Senior Software Security Engineer

Loft Federal is committed to delivering the U.S. national security space community a fast, affordable, and streamlined Pathway to orbit. As a wholly owned U.S. subsidiary of Loft Orbital Solutions, Inc., we specialize in providing mission-ready space infrastructure with unmatched efficiency. Loft empowers its team with autonomy, ownership, and bold problem-solving opportunities while fostering a tight-knit, supportive environment. We value diversity, inclusivity, and community, and we look for mission-driven teammates who excel in problem-solving and communication. What You'll Do

• Architect & Design: Design, develop, and contribute to the Zero Trust security architecture for our flight software, including services for authentication/authorization, cryptographic key management, secure data storage, and secure transport. Lead the research and evaluation of security features, protocols, and third-party tools to make data-driven architectural decisions.
• Harden Mission Infrastructure: Collaborate with infrastructure teams to secure our onboard flight software platform, including hardening Embedded Linux systems, segmenting spacecraft network enclaves, configuring onboard IAM policies, and mitigating operational cybersecurity risks across the asset lifecycle.
• Implement Security Controls in the SDLC: Work with the DevOps team to integrate and automate security controls directly into our CI/CD pipelines, including Static/Dynamic Application Security Testing (SAST/DAST), Software Composition Analysis (SCA), SBOM generation, and container vulnerability scanning using tools like SonarQube.
• Lead Compliance Efforts: Serve as the technical expert for designing and implementing security controls required by NIST SP 800-53/800-171 such as encryption, access control, and secure logging. Participate in security architecture reviews, code audits, and threat modeling sessions to identify and remediate vulnerabilities like API weaknesses and supply chain risks. Collaborate with security team and ISSM to prepare systems and documentation for ATO approval., * High-Impact Mission: Your work will directly contribute to the security of critical national space assets.
• Greenfield Opportunity: You will have the authority and autonomy to build a modern security architecture from the ground up, the "right way."
• Expert Team: You will be a senior member of a small, highly skilled team where your expertise will be valued and your contributions will be immediately visible.
• Modern Tech Stack: We are using a modern, cloud-native-inspired stack (k3s, NATS, CI/CD) to solve aerospace's most challenging problems.

• 5+ years of professional experience in software development, with at least 3 years in a security-focused role.
• Deep understanding of modern security principles, including DevSecOps, Zero Trust, container security, and common threats.
• Demonstrable expertise in one or more of the following security domains: network security, application security, or cryptography.
• Technical experience implementing and assessing controls for frameworks such as NIST SP 800-53/800-171.
• Hands-on experience with Scripting and programming languages (eg, Python, Bash, C+).
• Strong understanding of Linux systems security and hardening.
• Experience with container security (Docker, k3s) and vulnerability scanning tools.
• One or more current, relevant security certifications such as Security+, CySA+, GSEC, CASP, or CISSP.
• Active security clearance required.

Desired Skills

• Experience with Embedded Linux environments and the challenges of resource-constrained systems (CPU, memory).
• Hands-on experience with service-oriented or message-oriented architectures.
• Experience in the aerospace, defense, or another high-assurance industry. Particularly those who have written flight software for spacecraft, robotics, and/or autonomous vehicles.
• Experience with Infrastructure as Code (IaC) tools (Terraform, Helm, Ansible).

Salary Range: $130,000 USD - $180,000 USD Equal Employment Opportunity & Affidative Action