ForgeApply · Job listing
Senior Security Engineer
Kaizenlabs
Apply in about a minute — without sacrificing quality.
ForgeApply autofills this application and tailors your resume to this exact posting. You review everything before it's sent. Free trial, no card required.
About this role
Government technology has failed the public for decades, and Americans have been conditioned to expect websites from the 90s for essential public services.
Kaizen exists to strengthen trust in American public services by building technology that residents and public servants are proud to use. We partner with local, state, and federal agencies to replace legacy systems with modern, AI-native software that is worthy of the people they serve. We started in outdoor recreation, and now we're building toward something much larger — the software layer that powers how Americans access any government service.
Our platform reaches 55 million Americans across 50+ agencies. Our goal: build technology that touches the lives of 100 million residents by the end of the year.
Founded in 2022 and based in New York City, Kaizen has raised $35 million from NEA, a16z, Accel, 776, and Carpenter Capital. We're builders, designers, and operators who believe that beautifully designed software shouldn't be a luxury in government. It's how you earn trust back.
THE ROLE
Kaizen's platform reaches 40M residents across 50+ agencies in 17 states. We've already signed multiple federal customers with many more in the pipeline — and the work of making Kaizen federal-ready is currently spread across a handful of engineers. That doesn't scale. We're hiring our first dedicated security engineer to sit on the platform team and own this end to end: architect the controls, write the SSPs, and partner with engineering to embed compliance into how we ship rather than bolt it on after.
LOCATION
This is a hybrid role based out of our New York City HQ. Candidates must reside in New York or be able to commute to New York City to work out of our office at least three times a week (Tuesdays - Thursdays).
WHAT YOU'LL DO
- Architect and operationalize security across infrastructure, platform, CI/CD, and application layers, with a focus on AWS (including GovCloud) and Terraform
- Lead readiness across federal compliance frameworks — FedRAMP, CMMC, and DoD Impact Levels — translating NIST 800-53 and related controls into real engineering implementations, and owning the SSPs, POA&Ms, and technical policy documentation
- Build continuous compliance and audit-readiness workflows that make accreditation a byproduct of how we ship, not a separate workstream
- Be smart about AI and tooling — use automated AI-driven security scanning, modern hardened-image platforms like Chainguard, and other leverage points to multiply the impact of a small security team
- Establish secure software supply chain practices: SBOMs, image signing, workload identity, and hardened deployment pipelines
- Own the technical relationship with assessors, auditors, and federal security stakeholders — you are the credible technical voice in those rooms
- Drive a secure-by-default engineering culture so residents and public servants can trust the systems we put in front of them
WHAT YOU'LL BRING
- 5+ years of hands-on experience building and securing cloud-native platforms in AWS and Terraform — you can architect controls and also implement them yourself
- Direct experience with federal authorization work — FedRAMP, CMMC, DoD IL, or comparable regulated environments. You don't need to have shepherded a full authorization across the finish line, but you've done enough of the real work to know what it takes
- Deep familiarity with NIST 800-53 and the ability to translate controls into pragmatic engineering work rather than checkbox compliance
- Strong working knowledge of modern supply chain security: SBOMs, image signing, workload identity, secure CI/CD
- Track record operating effectively in early-stage or fast-moving environments where you set the bar rather than inherit it
STRONG CANDIDATES MAY ALSO...
- Have supported federal SaaS, defense tech, or regulated infrastructure companies through accreditation
- Have led a company through its first federal authorization rather than maintaining an existing one
- Have hands-on experience with Chainguard, AI-powered security tooling, or similar leverage-multiplying platforms
- Have worked with platforms like Second Front or similar federal compliance accelerators
DON'T APPLY IF...
- You want to own policy and hand the implementation to someone else — this role lives in the code and the infrastructure
- You think compliance is paperwork — at Kaizen it's a load-bearing engineering discipline
- You think AI tools are a crutch rather than a force multiplier
- You need a mature security program already in place to be effective
WHAT KAIZEN OFFERS
Health & Insurance
- 100% coverage across the board: medical through Oxford/United (Gold and Platinum PPO plans), dental through Guardian PPO, and vision through Beam — all fully covered for employees, with 100% coverage for dependents.
- $100,000 in fully paid life insurance. FSA and Dependent Care FSA.
- One Medical membership, on us — same-day primary care, 24/7 virtual visits, and offices all over the city.
- Fertility and family-building support through Carrot.
- 401(k) through Guideline, with a 2% company match.
Family & Time Off
- 16 weeks of fully paid parental leave for birthing parents. 10 weeks fully paid for non-birthing parents.
- Unlimited PTO, with a two-week minimum (we mean it when we say take time off!)
- Closed for all federal holidays.
- Company-wide winter break the week of Christmas.
- Company offsites throughout the year.
Office & Remote Setup
- Up to $750 one-time home office or desk setup stipend for NYC-based employees. $500 for remote employees.
- $50/month commuter benefit (company contribution).
- Expensed lunch while in the office.
- Company-provided laptop of your choice.
Wellness
- Fully covered gym membership at Grindhouse https://grindhousemhttn.com/ — right across the street from our office at 47 W 17th St (and in Williamsburg). A $225/month value, o
Ready to apply to Kaizenlabs?
Apply in about a minuteSimilar jobs
- Senior Security Engineer — Tensorwave · Las Vegas, Nevada
- Senior Security Engineer — Nectar-social · Palo Alto
- Senior Security Engineer — Later · Remote
- Senior Security Engineer — Ensono · Remote
- Senior Security Engineer — Cision · Remote
- Senior Security Engineer — Youcom · San Francisco (Hybrid)
- Senior Security Engineer — Overstory · Remote
- Senior Security Engineer — Eliseai · New York City
More like this: Security & Cybersecurity Jobs · Security & Cybersecurity Jobs in New York · Browse all jobs