×
Register Here to Apply for Jobs or Post Jobs. X

Senior Identity & Auth Engineer Security Clearance

Job in Denver, Denver County, Colorado, 80201, USA
Listing for: True Anomaly. Inc.
Full Time position
Listed on 2026-07-16
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Information Security
Job Description & How to Apply Below
Position: Senior Identity & Auth Engineer with Security Clearance
Space is a war fighting domain. True Anomaly seeks those with the talent and ambition to build the technology that secures it. OUR MISSION True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft, advanced payloads, mission software, and space-based interceptors - enabling the U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground.

OUR VALUES
* Be the offset. We create asymmetric advantages with creativity and ingenuity.
* What would it take? We challenge assumptions to deliver ambitious results.
* It's the people. Our team is our competitive advantage and we are better together. YOUR MISSION Software is the central nervous system for True Anomaly's engineering and product thesis. As we deploy our space operations platform into classified environments, identity and authorization become critical technical challenges requiring deep specialization. True Anomaly is seeking a highly experienced Senior Identity & Authorization Engineer to build the multi-tenant identity infrastructure that enables secure operations at IL6 (SECRET) and beyond.

You'll deploy and integrate Kubernetes-native identity platforms, implement fine-grained authorization models for space operations, and provide deep technical expertise on identity/auth during compliance processes. Working closely with our security and platform teams, you'll evaluate and integrate modern authorization frameworks (ReBAC, SPIFFE/SPIRE, OPA), build policy-as-code enforcement systems, and ensure our identity architecture meets the rigorous standards required for classified environments. You do not need to have experience building space ground systems or experience in aerospace.

You'll have ownership of challenging, greenfield problems and a chance to fundamentally impact the outcome of future conflict (and the future of the company), all while enjoying world-class benefits including platinum healthcare, flexible work hours/location, highly competitive compensation and a generous stock options package. RESPONSIBILITIES
* Architect and deploy Kubernetes-native identity and authorization infrastructure for IL6 (SECRET) multi-tenant environments
* Serve as a technical authority for identity/auth controls during ATO processes, documenting and evidencing compliance for IdP components
* Design and implement multi-tenant isolation strategies ensuring zero lateral movement between customer/program boundaries
* Evaluate, deploy, and harden self-hosted IdPs (Keycloak, Dex, Authentik, etc.) for classified Kubernetes clusters
* Design authorization models (RBAC, ABAC, ReBAC) for space operations use cases with fine-grained access control requirements
* Implement workload identity frameworks (SPIFFE/SPIRE, K8s projected tokens) and service mesh authentication (Istio, Linkerd, Cilium)
* Build policy-as-code systems (OPA/Gatekeeper, Kyverno, Cedar) for automated compliance enforcement at runtime
* Integrate with government identity systems (CAC/PIV, LDAP, Active Directory) and legacy SAML 2.0 applications
* Collaborate with security team on secret management strategy (Hashi Corp Vault, Azure Key Vault) with encryption key lifecycle for IL6 environments
* Work with application teams to define authentication/authorization contracts for microservices
* Partner with customers and government auditors during ATO processes to demonstrate compliance and address findings
* Stay current on emerging identity/auth technologies and evaluate applicability to classified environments QUALIFICATIONS
* Clearance:
Eligible for TS/SCI clearance (U.S. citizen or lawful permanent resident), active clearance strongly preferred

* Experience:

10+ years in platform/security engineering with 5+ years focused on identity, authentication, or authorization systems
* Multi-Tenant Architecture:
Designed and implemented proper tenant isolation (zero lateral movement, strong security boundaries) for SaaS, defense, or high-assurance systems
* Kubernetes Production

Experience:

Deployed and operated production Kubernetes clusters with 3+ years experience
* Identity

Infrastructure: Production experience deploying/operating at least one K8s-native IdP (Keycloak, Dex, etc.) or enterprise IAM system
* Authorization Design:
Implemented RBAC, ABAC, or ReBAC authorization models in production systems
* Zero Trust Principles:
Deep understanding of NIST SP 800-207 and practical zero trust architecture patterns
* Compliance Frameworks:
Working knowledge of NIST 800-53, CMMC Level 3+, or FedRAMP High requirements
* Scripting/Automation:
Proficiency in Python, Go, or Bash for automation and tooling PREFERRED SKILLS AND EXPERIENCE
* Active TS/SCI clearance (or ability to start immediately upon clearance grant)
* IL4/IL5 deployment and operations experience (IL6 is nice-to-have but not required)
* ATO

Experience:

Participated in at least one ATO process for NIST 800-53, CMMC, FedRAMP, or IL4/IL5 systems
* Experience with modern authorization…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary