# Senior Compliance Engineer **Company**: Anduril Industries **Location**: Costa Mesa, California, United States **Work arrangement**: onsite **Experience**: senior **Job type**: full-time **Category**: Engineering **Industry**: Technology **Apply**: https://job-boards.greenhouse.io/andurilindustries/jobs/5087188007?utm_source=yubhub.co&utm_medium=jobs_feed&utm_campaign=apply **Canonical**: https://yubhub.co/jobs/job_38a5c86c-54e ## Description JOB TITLE: Senior Compliance Engineer LOCATION: Costa Mesa, California, United States DEPARTMENT: Corporate Technology : Information Security : Corporate Assurance As a Senior Compliance Engineer at Anduril Industries, you will be responsible for driving automation, compliance, and security engineering principles into the design, integration, and operation of Anduril's internal systems. This is a technically hands-on role that requires a strong DevSecOps background with deep expertise in cloud infrastructure security, embedded systems security, and federal compliance frameworks. ### Key Responsibilities - Design, develop, and maintain Infrastructure as Code (IaC) and Policy as Code (PaC) that enforce compliance with NIST SP 800-171 and 800-53, CMMC, and other applicable frameworks, enabling developers to deploy CMMC-certified applications using pre-packaged, compliant infrastructure templates. - Architect, build, and deploy robust, scalable security controls across Anduril's corporate, development, and production cloud environments (AWS, Azure, GCP) and on-premise environments. - Develop and automate IaC pipelines for managing and scaling cloud deployments securely and efficiently, including automated pipelines for deploying infrastructure, applications, and updates. - Build automation for procedural compliance controls, generating compliance and audit artifacts at scale without manual intervention. - Develop security models that integrate Continuous Monitoring (ConMon), DISA STIG scanning, and compliance reporting into a unified, automated workflow. ### Compliance Engineering & Framework Implementation - Analyze, interpret, and operationalize federal and industry cybersecurity regulations, including NIST SP 800-171 and 800-53, CMMC, FedRAMP, and SOC 2, translating regulatory language into actionable engineering guidance and enforceable technical controls. - Evaluate system architectures and configurations to ensure alignment with required security controls for moderate-impact information systems. - Interface directly with infrastructure teams to verify and enforce compliance across existing on-premise and cloud stacks, identifying gaps and driving remediation. ### Cross-Functional Collaboration & Enablement - Partner with engineers, the DevSecOps Team, and the Automation Team to implement and verify security controls in both corporate and product software environments. - Act as a force multiplier by embedding security best practices into the workflows of infrastructure, application, and product teams, particularly for environments holding mission-critical data. ### Strategic & Advisory - Develop strategies and implementation plans for compliance-related matters, advising management on risk posture, regulatory changes, and investment priorities. - Institute best-practice procedures for compliance and risk mitigation across the organization. ### Required Qualifications - 3+ years of professional experience in Cloud Security, DevSecOps, Site Reliability Engineering (SRE), or a related security engineering role. - Background in one or more of the following disciplines: Systems Security Engineering, Cybersecurity, Systems Engineering, Software Engineering, Computer Engineering, or Computer Science. - Proven experience building and securing complex cloud environments at scale. - 3+ years of hands-on experience working with compliance frameworks such as CMMC, NIST SP 800-171 and/or 800-53, and FedRAMP. ## Skills ### Required - Cloud Security - DevSecOps - Site Reliability Engineering - Systems Security Engineering - Cybersecurity - Systems Engineering - Software Engineering - Computer Engineering - Computer Science - Compliance Frameworks - NIST SP 800-171 - NIST SP 800-53 - CMMC - FedRAMP --- Source: [Apply at job-boards.greenhouse.io](https://job-boards.greenhouse.io/andurilindustries/jobs/5087188007?utm_source=yubhub.co&utm_medium=jobs_feed&utm_campaign=apply)