Senior Developer

Arctic Wolf, with its unicorn valuation, is the leader in security operations in an exciting and fast-growing industry—cybersecurity. We have won countless awards for our excellence in security operations and remain dedicated to providing an industry-leading customer and employee experience.

Our mission is simple: End Cyber Risk. We’re looking for a Senior Developer to be part of making this happen.  

About the Role

As a Senior Developer focused on certification in R&D, you will play a key role in ensuring Arctic Wolf Endpoint Agent products meet certification requirements, including Cybersecurity Maturity Model Certification (CMMC) and Federal Information Processing Standards (FIPS). You will collaborate closely with product, documentation, and compliance teams to integrate secure development practices, implement compliance-driven features, and guide products through the certification process.

The ideal candidate will have expertise in developing cybersecurity solutions that comply with CMMC 2.0 Levels 1-3 and FIPS-140 standards, alongside a strong background as a full-stack cybersecurity software developer. You will leverage your security engineering and software development experience to document, develop, and maintain CMMC/FedRAMP/FIPS-compliant cybersecurity solutions for endpoint security. You will work closely with cross-functional teams, including Product Management, Security Services, Architects, and other specialists, to continuously improve the MDR solution's coverage and effectiveness.

Responsibilities Include:

• Compliance Subject Matter Expert (SME)
  Serve as the primary SME for all CMMC, FIPS-140, and FedRAMP compliance matters concerning the Arctic Wolf Network (AWN) MDR endpoint agent and overall AWN security solution.

• Collaboration with Teams
  Work closely with the AWN Cloud, Data Ingestion, and Engineering teams to ensure full compliance with CMMC, FIPS-140, and FedRAMP requirements, including data storage, transport, and security practices.

• Documentation Ownership
  Lead the creation and maintenance of comprehensive documentation, including:

  • Asset inventory for AWN MDR solution components.

  • System Security Plan (SSP) detailing how each asset is stored and processed.

  • Network diagram for CMMC asset scope.

• Compliance Monitoring and Auditing Tools
  Develop and maintain software tools to support compliance monitoring, auditing, and reporting, ensuring up-to-date adherence to evolving certification guidelines.

• Security and Compliance Best Practices
  Review and refine software development practices to ensure they align with security and compliance requirements, enhancing overall CMMC and FedRAMP outcomes.

• Certification Documentation
  Prepare and manage certification documentation required by CMMC, FedRAMP, and other relevant frameworks, ensuring continuous compliance.

• Third-Party Library Compliance
  Coordinate with engineering teams to validate that third-party libraries meet CMMC Level 2 security compliance standards.

• Data Security Compliance
  Oversee and validate that all data storage and transport implementations meet CMMC Level 2 compliance standards.

• Solution Development for Compliance
  Design, scope, code, and test changes to AWN solutions to maintain CMMC Level 2 compliance, collaborating with other teams as needed.

• Audit Coordination
  Act as the main point of contact for internal and external audits, ensuring that the AWN Endpoint and Cloud solutions remain compliant and supporting audit readiness.

• Product and Support Coordination
  Work with product and support teams to ensure that new features and field fixes do not compromise ongoing CMMC Level 2 compliance.

• Automation of Compliance Testing
  Collaborate with automation engineers to automate compliance testing processes where practical, improving efficiency and reducing manual effort.

• Leadership and Gap Identification
  Partner with Product, Engineering, and Quality leadership to identify and address certification gaps, ensuring timely implementation of corrective actions.

• Cross-Functional Communication
  Demonstrate the ability to communicate complex technical compliance issues to non-technical stakeholders, providing troubleshooting guidance and sharing information effectively.

We value a culture of sharing, so every team has the opportunity to share their work with the entire department during our monthly R&D Demos. Once a year we hold a department-wide Hackathon, teaming up across all R&D teams over four days to collaborate and build cool ideas outside the normal project scope. While innovation is the focus, some of these ideas do make it into our products.

