Senior InfraSec Engineer

Summary

Join Truss as a Senior Infrastructure Engineer and collaborate with a cross-functional team to build and deploy AWS-based infrastructure and cloud-native security in a highly regulated environment. You will integrate risk management frameworks, identify security gaps, and ensure infrastructure and CI/CD systems support web applications while maintaining compliance and security. This role involves focusing on software delivery metrics, system reliability, and technical validation to ensure client satisfaction. As a Senior Engineer, you will lead projects, mentor junior developers, and expand your skillset. This is a fully remote position offering full benefits, generous PTO, a co-working budget, and an employee effectiveness budget. Truss values work-life balance, collaboration, and diverse perspectives.

Requirements

• Prior experience in a DevOps, Security, or other Infrastructure/Security engineering positions working on production ready systems
• Ability to build cloud-native, secure, infrastructure within a cross-functional agile software development team
• Experience with modern DevOps stacks: Terraform (infrastructure as code), CI/CD, Observability Systems, Logging, etc. and expertise in at least one application level programming language (Javascript, Python, Go, Java, etc.)
• Has obtained Federal ATO (Authorization to Operate) requirements including a mature understanding of Risk Management Frameworks and experience successfully meeting NIST SP 800-53, SOC 2, ISO 27001 or similar compliance requirements
• Exceptional communication, especially active listening, collaboration skills, and written documentation, as well as an understanding of how to generate trust in a complex environment
• Comfortable aligning teams around a technical direction, moving teams from analysis to action, and building skills as needed through practices like hands-on mentorship and pair programming
• Familiarity with public sector projects, either as an employee or contractor, and understanding of government bureaucracy, procurement, and security considerations
• Able to work effectively in a fully remote environment using team collaboration tools such as Zoom, Gsuite, and Slack

Responsibilities

• Build and deploy AWS based Infrastructure and cloud native security within a highly regulated environment
• Integrate risk management frameworks within the development process
• Proactively identify and address security gaps in pursuit of necessary compliance
• Ensure infrastructure and CI/CD systems are built to support web applications while also balancing compliance, security, and documentation
• Help to ensure project success by focusing on software delivery metrics, reliability of the system being built, and validation of technical work to deliver client satisfaction
• Lead projects
• Mentor junior developers
• Broaden their skillset

Preferred Qualifications

Prior expertise building and/or architecting data storage and analysis systems to support rapid analysis and/or machine learning

Benefits

• Full benefits
• Generous PTO
• A co-working budget
• An employee effectiveness budget