Logo for Sift

Software Engineer, Security Infrastructure

Role overview

Qualifications

  • 4–7+ years of hands-on experience in security engineering, platform/DevSecOps, or cloud infrastructure roles (founding or early-stage security builder experience strongly preferred)
  • Proven track record shipping production-grade security automation in cloud-native environments (AWS strongly preferred)
  • Deep familiarity with implementing technical controls for SOC 2, FedRAMP, or similar frameworks in real production systems
  • Strong proficiency in scripting and automation (Python, Go, Bash, or similar) and building custom tooling

Responsibilities

  • Build and maintain tooling, scripts, services, and automation that assess, enforce, and monitor security and compliance controls across AWS, Kubernetes, and CI/CD pipelines
  • Embed security guardrails directly into infrastructure-as-code (Terraform), container orchestration, and deployment workflows to enable secure-by-default
  • Partner with infrastructure and platform engineering teams to harden cloud-native systems, implement access controls, encryption, logging/monitoring, and vulnerability management at scale
  • Translate compliance requirements (SOC 2, FedRAMP, and related frameworks) into pragmatic technical implementations and automate security workflows, remediation, and incident support

About the company

Sift logo

Sift

Sift is transforming how modern machines are built and operated. Our platform goes beyond traditional monitoring, enabling automated data review that catches unusual conditions in systems too complex for manual checks. This not only enhances reliability but also dramatically speeds up development cycles. At our core, we provide a unified solution for ingesting, storing, and analyzing vast amounts of machine data. By combining powerful data processing with easy-to-use visualizations, we help engineers make sense of enormous amounts of information. From spacecraft to self-driving cars, Sift is the backbone of innovation for companies pushing technology to new limits. Born from the challenges of spaceflight, Sift aims to accelerate technological progress. We believe that by giving engineers better tools to understand and improve their creations, we can unlock a new era of innovation. Our mission goes beyond solving today's engineering problems; we're building the foundation for a future where the most ambitious machines are developed with confidence, run with precision, and constantly improved. We're also tackling related challenges like simplifying regulatory compliance, and improving manufacturing processes. By connecting data from various sources—from sensors to manufacturing records to regulatory requirements—we're empowering a new generation of engineers to build the technologies that will shape our world. Join us in our journey to usher in this new age of reliable, groundbreaking technology. Whether you're launching rockets, developing autonomous systems, or advancing energy and transportation, Sift is your partner in turning vast amounts of data into insights that drive innovation forward.

Company details

Company size11 - 50

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

At SIFT , we’re redefining how modern machines are built, tested, and operated. Our platform provides engineers with real-time observability over high-frequency telemetry, eliminating bottlenecks and enabling faster, more reliable development.

SIFT was born from our work at SpaceX on Dragon, Falcon, Starlink, and Starship—where scaling telemetry, debugging flight systems, and ensuring mission reliability demanded new infrastructure. Founded by a team from SpaceX, Google, and Palantir, Sift is built for mission-critical systems where precision and scalability are non-negotiable.

About the Role

As a Software Engineer, Security Infrastructure, you will not just maintain a security checklist; you will define the posture, architecture, and practices that keep our products and infrastructure secure in the most demanding environments.

You will be both hands-on and strategic, building controls, automating compliance, and owning SIFT’s security posture end-to-end, with technical security engineering as the primary focus. You will set the standard for how we protect our systems and data, ensuring resilience against modern threats while partnering with external compliance specialists to meet the requirements of aerospace, defense, and enterprise sectors.

In This Role, You’ll:

  • Build and maintain tooling, scripts, services, and automation that assess, enforce, and monitor security and compliance controls across our AWS cloud environments, Kubernetes clusters, and CI/CD pipelines.

  • Develop lightweight internal solutions (e.g., policy-as-code, custom scanners, CI/CD integrations) that make security and compliance automatic, auditable, and invisible to the rest of engineering.

  • Embed security guardrails directly into infrastructure-as-code (Terraform), container orchestration, and deployment workflows so that secure-by-default becomes the path of least resistance.

  • Partner closely with the infrastructure and platform engineering teams to harden cloud-native systems, implement access controls, encryption, logging/monitoring, and vulnerability management at scale.

  • Improve visibility into our overall security posture through automated reporting, dashboards, and real-time observability that highlight risks and control coverage.

  • Translate compliance requirements (SOC 2, FedRAMP, and related frameworks) into pragmatic, enforceable technical implementations rather than manual checklists.

  • Reduce toil by automating security workflows, compliance validation, and remediation so engineering can ship fast without compromising security.

  • Support incident response and post-incident improvements by building better observability and tooling that accelerates detection and recovery.

  • Conduct security reviews of new features, services, and infrastructure changes, providing clear guidance that helps teams design and implement secure solutions.

The Skillset You’ll Bring:

Technical Skills

  • 4–7+ years of hands-on experience in security engineering, platform/DevSecOps, or cloud infrastructure roles (founding or early-stage security builder experience strongly preferred).

  • Proven track record shipping production-grade security automation in cloud-native environments (AWS strongly preferred) — not just documenting or managing compliance programs.

  • Deep familiarity with implementing technical controls for SOC 2, FedRAMP, or similar frameworks in real production systems.

  • Strong proficiency in scripting and automation (Python, Go, Bash, or similar) and a bias toward building custom tooling over relying solely on off-the-shelf products.

  • Hands-on experience with Infrastructure as Code (Terraform or equivalent), containerized environments (Kubernetes), and CI/CD systems — and how to embed security directly into them.

  • Working knowledge across core security domains:

    • Access control, identity management, and least-privilege enforcement

    • Logging, monitoring, auditing, and security observability

    • Encryption, key management, and secrets handling

    • Vulnerability scanning, policy-as-code, and continuous compliance

    • Incident response and change management

  • Ability to quickly assess system state, identify meaningful gaps, and deliver pragmatic, high-impact solutions in a fast-moving environment.

  • Comfort operating as a founding security engineer: you thrive in ambiguity, own standards end-to-end, and focus on enabling velocity while raising the security bar.

  • Strong problem-solving skills with a builder mindset — you enjoy making complex security requirements disappear into clean, automated systems that engineering teams actually love to use.

Location:

SIFT’s headquarters is in Marina Del Rey, CA (Next to LAX). We collaborate in person twice a week—on Mondays and Thursdays—and come together for a full week every two months. We are open to relocating candidates to LA or working from our San Francisco office for the right candidate.

Salary range: $170,000 - $220,000 per year. Plus equity and benefits.

Eligibility:

U.S. Person Required: Must be a U.S. citizen, lawful permanent resident, or protected individual such as an asylee or refugee in compliance with ITAR (International Traffic in Arms Regulations) / EAR (Export Administration Regulations) regulations.

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Software Engineer Related jobs

Other jobs at Sift

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.