Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the defense industry, Anduril is changing how military systems are designed, built and sold. Anduril’s family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a realtime, 3D command and control center. As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years.
Team Overview
The Platform Security Engineering (PSE) team builds security into Anduril's products from architecture through production. We work directly with business lines to design and implement security solutions tailored to their systems — then promote proven patterns into shared, composable platform services that the entire organization can use. Our mission is threefold: build security solutions for business lines, promote those solutions into the platform, and enable teams to build and operate securely on their own. The work spans cryptographic protocols, operating system hardening, secure boot, hardware security integration, authentication systems, and distributed protocol security across embedded, edge, and cloud environments.
Job Description
We're looking for senior and staff-level software engineers to design and build security solutions across Anduril's product ecosystem. You'll partner directly with business line engineering teams to understand their systems, threat models, and security requirements — then design and implement solutions that range from custom, business-line-specific implementations to shared platform services. The problems you'll work on span the full stack — secure hardware, operating systems, container orchestration, distributed services, and cloud infrastructure — and you'll move between them as the mission demands. We value engineers who are strong generalists: comfortable learning new domains quickly and working across security boundaries rather than specializing in just one.
We're also open to hiring talented software engineers with less security-specific experience, provided they have a strong track record building production software at scale, learn fast, and are motivated to go deep on security.
Key Responsibilities
- Design and implement security features and services for business line products — including custom solutions when platform capabilities don't yet exist
- Identify patterns across business line implementations and promote them into shared, composable platform security services
- Build tooling, libraries, and reference implementations that enable engineering teams to adopt secure patterns independently
- Lead security architecture reviews and threat modeling for business line and platform systems
- Implement cryptographic protocols, key management systems, and certificate infrastructure
- Work across the technology stack: secure hardware (TPM, TEE), operating systems, container orchestration, and application-layer security
- Provide hands-on engineering support to business line teams adopting platform security services
- Collaborate with the Security Applications & Tools team on cross-cutting security infrastructure
Required Qualifications
- 6+ years of experience designing and developing production software in large-scale environments (8+ for Staff level)
- Proficient in at least one of: C++, Rust, or Go
- Strong software engineering fundamentals: you can design, build, and operate complex systems and pick up new domains quickly
- Experience working on security for distributed systems, or demonstrated ability and motivation to develop deep security expertise
- Ability to work directly with product and engineering teams to translate requirements into working implementations
- Comfortable working across multiple problem domains rather than specializing in a single area
- Strong communication skills with proven ability to negotiate and reach consensus across teams
- Eligible to obtain and maintain active U.S. Secret security clearance
Preferred Qualifications
Experience or willingness to learn in a subset of the following:
- Designing and implementing secure protocols, APIs, or cryptographic systems
- Integrating secure hardware (TPM, TEE, HSM)
- Operating system security and hardening (Linux)
- Securing Kubernetes deployments and container runtimes
- Embedded systems or robotics security
- Secure cloud architectures (AWS or Azure)
- Performing security architecture reviews and threat modeling
Additionally valuable:
- Proficient in: TypeScript, React, Python
- Experience building shared libraries, SDKs, or platform services consumed by other engineering teams
- Knowledge of cryptographic primitives and best practices (key management, certificate lifecycles, secure key storage)
- Familiarity with compliance frameworks (STIGs, NIST) and translating requirements into engineering controls
- Experience with Nix build systems
US Salary Range
$191,000—$253,000 USD
The salary range for this role is an estimate based on a wide range of compensation factors, inclusive of base salary only. Actual salary offer may vary based on (but not limited to) work experience, education and/or training, critical skills, and/or business considerations. Highly competitive equity grants are included in the majority of full time offers; and are considered part of Anduril's total compensation package. Additionally, Anduril offers top-tier benefits for full-time employees, including:
Benefits
At Anduril, we invest in our people. Our comprehensive, competitive benefits package (available at little to no cost to employees) ensures you’re supported in health, recovery, and whatever comes next. For more information, Explore Our Benefits.
Protecting Yourself from Recruitment Scams
Anduril is committed to maintaining the integrity of our Talent acquisition process and the security of our candidates. We've observed a rise in sophisticated phishing and fraudulent schemes where individuals impersonate Anduril representatives, luring job seekers with false interviews or job offers. These scammers often attempt to extract payment or sensitive personal information.
To ensure your safety and help you navigate your job search with confidence, please keep the following critical points in mind:
**No Financial Requests: **Anduril will never solicit payment or demand personal financial details (such as banking information, credit card numbers, or social security numbers) at any stage of our hiring process. Our legitimate recruitment is entirely free for candidates.
Please always verify communications:
- Direct from Anduril: If you receive an email from one of our recruiters, it will only come from an
@anduril.comaddress. - Via Agency Partner: If contacted by a recruiting agency for an Anduril role, their email will clearly identify their agency. If you suspect any suspicious activity, please verify the agency's authenticity by reaching out to contact@anduril.com.
- Direct from Anduril: If you receive an email from one of our recruiters, it will only come from an
Exercise Caution with Unsolicited Outreach: If you receive any communication that appears suspicious, contains grammatical errors, or makes unusual requests, do not engage. Always confirm the sender's email domain is @anduril.com before providing any personal information or clicking on links.
What to Do If You Suspect Fraud: Should you encounter any questionable or fraudulent outreach claiming to be from Anduril, please report it immediately to contact@anduril.com. Your proactive caution is invaluable in protecting your personal information and upholding the security and trustworthiness of our recruitment efforts.
Data Privacy
To view Anduril's candidate data privacy policy, please visit https://anduril.com/applicant-privacy-notice/.
By submitting your application, you consent to Anduril Industries using a third-party service provider to conduct pre-employment risk, integrity, and due diligence screening and assessing potential risks as part of your application process. This third-party service provider provides risk-intelligence services that may include analysis of sanctions and watchlists, adverse media, public-record information, and other lawful open-source or commercial data sources. This third-party service provider does not act as a consumer reporting agency. Use of this provider helps to ensure compliance with applicable laws and protect technology, intellectual property, and organizational security.