Encryption Jobs in Colorado (NOW HIRING)

Job Summary:
True Anomaly is a company focused on building technology for space superiority. They are seeking an experienced Principal Compliance Engineer to lead the design and implementation of secure, compliant architectures within highly regulated cloud environments, with responsibilities including security engineering, vulnerability management, and cross-functional collaboration.
Responsibilities:
• Architect, implement, and maintain secure, audit-ready systems and services in AWS and Azure Government environments.
• Develop and maintain custom STIGs (Security Technical Implementation Guides) for cloud infrastructure, SaaS applications, and IaaS/PaaS configurations and customer-deployed applications.
• Design and enforce secure configurations using encryption standards such as FIPS 140-2/FIPS 140-3, TLS 1.2+, and data-at-rest protections for regulated data.
• Embed compliance and security checks into CI/CD pipelines, ensuring that infrastructure-as-code meets regulatory and organizational policies.
• Integrate technical controls to support monitoring, logging, and alerting consistent with RMF and CMMC requirements.
• Partner with cybersecurity operations teams to support incident response, log review, and system hardening efforts.
• Lead the technical remediation of vulnerabilities identified through internal scans, third-party testing, or external audits.
• Work with engineering and DevOps teams to drive secure patch management, system baseline enforcement, and automated vulnerability response workflows.
• Maintain and operationalize vulnerability metrics dashboards aligned with continuous monitoring plans (ConMon).
• Able to support and manage detailed system documentation including SSPs, network diagrams, control implementations, and POA&Ms.
• Serve as a technical point of contact during audits and assessments, capable of demonstrating compliance posture through hands-on walkthroughs and evidence collection.
• Collaborate with DevOps, Cybersecurity teams to translate security requirements into enforceable technical controls and testable artifacts.
• Partner with product, engineering, and compliance teams to implement secure system boundaries and customer segmentation strategies for multi-tenant environments.
• Provide technical mentorship and occasional leadership to junior compliance engineers or project contributors.
• Track emerging requirements and proactively update system configurations to meet evolving DoD IL5, IL6, and CMMC mandates.
Qualifications:
Required:
• 10+ years of experience in cybersecurity engineering, cloud compliance, or DevSecOps roles.
• Proven experience designing STIG-compliant configurations, including custom STIG development and validation.
• Deep understanding of FIPS-validated encryption, TLS configurations, and cryptographic module implementation for data protection.
• Hands-on experience with vulnerability scanning, remediation planning, and automated patching workflows.
• Familiarity with DoD RMF (IL5 and IL6), CMMC and related audit frameworks.
• Proficiency with tools such as Terraform, Ansible, Azure Policy, GitHub Actions, and common SIEM/logging platforms.
• Experience with authorization boundary design and customer isolation techniques in AWS and Azure Gov environments.
• Position requires an active security clearance. While all clearance levels will be considered, TS/SCI clearance holders are preferred.
Preferred:
• Experience with DoD RMF (IL5 and IL6) cloud environments.
• Working knowledge of container security, particularly in AKS or Kubernetes-based deployments.
• Basic people leadership experience, including mentoring or technical guidance responsibilities.
• Industry certifications such as CISSP, CCSP, Azure Security Engineer, or relevant compliance certs (e.g., CMMC RP).
Company:
True Anomaly develops space security technologies, including spacecraft, software platforms, and mission systems for orbital operations. Founded in 2022, the company is headquartered in Centennial, USA, with a team of 201-500 employees. The company is currently Growth Stage.