Senior DevSecOps Platform Security Engineer

ABOUT DEFCON AI RESILIENCE IN THE FACE OF DISRUPTION. DEFCON AI is an insights company that leverages artificial intelligence, mathematical optimization, data analytics, and software engineering for resilient optimization of complex systems. In today's dynamically changing world, DEFCON AI's technology aligns outcomes with operational goals, better decision making, and empowers customers to anticipate assess, and mitigate the impacts of disruptions.

About the Role We're hiring a senior, hands-on DevSecOps/Platform Security Engineer to build and operate production security controls across our AWS and Kubernetes platform. You'll design and implement guardrails that make secure delivery the default—covering CI/CD security automation, software supply chain controls, and Kubernetes policy enforcement—while partnering closely with Platform/SRE and Security/GRC.

What You'll Own: You'll have real ownership over critical platform security capabilities including:

• CI/CD security automation and developer-facing security workflows (SAST/SCA, secrets scanning, IaC scanning, container scanning).
• software supply chain controls (SBOM, artifact/image signing and verification, provenance and promotion workflows).
• Kubernetes policy enforcement and admission controls (policy-as-code) that encode platform security guardrails.
• Co-own AWS security guardrails with Platform/SRE (IAM patterns, logging and detection, network and encryption baselines).
• Partner with Security/GRC on control interpretation and evidence needs; implements controls in engineering systems and pipelines.

What You'll Do

• Design, build, and maintain CI/CD security controls that scale across reposPlease mention the word **ECSTATICALLY** and tag RODguMTk4Ljk5LjE0Mw== when applying to show you read the job post completely (#RODguMTk4Ljk5LjE0Mw==). This is a beta feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.