Anduril Industries is a defense technology company aiming to transform military capabilities with advanced technology. The Platform Security team within Lattice Foundations is responsible for ensuring the security of the common software platform, which underpins Anduril's software development and products.
Requirements
- Experience designing secure protocols and/or APIs
- Proficient in at least one of the following: C++, Rust, Golang
- 5+ years experience securing complex systems
- Strong working knowledge of cryptographic primitives and best practices, including key management and certificates
- Experience performing security reviews and threat modeling
- Proficient in two or more of the following: C++, Rust, Golang
- Experience integrating secure hardware, such as TPM or TEE
- Strong working knowledge of operating system security
- Experience securing Kubernetes deployments
Responsibilities
- Lead the design of new security features and of security improvements to common platform services. Our scope is broad, with example domains ranging from operating system hardening, through authentication, to distributed protocols
- Implement your designs, balancing security, performance, and functional requirements. You may need to work at all levels of the stack, from integrating secure hardware to developing and deploying applications
- Review design proposals from other teams, identifying potential security issues and proposing solutions
- Perform threat modeling and analyze existing systems to identify vulnerabilities
- Provide security advice to engineering teams during their development, helping raise security awareness
- Collaborate closely with other security practitioners and the software platform team, supporting efforts to improve Anduril’s security posture while delivering on our commitments to customers
Other
- 6+ years experience designing and developing software
- Strong written and verbal communication skills; proven ability to negotiate and reach consensus
- Must be a U.S. Person due to required access to U.S. export controlled information or facilities
