# Security Engineer

**Company:** [DAT Freight & Analytics](https://hotfix.jobs/companies/dat-freight-analytics)
**Location:** Denver, CO
**Role:** Security Engineering
**Salary:** $114k – $149k/yr
**Experience:** 2+ years
**Skills:** IAM, Terraform, CloudFormation, Nist 800-53, SOC 2, Cis Benchmarks, Zero Trust, DevSecOps, Docker, Kubernetes, CI/CD, SAST, DAST, Sca, Mitre Att&Ck
**Posted:** 2026-06-17

> Security Engineer responsible for implementing security controls, building automation workflows, and embedding security into SDLC and cloud infrastructure. Requires 2-4 years of cybersecurity or cloud security experience.

## Job Description

## What You’ll Do

- Apply security architecture principles to defined problems, evaluating design tradeoffs considering security, usability, and operational impact to support secure product innovation.
- Build and maintain automation workflows within the team's toolset, integrating with CI/CD pipelines, logging platforms, and cloud security architecture.
- Independently author runbooks, architecture diagrams, and technical specifications for secure cloud deployments, container hardening, and access management.
- Engage constructively with engineering and product partners to embed security into SDLC and production systems (DevSecOps, IaC scanning, SAST/DAST/SCA, etc.).
- Apply NIST control families and CIA principles to evaluate control coverage, identify gaps within your scope, and apply risk prioritization frameworks consistently.
- Resolve routine security problems independently and assist in incident response, escalating complex issues with relevant context and developing detections for known threat patterns (e.g., MITRE ATT&CK).

## The Skills and Experience You’ll Bring

- Team player who effectively collaborates across teams and adapts communication style to both technical and non-technical audiences.
- Self-motivated with a growth mindset, applying structured thinking to diagnose problems rather than jumping to solutions.
- Solid organizational skills to manage defined workstreams, coordinate dependencies, and proactively flag risks or blockers to delivery.
- Ability to independently author clear technical documentation and identify gaps in existing processes.
- Ability to handle sensitive and confidential information.
- Working knowledge across multiple security domains, including cloud environments (IAM, network security, posture alignment) and automation via Terraform, CloudFormation, or similar.
- Understanding of frameworks such as NIST 800-53, SOC 2, CIS Benchmarks, and Zero Trust Network Architecture.
- Familiarity with DevSecOps pipelines, containerization (Docker, Kubernetes), and CI/CD security tooling.
- Experience tuning rules to reduce false positives and maintaining cloud-native logging and monitoring frameworks.
- Proven experience (typically 2-4 years) in cybersecurity engineering or infrastructure/cloud security roles.
- B.S. degree in cybersecurity, computer science or related technical field is a plus.
- Relevant foundational or intermediate certifications are a plus (e.g., Security+, AWS Certified Security - Specialty, or equivalent).

## Why DAT?

- Medical, Dental, Vision, Life, and AD&D insurance
- Parental Leave
- Flexible Time Off
- An additional 10 holidays of paid time off per calendar year
- 401k matching (immediately vested)
- Employee Stock Purchase Plan
- Short- and Long-term disability sick leave
- Flexible Spending Accounts
- Health Savings Accounts
- Employee Assistance Program
- Additional programs - Employee Referral, Internal Recognition, and Wellness
- Free TriMet transit pass (Beaverton Office)
- Competitive salary and benefits package
- Work on impactful projects in a cutting-edge environment
- Collaborative and supportive team culture
- Opportunity to make a real difference in the trucking industry
- Employee Resource Groups

For Colorado-based candidates, in compliance with the Colorado Equal Pay for Equal Work Act, the salary range for this role is $113,841 - $148,580. DAT considers factors such as scope and responsibilities of the position, candidate's work experience, education and training, core skills, internal equity, and market and business elements when extending an offer.

## Similar roles

- [Threat Detection Engineer](https://hotfix.jobs/jobs/e83d0bae-9446-4fac-99f9-8a74df79079c) - Idme - Mountain View, CA - $113k – $140k/yr
- [SecOps Engineer](https://hotfix.jobs/jobs/9d224f47-466c-48cd-b229-442b2b6fbb99) - Upstart - Remote - $112k – $155k/yr
- [Product Security Engineer](https://hotfix.jobs/jobs/baf5fbe7-2c47-42d7-87d6-16076cc2f126) - Launchdarkly - Remote - $116k – $187k/yr
- [Security Analyst II](https://hotfix.jobs/jobs/8092f2d0-845d-49d4-befe-79505a945a42) - Garner Health - Remote - $117k – $130k/yr
- [Security Analyst](https://hotfix.jobs/jobs/c3e3b1f4-800c-4d5a-bedc-5b1f483ba224) - Aptos - Remote - $120k – $180k/yr

**Apply:** https://hotfix.jobs/jobs/5f613312-05a1-4e48-a4d1-30b5c878e42e
**Canonical:** https://hotfix.jobs/jobs/5f613312-05a1-4e48-a4d1-30b5c878e42e