NavtecaNavteca

Security Engineer

Added 4 hours ago

Security Engineer – NASA Mission Cloud

Overview
The Security Engineer for NASA Mission Cloud is responsible for designing, implementing, and maintaining robust security controls across mission-critical cloud environments that support spaceflight, research, and data operations. This role ensures the confidentiality, integrity, and availability of mission systems by applying advanced cybersecurity practices, compliance frameworks, and DevSecOps methodologies in highly regulated, high-stakes environments.

Key Responsibilities

  • Design and implement cloud security architectures across AWS, Azure, and/or GCP environments supporting mission workloads
  • Develop and enforce security controls aligned with federal standards (e.g., NIST 800-53, FedRAMP)
  • Integrate security into CI/CD pipelines (DevSecOps), including automated scanning, vulnerability management, and policy enforcement
  • Monitor cloud environments for threats using SIEM, IDS/IPS, and cloud-native security tools
  • Conduct security assessments, risk analyses, and vulnerability scans across infrastructure and applications
  • Lead incident response activities, including detection, containment, eradication, and post-incident analysis
  • Implement identity and access management (IAM) strategies, including least privilege and Zero Trust principles
  • Secure containerized and microservices environments (Docker, Kubernetes)
  • Protect sensitive mission data through encryption, key management, and data governance practices
  • Collaborate with cloud engineers, developers, and mission teams to embed security best practices
  • Maintain documentation for security controls, compliance artifacts, and audit readiness
  • Support Authority to Operate (ATO) processes and continuous monitoring requirements

Required Qualifications

  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
  • 5+ years of experience in cybersecurity, cloud security, or DevSecOps roles
  • Hands-on experience with at least one major cloud provider (AWS, Azure, or GCP)
  • Strong understanding of cloud security principles (IAM, network security, encryption, logging/monitoring)
  • Experience with security tools (e.g., SIEM platforms, vulnerability scanners, endpoint protection)
  • Knowledge of compliance frameworks such as NIST, FedRAMP, or FISMA
  • Experience with scripting or automation (Python, Bash, PowerShell)
  • Familiarity with container security and Kubernetes security best practices
  • Strong analytical, troubleshooting, and incident response skills

Preferred Qualifications

  • Experience supporting aerospace, defense, or government environments
  • Relevant certifications (e.g., CISSP, CISM, AWS Security Specialty, Azure Security Engineer, GCP Security Engineer)
  • Experience with Infrastructure as Code (Terraform, CloudFormation, Bicep) and securing IaC pipelines
  • Knowledge of Zero Trust Architecture and advanced threat detection techniques
  • Experience with data protection in high-performance or scientific computing environments
  • Active or eligible for U.S. security clearance

Core Competencies

  • Cloud Security Architecture
  • DevSecOps & Automation
  • Risk Management & Compliance
  • Threat Detection & Incident Response
  • Identity & Access Management (IAM)
  • Data Protection & Encryption
  • Vulnerability Management
  • Collaboration & Technical Leadership

Benefits

Navteca offers a comprehensive benefits package, including:

  • Medical Insurance
  • Dental Insurance
  • Life and AD&D Insurance
  • Short-Term and Long-Term Disability (STD/LTD)
  • 401(k) Retirement Plan
  • Paid Vacation
  • Paid Holidays
  • Paid Sick Leave
  • Comp/Flex Time