To stay ahead of climate change, geopolitical risk, and other major crises and issues, we need a global understanding of what is changing, where, and how fast. Our client provides easy access to the highest quality commercial satellite data available, an indispensable tool for the growing number of organizations monitoring the Earth. We empower our customers to create solutions that inform, inspire, and address our planet's most pressing needs. We’re helping to create a new industry that has never meaningfully existed before.

Are you ready to take the lead as a Senior Product Security Engineer? We're on the lookout for an expert to enhance the security of the software and systems that power our satellite infrastructure. In this exciting role, you’ll collaborate with diverse teams to pinpoint security needs and vulnerabilities, execute comprehensive security assessments, and devise effective strategies to minimize risks. If you have a passion for safeguarding complex systems within the aerospace industry, don't miss this chance to make a significant impact!
 

What you will do - You'll be an essential collaborator with product development teams, dedicated to enhancing the trustworthiness, resilience, and survivability of our space segment, which encompasses both satellite and ground system environments. As a secure engineering advocate, you'll support our development release trains, create threat models, assess operational risks, and collaborate with product and SRE teams at the engineering level to continuously boost our systems' trustworthiness, resilience, and survivability. Please note, this role is purely focused on technical development and engineering.

Key Responsibilities

• Lead security assessments and code reviews for our satellite software and systems as well as ground systems.
• Develop threat models and perform risk assessments to identify potential vulnerabilities in systems and applications.
• Implement security best practices across development teams and foster a culture of security awareness within the organization.
• Collaborate with engineering teams to develop, enforce, and audit security standards, policies, and procedures for satellite and ground system environments.
• Research emerging security technologies and frameworks relevant to space systems , and proactively integrate relevant solutions to protect infrastructure.
• Design and implement security automation tools and processes to improve system security and minimize manual intervention in securing software releases.
• Work with cross-functional teams to design, implement, and continuously improve secure DevOps pipelines and secure software development lifecycles (SDLC).
• Participate in incident response and security monitoring efforts, ensuring that security events are quickly identified, mitigated, and lessons learned are incorporated into security practices.
• Support third-party security audits and assessments, providing documentation and guidance on any identified vulnerabilities or risks as needed.
• Ensure regulatory compliance with relevant aerospace, satellite, and cybersecurity standards and frameworks such as NIST, CMMC, and others.
• Be the continuous advocate for improving security best practices and champion for a security minded culture with all technical staff to increase overall awareness and capabilities in addressing security risks.
• Support systems security engineering initiatives, ensuring that operational segments are well positioned for resiliency and survivability.
• Other professional duties as assigned.

Requirements

Required Qualifications

• Bachelor's degree in Computer Science, Cybersecurity, or a related field.
• 5+ years of experience in product security or software security engineering.
• Strong proficiency in secure coding practices and application security assessments.
• Experience with threat modeling and risk assessment methodologies.
• Familiarity with security tools such as static analysis, dynamic analysis, and penetration testing frameworks.
• In-depth understanding of networking protocols, cryptographic algorithms, and vulnerability management.
• Experience with cloud security architecture and securing cloud environments (AWS, Azure, etc.).
• Excellent communication skills and ability to work collaboratively in cross-functional teams.
• Current security clearance or willingness and ability to acquire one.
• One or more of the Desired Qualifications.

 

Desired Qualifications

• Experience in the aerospace or satellite industry.
• Knowledge of security frameworks such as NIST 800-171, Risk Management Framework, CMMC.
• Experience with incident response and security monitoring tools.
• Familiarity with hardware security principles and practices.
• Relevant industry certifications such as OSCP, or SANS certifications are a plus.