Application Deadline: 7/31/2026
The OpportunityDAT is looking for a Security Engineer to join our security team. This position can be based in Denver Colorado Office. The Security Engineer will join our Security Architecture and Engineering team. As a key member, you'll own your work end-to-end within a defined scope, contributing to the implementation and adoption of security controls and tooling to improve our security posture. You will collaborate with cross-functional partners to keep work moving and ensure security is embedded into our SDLC. This is a hands-on role that combines engineering, structured problem-solving, and cross-team collaboration.
What You'll Do- Apply security architecture principles to defined problems, evaluating design tradeoffs considering security, usability, and operational impact to support secure product innovation.
- Build and maintain automation workflows within the team's toolset, integrating with CI/CD pipelines, logging platforms, and cloud security architecture.
- Independently author runbooks, architecture diagrams, and technical specifications for secure cloud deployments, container hardening, and access management.
- Engage constructively with engineering and product partners to embed security into SDLC and production systems (DevSecOps, IaC scanning, SAST/DAST/SCA, etc.).
- Apply NIST control families and CIA principles to evaluate control coverage, identify gaps within your scope, and apply risk prioritization frameworks consistently.
- Resolve routine security problems independently and assist in incident response, escalating complex issues with relevant context and developing detections for known threat patterns (e.g., MITRE ATT&CK).
The Skills and Experience You'll Bring- Team player who effectively collaborates across teams and adapts communication style to both technical and non-technical audiences.
- Self-motivated with a growth mindset, applying structured thinking to diagnose problems rather than jumping to solutions.
- Solid organizational skills to manage defined workstreams, coordinate dependencies, and proactively flag risks or blockers to delivery.
- Ability to independently author clear technical documentation and identify gaps in existing processes.
- Ability to handle sensitive and confidential information.
- Working knowledge across multiple security domains, including cloud environments (IAM, network security, posture alignment) and automation via Terraform, CloudFormation, or similar.
- Understanding of frameworks such as NIST 800-53, SOC 2, CIS Benchmarks, and Zero Trust Network Architecture.
- Familiarity with DevSecOps pipelines, containerization (Docker, Kubernetes), and CI/CD security tooling.
- Experience tuning rules to reduce false positives and maintaining cloud-native logging and monitoring frameworks.
- Proven experience (typically 2-4 years) in cybersecurity engineering or infrastructure/cloud security roles.
- B.S. degree in cybersecurity, computer science or related technical field is a plus.
- Relevant foundational or intermediate certifications are a plus (e.g., Security+, AWS Certified Security - Specialty, or equivalent).
- Medical, Dental, Vision, Life, and AD&D insurance
- Parental Leave
- Flexible Time Off
- An additional 10 holidays of paid time off per calendar year
- 401k matching (immediately vested)
- Employee Stock Purchase Plan
- Short- and Long-term disability sick leave
- Flexible Spending Accounts
- Health Savings Accounts
- Employee Assistance Program
- Additional programs - Employee Referral, Internal Recognition, and Wellness
- Free TriMet transit pass (Beaverton Office)
- Competitive salary and benefits package
- Work on impactful projects in a cutting-edge environment
- Collaborative and supportive team culture
- Opportunity to make a real difference in the trucking industry
- Employee Resource Groups
For Colorado-based candidates, in compliance with the Colorado Equal Pay for Equal Work Act, the salary range for this role is $113,841 - $148,580. DAT considers factors such as scope and responsibilities of the position, candidate's work experience, education and training, core skills, internal equity, and market and business elements when extending an offer.
#LI-DR1
