Senior DevSecOps / Platform Security Engineer (AWS + Kubernetes)

About Us

Red Cell Partners is an incubation firm building and investing in rapidly scalable technology-led companies that are bringing revolutionary advancements to market in three distinct practice areas: healthcare, cyber, and national security. United by a shared sense of duty and deep belief in the power of innovation, Red Cell is developing powerful tools and solutions to address our Nation’s most pressing problems.

About DEFCON AI

DEFCON AI is a modeling, simulation, and analysis (MS&A) company that provides cutting-edge technology solutions for generating operationally relevant insights for the next generation of logistics and mobility decision making. An AI- driven software incorporating an intelligent agent within a simulation environment — DEFCON is the next driving force in defining how logistics disruptions are handled. We are a team of mission-focused, world-class AI Engineers, mobility, and logistics experts (and some business folks) who are leveraging big data and cutting-edge technology to develop the next generation of technologies for addressing how our partners can better prepare for contested mobility disruptions. Together, we are building much needed solutions to address our Nation's pressing challenges in the areas of logistics and mobility.

About the Role

We’re hiring a senior, hands-on DevSecOps/Platform Security Engineer to build and operate production security controls across our AWS and Kubernetes platform. You’ll design and implement guardrails that make secure delivery the default—covering CI/CD security automation, software supply chain controls, and Kubernetes policy enforcement—while partnering closely with Platform/SRE and Security/GRC.

What You'll Own

You'll have real ownership over critical platform security capabilities including:

• CI/CD security automation and developer-facing security workflows (SAST/SCA, secrets scanning, IaC scanning, container scanning).
• software supply chain controls (SBOM, artifact/image signing and verification, provenance and promotion workflows).
• Kubernetes policy enforcement and admission controls (policy-as-code) that encode platform security guardrails.
• Co-own AWS security guardrails with Platform/SRE (IAM patterns, logging and detection, network and encryption baselines).
• Partner with Security/GRC on control interpretation and evidence needs; implements controls in engineering systems and pipelines.

What You’ll Do

Design, build, and maintain CI/CD security controls that scale across repos