About You

You’re an experienced software developer who can complete solutions with little or no guidance. Comfortable with working independently on larger, more impactful feature, you have comprehensive knowledge of software development practices, and mastery over writing and debugging code. You perform complex programming tasks and implement software systems with ease. Highly collaborative, you mentor more junior developers.

You have worked closely in a global team of professionals with different cultures and backgrounds to form one unit with a strong sense of purpose. You will learn as you teach, making the whole more than the sum.

Qualifications

• You should have experience in one or more of these, or similar FedRAMP certification standards:

  • CMMC Level 2 compliance for MDR solutions

  • FIPS-140

• Comprehensive understanding of software development best practices, with mastery in writing, debugging, and securing code.

• Technical Skills

  • Strong skills in one or more of the following areas: Python, GO, Rust, C++, AWS, Docker, Windows Internals, Kubernetes, Cryptography, Encryption

  • Full understanding/application of secure development practices

  • Cloud Development: AWS, Azure, and GCP using Kubernetes/Containers, IaaS, and key PaaS services

• Experience collaborating across teams to achieve compliance and security goals.

• Good documentation skills for documenting technical design, architecture and processes.

• Demonstrated leadership experience from previous projects, regardless of title held. Even if you haven’t worked with all of our specific technologies, you bring a diverse knowledge base that you use to help the team solve complex technical problems.

About Arctic Wolf:

At Arctic Wolf we’re cultivating a collaborative and productive work environment that welcomes a diversity of backgrounds, cultures, and ideas to make our teams even stronger as we grow globally. We’ve been named among the list of Top Workplaces in USA, Minnesota (2021-2024), and Texas (2023-2024), Best Places to Work San Antonio (2023, 2024) and Minneapolis/St. Paul (2022-2024), Great Place to Work - Canada (2021-2024), and on the list of Best Workplaces in Technology (2024) in Canada. As well as on Fortune’s Best Place to Work for Millennials (2023) and Top Technology Workplace (2023) lists.

Our Values 

Arctic Wolf recognizes that success comes from delighting our customers, so we work together to ensure that happens every day. We believe in diversity and inclusion, and truly value the unique qualities and unique perspectives all employees bring to the organization. And we appreciate that—by protecting people’s and organizations’ sensitive data and seeking to end cyber risk— we get to work in an industry that is fundamental to the greater good. 

We celebrate unique perspectives by creating a platform for all voices to be heard through our Pack Unity program. We encourage all employees to join or create a new alliance. See more about our Pack Unity here.  

We also believe and practice corporate responsibility, and have recently joined the Pledge 1% Movement, ensuring that we continue to give back to our community. We know that through our mission to End Cyber Risk we will continue to engage and give back to our communities. 

All wolves receive compelling compensation and benefits packages, including: 

• Equity for all employees

• Flexible time off, paid volunteer days, and paid parental leave

• 401k & RRSP matching program

• Enhanced maternity leave and fertility support services

• Robust Employee Assistance Program (EAP) for mental health services

• Training and career development programs

Arctic Wolf is an Equal Opportunity Employer and considers applicants for employment without regard to race, color, religion, sex, orientation, national origin, age, disability, genetics, or any other basis forbidden under federal, provincial, or local law. Arctic Wolf is committed to fostering a welcoming, accessible, respectful, and inclusive environment ensuring equal access and participation for people with disabilities. As such, we strive to make our entire employee experience as accessible as possible and provide accommodations as required for candidates and employees with disabilities and/or other specific needs where possible. Please let us know if you require any accommodations by emailing recruiting@arcticwolf.com. 

Security Requirements:

• Conducts duties and responsibilities in accordance with AWN’s Information Security policies, standards, processes and controls to protect the confidentiality, integrity and availability of AWN business information (in accordance with our employee handbook and corporate policies).

• Background checks are required for this position.