About Applied

Autonomy is one of the leading technological advances of this century that will come to impact our lives. The work you’ll do at Applied will meaningfully accelerate the efforts of the top autonomy teams in the world. At Applied, you will have a unique perspective on the development of cutting-edge technology while working with major players across the industry and the globe.

Applied Intuition provides software solutions to safely develop, test, and deploy autonomous vehicles at scale. The company’s suite of simulation, validation, and drive log management software enables development teams to create thousands of scenarios in minutes, run simulations at scale, and verify and validate algorithms for production deployment. Headquartered in Silicon Valley with offices in Detroit, Washington, D.C., Munich, Stockholm, Seoul, and Tokyo, Applied consists of software, robotics, and automotive experts with experiences from top global companies. Leading autonomy programs and 17 of the top 20 global OEMs use Applied’s solutions to bring autonomy to market faster.

About the role

Applied Intuition is looking for an IT professional experienced in cybersecurity risk management and compliance of software-as-a-service (SaaS) applications to fill the role of Security and Compliance Engineer in our Washington DC office. The Security and Compliance Engineer will work across the business, product, and security teams at Applied to ensure adequate security controls are being applied to manage risk.

The Security and Compliance Engineer’s primary role is to ensure that Applied’s products have the necessary security and compliance requirements relevant to our customers in the government and defense space. This includes ensuring that Applied’s products comply with the Security Technical Implementation Guides (STIGs) published by the Department of Defense (DoD), and that all Risk Management Framework (RMF) documentation is completed. The Security and Compliance Engineer will be responsible for the transmission of the relevant National Institute of Standards and Technology (NIST) expertise to the engineering team, the compilation of required documentation, and the preparation of software for vulnerability scanning.

At Applied, you will:

• Lead the company's efforts to ensure compliance with NIST SP 800-171 requirements
• Develop, maintain, and monitor security policies and procedures in line with NIST 800-171
• Conduct regular risk assessments to identify vulnerabilities and provide mitigation strategies in compliance with NIST standards
• Collaborate on the development of an incident response plan aligned with NIST recommendations
• Coordinate incident response activities in the event of a security breach
• Develop and lead security training sessions to promote awareness of NIST 800-171 requirements
• Work with different departments to ensure understanding and compliance with security controls
• Document security processes, incidents, and improvements in alignment with NIST guidelines
• Prepare compliance reports for internal use and external stakeholders
• Liaise with IT and other departments to ensure technological solutions are in line with security controls and compliance needs
• Engage with external contractors and vendors to ensure they comply with our NIST 800-171 security standards

We're looking for someone who has:

• Bachelor’s or Master's degree in Computer Science, Information Security, or a related field
• 3+ years of experience in a security engineering role with a focus on NIST SP 800-171
• Deep understanding of NIST 800-171 requirements and related cybersecurity measures
• Experience with CUI protection and DFARS compliance
• Ability to interpret and apply complex security requirements
• Strong analytical, organizational, and problem-solving skills
• Excellent communication and collaboration abilities

Nice to have:

• Certified Information Systems Security Professional (CISSP)
• NIST Cybersecurity Framework (CSF) Practitioner
• Other relevant industry or NIST-focused certification

Don’t meet every single requirement? If you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for this or other roles.

Applicants will be required to be fully vaccinated against COVID-19 upon commencing employment. Reasonable accommodations will be considered on a case-by-case basis for exemptions to this requirement in accordance with applicable federal and state law. Applicants should be aware that for external-facing roles that involve close contact with Company employees or other third parties on the Company's premises, accommodations that involve remaining unvaccinated against COVID-19 may not be deemed reasonable. The Company will engage in the interactive process on an individualized basis taking into account the particular position.

Applied Intuition is an equal opportunity employer and federal contractor or subcontractor. Consequently, the parties agree that, as applicable, they will abide by the requirements of 41 CFR 60-1.4(a), 41 CFR 60-300.5(a) and 41 CFR 60-741.5(a) and that these laws are incorporated herein by reference. These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity or national origin. These regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disability. The parties also agree that, as applicable, they will abide by the requirements of Executive Order 13496 (29 CFR Part 471, Appendix A to Subpart A), relating to the notice of employee rights under federal labor laws.