encryption standards, and vulnerability remediation, alongside a strong foundation in DevOps and SecOps practices, particularly within the AWS and Azure Government platform. The ideal candidate brings at least 10 years of experience in security engineering or technical compliance and will work cross-functionally to align cloud infrastructure and operations with frameworks such as RMF (DoD IL5 and IL6), and CMMC. This is a hands-on technical role focused on enabling and sustaining system authorization through security automation, technical control implementation, and audit readiness. RESPONSIBILITIES Security & Compliance Engineering Architect, implement, and maintain secure, audit-ready systems and services in AWS and Azure Government environments. Develop and maintain custom STIGs (Security Technical Implementation Guides) for cloud infrastructure, SaaS applications, and IaaS/PaaS configurations and customer-deployed applicati ons. Design and enforce secure configurations using encryption standards such as FIPS 140-2/FIPS 140-3, TLS 1.2+, and data-at-rest protections for regulated data. DevOps & SecOps Integration Embed compliance and security checks into CI/CD pipelines, ensuring that infrastructure-as-code meets regulatory and organizational policies. Integrate technical controls to support monitoring, logging, and alerting consistent with RMF and CMMC requirements. Partner with cyber security operations teams to support incident response, log review, and system hardening efforts. Vulnerability Management & Remediation Lead the technical remediation of vulnerabilities identified through internal scans, third-party testing, or external audits. Work with engineering and DevOps teams to drive secure patch management, system baseline enforcement, and automated vulnerability response workflows. Maintain and operationalize vulnerability metrics dashboards aligned with continuous monitoring plans ( ConMon ). Audit Readiness & Documentation Able to support and manage detailed system documentation including SSPs, network diagrams, control implementations, and POA&Ms. Serve as a technical point of contact during audits and assessments, capable of demonstrating compliance posture through hands-on walkthroughs and evidence collection. Collaborate with DevOps, Cybersecurity teams to translate security requirements into enforceable technical controls and testable artifacts. Cross-Functional Collaboration & Leadership Partner with product, engineering, and compliance teams to implement secure system boundaries and customer segmentation strategies for multi-tenant environments. Provide technical mentorship and occasional leadership to junior compliance engineers or project contributors. Track emerging requirements and proactively update system configurations to meet evolving DoD IL5 , IL6 , and CMMC mandates. QUALIFICATIONS 10+ years of experience in cybersecurity engineering, cloud compliance, or DevSecOps roles. Proven experience designing STIG-compliant configurations, including custom STIG development and validation. Deep understanding of FIPS-validated encryption, TLS configurations, and cryptographic module implementation for data protection. Hands-on experience with vulnerability scanning, remediation planning, and automated patching workflows. Familiarity with DoD RMF (IL5 and IL6), CMMC and related audit frameworks. Proficiency with tools such as Terraform, Ansible, Azure Policy, GitHub Actions, and common SIEM/logging platforms. Experience with authorization boundary design and customer isolation techniques in AWS and Azure Gov environments. Position requires an active security clearance. While all clearance levels will be considered, TS/SCI clearance holders are preferred. PREFERRED SKILLS AND EXPERIENCE Experience with DoD RMF (IL5 and IL6 ) cloud environments. Working knowledge of container security, particularly in AKS or Kubernetes-based deployments. Basic people leadership experience, including mentoring or technical guidance responsibilities. Industry certifications such as CISSP, CCSP, Azure Security Engineer, or relevant compliance certs (e.g., CMMC RP). COMPENSATION Colorado Base Salary: $195,000-$270,000 California Base Salary: $205,000-$285,000 for Long Beach, $225,000 to $310,000 for SF Bay Area Washington D.C. Base Salary: $205,000-$285,000 Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, location, and experience. ADDITIONAL REQUIREMENTS Work Location —Successful candidates will be located near one of our office locations including Centennial, CO; Long Beach, CA; SF Bay Area, or Washington D.C. Work environment —the work environment; temperature, noise level, inside or outside, or other factors that will affect the person's working conditions while performing the job. Physical demands —the physical demands of the job, including bending, sitting, lifting and driving. This position will be open until it is successfully filled. To submit your application, please follow the directions below. #LI-Onsite To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State. True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation, please do not hesitate to let us.

{
  "content_hash": "f4c053c4bcfe0cda57528423ab3919fa5064a2ab58a2e91f4734acd28493fb29",
  "source_hash": "91f39cd1490dcf4dc6369c621d748aa07b1d88dac3b0926e7deeb9d36d87398b",
  "last_changed_at": "2026-05-29T22:56:10.822Z",
  "active_status": "active"
}

{
  "language": "en",
  "location": {
    "raw": "Denver, CO",
    "city": "Denver",
    "region": "CO",
    "country": "United States",
    "is_remote": false,
    "confidence": 0.9
  },
  "salary_max": 270000,
  "salary_min": 195000,
  "inferred_at": "2026-06-06T19:02:29.669Z",
  "launch_scope": {
    "reason": "english_us_canada",
    "included": true,
    "language": "en",
    "location": {
      "raw": "Denver, CO",
      "city": "Denver",
      "region": "CO",
      "country": "United States",
      "is_remote": false,
      "confidence": 0.9
    },
    "countries": [
      "United States"
    ]
  },
  "remote_policy": null,
  "salary_period": "year",
  "workplace_type": "on_site",
  "salary_currency": "USD"
}

{}

{
  "title": "Principal Compliance Engineer",
  "offices": [
    {
      "id": 4004296007,
      "name": "Colorado Springs, CO",
      "location": "Colorado Springs, Colorado, United States",
      "child_ids": [],
      "parent_id": null
    },
    {
      "id": 4004295007,
      "name": "Denver, CO",
      "location": "Denver, Colorado, United States",
      "child_ids": [],
      "parent_id": null
    },
    {
      "id": 4034792007,
      "name": "Long Beach, CA",
      "location": "Los Angeles, California, United States",
      "child_ids": [],
      "parent_id": null
    },
    {
      "id": 4004294007,
      "name": "Washington, DC",
      "location": "Washington, District of Columbia, United States",
      "child_ids": [],
      "parent_id": null
    }
  ],
  "language": "en",
  "location": {
    "name": "Denver, CO or Long Beach, CA or SF Bay Area or Washington D.C."
  },
  "metadata": [],
  "updated_at": "2026-05-29T13:52:10-04:00",
  "departments": [
    {
      "id": 4064552007,
      "name": "Governance, Risk, & Compliance",
      "child_ids": [],
      "parent_id": 4064545007
    }
  ],
  "company_name": "True Anomaly",
  "requisition_id": 4590918007,
  "first_published": "2026-02-10T18:47:17-05:00",
  "application_deadline": null
}