Responsibilities Design, build, and maintain cloud infrastructure using IaC tooling (Pulumi) across AWS GovCloud environments Develop and maintain automation for security controls, compliance evidence collection, and audit readiness (SOC 2, FedRAMP) Own platform engineering initiatives including CI/CD pipeline infrastructure, secrets management, and developer tooling Build and maintain internal security tooling and integrations across the Boltline platform Contribute to architectural decisions around platform security, network segmentation, and access control Support and improve observability, alerting, and incident response infrastructure Participate in on-call rotation and lead remediation of platform and security incidents Partner with engineering teams to embed security and compliance requirements into the SDLC Qualifications Bachelor's degree in Computer Science, Information Systems, or related field / equivalent experience 5+ years of software or infrastructure engineering experience in production environments Strong proficiency in at least one general-purpose language (Python, Go, TypeScript, or similar) for automation and tooling Hands-on experience with infrastructure-as-code (Pulumi, Terraform, or equivalent) Experience operating in AWS, including IAM, networking, and security services Familiarity with security control frameworks (SOC 2, NIST 800-53, or FedRAMP) Strong understanding of CI/CD pipelines and DevSecOps practices Excellent collaboration and communication skills within cross-functional teams Comfort operating in a fast-paced, compliance-sensitive environment Preferred Qualifications Experience with AWS GovCloud or other FedRAMP-authorized environments Familiarity with ITAR-controlled environments or defense/aerospace software Experience with container security, Kubernetes/ECS hardening, or workload isolation Hands-on experience with security scanning, SAST/DAST tooling, or vulnerability management pipelines Prior work with compliance automation platforms (Paramify, Vanta, Drata, or similar) Exposure to identity and access management patterns (SSO, SCIM, least-privilege design) Interest in aerospace, manufacturing, or complex physical systems Benefits Equity - We know that our employees are the reason we succeed. ITAR Requirements To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR), you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.