Founding Security Engineer

About Sift

At Sift, we’re redefining how modern machines are built, tested, and operated. Our platform provides engineers with real‑time observability over high‑frequency telemetry, eliminating bottlenecks and enabling faster, more reliable development.

Sift was born from our work at Space

X on Dragon, Falcon, Starlink, and Starship—where scaling telemetry, debugging flight systems, and ensuring mission reliability demanded new infrastructure. Founded by a team from Space

X, Google, and Palantir, Sift is built for mission‑critical systems where precision and scalability are non‑negotiable.

As Sift’s founding Security Engineer, you will not just maintain a security checklist; you will define the posture, architecture, and practices that keep our products and infrastructure secure in the most demanding environments.

You will be both hands‑on and strategic, building controls, automating compliance, and working directly with customers, auditors, and internal teams to inspire confidence in our platform.

The Founding Security Engineer will own Sift’s security posture end‑to‑end, with technical security engineering as the primary focus. You will set the standard for how we protect our systems and data, ensuring resilience against modern threats while partnering with external compliance specialists to meet the requirements of aerospace, defense, and enterprise sectors.

This is a high‑visibility, high‑ownership role: you will be Sift’s first security hire, laying the foundation of our security program and growing it into a dedicated function as the company scales.

Technical Security

• Build secure CI/CD pipelines with embedded scanning.
• Operate and tune SIEM/EDR (ELK, Datadog, Splunk, Crowd Strike, Prometheus, Grafana).
  Secure multi‑cloud environments (AWS Gov Cloud, Kubernetes, on‑prem).
• Implement zero‑trust networking and modern SASE/ZTNA approaches.
• Improve visibility and observability across networks and workloads.

Compliance

• Partner with external compliance firms to align Sift with SOC 2, ISO 27001, NIST 800‑171, FedRAMP, and CMMC.
• Support third‑party/vendor security assessments.
• Support readiness for audits and customer/government reviews by providing technical evidence and controls.
• Provide company‑wide security awareness training focused on secure development and operations practices.

• 5+ years in cybersecurity, product security, or cloud security roles, ideally in high‑assurance or regulated industries.
• Hands‑on experience securing AWS or an equivalent cloud service provider (Gov Cloud preferred) and Kubernetes‑based environments, with strong infrastructure as code practices.
• Familiarity with compliance frameworks and experience partnering with compliance specialists to implement technical controls.
• Deep understanding of network, endpoint, and identity security principles.
• Experience with security tooling and integration into operational workflows.
• Ability to translate abstract security and regulatory requirements into clear, actionable engineering work.
• Experience handling customer‑facing security reviews and responding to technical security inquiries.

• Clear communicator with both technical and non‑technical stakeholders.
• Customer‑facing presence for audits and enterprise assurance.
• Collaborative partner to infra and product teams.
• High ownership and adaptability in ambiguous, fast‑moving environments.
• Integrity and trustworthiness, handling sensitive data, and compliance matters with discretion.
• Excited to operate as a team of one early on, with the vision to build and lead a security function over time.

Sift’s headquarters is in El Segundo, CA
. We collaborate in person twice a week—on Mondays and Thursdays
—and come together for a full week every two months. While we prefer team members to be local, we’re open to relocating candidates to LA or considering remote work from the San Francisco area for the right candidate.

$170,000 - $220,000 per year. Plus equity and benefits.

Must be a U.S. citizen, lawful permanent resident, or protected individual such as an asylee or refugee in compliance with ITAR (International Traffic in Arms Regulations) / EAR (Export Administration Regulations) regulations.