Posted 1 day ago
Secret
Unspecified
Unspecified
IT - Security
(On-Site/Office)
Full-time
Senior Security Systems Engineer (Cloud & Infrastructure)
The Opportunity
We are looking for a hands-on Senior Security Engineer to architect and implement the security foundations for a distributed, high-availability communications platform. This is a "builder" role designed for an engineer who prefers writing code and configuring systems over purely drafting policy. You will have the mandate to automate security controls across global cloud infrastructure, ensuring the integrity of mission-critical data for aerospace and federal environments.
Technical Mission
You will join a specialized engineering team tasked with hardening a multi-environment ecosystem. Your primary objective is to move beyond manual intervention by building automated detection, response, and identity frameworks that scale with our infrastructure.
Core Responsibilities
Infrastructure Hardening: Design and implement security configurations for GCP (primary) and AWS, focusing on compute, networking, and GKE/Kubernetes clusters.
Security Orchestration: Build and maintain automated workflows for vulnerability management, evidence collection, and incident response using Python and Terraform.
Identity & Access: Architect Zero Trust environments by implementing MFA, SSO, and Least-Privilege IAM policies across all enterprise and production systems.
Pipeline Security: Integrate automated security testing and secrets management (Vault/GCP Secret Manager) into GitLab CI/CD workflows.
Detection & Response: Deploy and tune EDR, SIEM, and logging architectures to ensure high-fidelity monitoring and rapid root-cause analysis.
Compliance Engineering: Translate regulatory requirements (such as NIST 800-53, CMMC, or FedRAMP) into technical controls and automated audit trails.
Technical Profile
Cloud Depth: 5+ years of experience securing cloud-native environments, with a strong preference for Google Cloud Platform (GCP).
Container Security: Demonstrated experience securing Kubernetes (Network Policies, Pod Security Standards, and container hardening).
Code Proficiency: Strong ability to script in Python or Bash and manage infrastructure via Terraform.
Security Tooling: Hands-on experience deploying enterprise-grade security suites (Vulnerability scanners, EDR, and centralized logging).
Networking: Deep understanding of network segmentation, VPNs, and encrypted communications in distributed mesh networks.
Federal Standards: Familiarity with the technical nuances of ITAR, DFARS, or FedRAMP is highly valued.
Requirements
U.S. Citizenship is required due to the nature of our federal and defense-related projects.
Ability to obtain a U.S. Government Security Clearance (Active Secret or TS preferred).
Why this role is unique
Unlike traditional "Internal Security" roles, this position sits at the intersection of DevSecOps and Aerospace Engineering. You aren't just protecting a corporate network; you are securing the next generation of planetary and orbital communication systems.
Senior Security Systems Engineer (Cloud & Infrastructure)
The Opportunity
We are looking for a hands-on Senior Security Engineer to architect and implement the security foundations for a distributed, high-availability communications platform. This is a "builder" role designed for an engineer who prefers writing code and configuring systems over purely drafting policy. You will have the mandate to automate security controls across global cloud infrastructure, ensuring the integrity of mission-critical data for aerospace and federal environments.
Technical Mission
You will join a specialized engineering team tasked with hardening a multi-environment ecosystem. Your primary objective is to move beyond manual intervention by building automated detection, response, and identity frameworks that scale with our infrastructure.
Core Responsibilities
Infrastructure Hardening: Design and implement security configurations for GCP (primary) and AWS, focusing on compute, networking, and GKE/Kubernetes clusters.
Security Orchestration: Build and maintain automated workflows for vulnerability management, evidence collection, and incident response using Python and Terraform.
Identity & Access: Architect Zero Trust environments by implementing MFA, SSO, and Least-Privilege IAM policies across all enterprise and production systems.
Pipeline Security: Integrate automated security testing and secrets management (Vault/GCP Secret Manager) into GitLab CI/CD workflows.
Detection & Response: Deploy and tune EDR, SIEM, and logging architectures to ensure high-fidelity monitoring and rapid root-cause analysis.
Compliance Engineering: Translate regulatory requirements (such as NIST 800-53, CMMC, or FedRAMP) into technical controls and automated audit trails.
Technical Profile
Cloud Depth: 5+ years of experience securing cloud-native environments, with a strong preference for Google Cloud Platform (GCP).
Container Security: Demonstrated experience securing Kubernetes (Network Policies, Pod Security Standards, and container hardening).
Code Proficiency: Strong ability to script in Python or Bash and manage infrastructure via Terraform.
Security Tooling: Hands-on experience deploying enterprise-grade security suites (Vulnerability scanners, EDR, and centralized logging).
Networking: Deep understanding of network segmentation, VPNs, and encrypted communications in distributed mesh networks.
Federal Standards: Familiarity with the technical nuances of ITAR, DFARS, or FedRAMP is highly valued.
Requirements
U.S. Citizenship is required due to the nature of our federal and defense-related projects.
Ability to obtain a U.S. Government Security Clearance (Active Secret or TS preferred).
Why this role is unique
Unlike traditional "Internal Security" roles, this position sits at the intersection of DevSecOps and Aerospace Engineering. You aren't just protecting a corporate network; you are securing the next generation of planetary and orbital communication systems.
group id: 91166918
