Apply on Employer Site

Axiom Space · 22 hours ago

Cybersecurity Application Engineer

Houston, TX

Full-time

Onsite

Senior Level

7+ years exp

Axiom Space is building the world’s first commercial space station and is seeking a Cybersecurity Application Engineer to design and maintain secure software systems for aerospace applications. The role involves ensuring cybersecurity throughout the software development lifecycle and collaborating with various teams to meet high security standards.

AerospaceIndustrial ManufacturingSpace Travel

No H1B

U.S. Citizen Only

Responsibilities

Design and integrate secure communications protocols and mechanisms into software applications, ensuring confidentiality, integrity, and availability of data

Embed security controls at the application level, including authentication, authorization, input validation, and encryption, tailored to aerospace requirements

Perform comprehensive threat modeling to identify potential risks and attack vectors in software systems

Conduct risk assessments and vulnerability analysis to evaluate and mitigate security weaknesses throughout the development lifecycle

Collaborate with DevOps teams to seamlessly integrate security automation tools within CI/CD pipelines, enabling continuous security validation and rapid response to vulnerabilities

Champion secure coding practices and foster a culture of security awareness across development and operations teams

Conduct code reviews, static and dynamic analysis, and penetration testing of aerospace applications to uncover and remediate security flaws

Document findings and recommend solutions to enhance the security posture of software products

Contribute to incident response activities by investigating and analyzing application-level attacks

Support forensic investigations to determine root causes, impact, and remediation strategies following security incidents

Stay abreast of emerging threats, vulnerabilities, and trends in both cybersecurity and the aerospace domain

Participate in ongoing training and professional development to maintain expertise in cutting-edge security technologies and best practices

Communicate project progress, status, and potential issues clearly to stakeholders and leadership, ensuring transparency and alignment with organizational goals

Implement and maintain agile project management methodologies throughout the project lifecycle, adapting to changing requirements and priorities

Perform additional job duties as assigned, supporting cross-functional initiatives and contributing to the overall success of the cybersecurity program

Qualification

Cybersecurity applicationsSecure software developmentThreat modelingRisk assessmentSecurity automationApplication security testingIncident responseDevOps collaborationProgramming languagesFISMACMMCNISTAESFIPS 140-2/3Static analysis toolsDynamic analysis toolsPenetration testingCryptographySecure coding standardsHardware security modulesCryptographic key managementZero trust architecturesSecure bootNetwork protocolsLinux environmentsAerospace experienceAccountabilitySense of urgencyExecutionDelivery

Required

Bachelor's Degree in Cybersecurity, Computer Science, or Computer Engineering is required

7+ years of relevant experience in cybersecurity or related fields is expected

Demonstrated success in secure software development, particularly within aerospace or other regulated industries

Proven ability to deliver high-quality results under tight deadlines, even in ambiguous or fast-moving environments

History of proactive problem-solving and applying sound judgment to overcome complex challenges

Familiarity with industry standards and frameworks such as: FISMA (Federal Information Security Management Act), CMMC (Cybersecurity Maturity Model Certification), NIST (National Institute of Standards and Technology), AES (Advanced Encryption Standard), FIPS 140-2/3 (Federal Information Processing Standards)

Proficiency in security tools, including: Static and dynamic analysis platforms, Penetration testing suites, Automation frameworks for security testing

Strong understanding of application security principles, cryptography, and secure coding standards

Experience with systems programming languages such as C, C++, Rust, or similar

Knowledge of hardware security modules and cryptographic key management practices

Excellent communication and teamwork abilities are essential for collaborating across multidisciplinary teams and effectively conveying complex security concepts

Ability to adapt and thrive in dynamic environments, contributing positively to organizational goals

Must be able to complete a U.S. government background investigation

Proof of U.S. Citizenship or US Permanent Residency is a requirement for this position

Must be willing to work evenings and weekends as needed to meet critical project milestones

Work may involve sitting or standing for extended periods (90% of the time)

May require lifting and carrying up to 25 lbs. (5% of the time)

Preferred

Relevant certifications are highly valued and may include: CISSP (Certified Information Systems Security Professional), CEH (Certified Ethical Hacker), GIAC (Global Information Assurance Certification)

Knowledge of zero trust architectures, secure boot, and hardware root-of-trust

Professional certifications such as CISSP, CEH, GWEB, OSCP, or CSSLP

Familiarity with the SPARTA framework

Familiarity with DO-178C

Exposure to software development in Linux environments

Experience supporting aerospace or defense programs