Cybersecurity Engineer - Unix

ABOUT FIREFLY AEROSPACE

As an end-to-end responsive space company, Firefly Aerospace is on a mission to enable our world to launch, land, and operate in space – anywhere, anytime. Our small- to medium-lift launch vehicles, lunar landers, and orbital vehicles allow us to service the entire lifecycle of government and commercial missions from low Earth orbit to the Moon and beyond. We utilize carbon composite structures, patented propulsion technologies, and common components across our vehicles to iterate quickly, improve reliability, and deliver payloads at a lower cost.

SUMMARY

As a Cybersecurity Engineer at Firefly, you will be responsible for designing, implementing, and maintaining robust security measures across our Unix-based systems, cloud infrastructures, containerized environments, and APIs. Your primary focus will be on enhancing the security posture of our Unix environments, ensuring the integrity and confidentiality of our cloud services, securing our Kubernetes and containerization platforms, and developing automated solutions to streamline security operations. You will collaborate closely with cross-functional teams to safeguard our data and systems against cyber threats, ensuring compliance with industry standards and regulations.?

RESPONSIBILITIES

• Unix Security Management:
  • Develop, implement, and maintain security policies and procedures for Unix-based systems, ensuring alignment with compliance standards such as ISO 27001, SOC 2, PCI-DSS, and NIST?
  • Conduct regular security assessments and vulnerability scans on Unix systems, implementing necessary patches and configurations to mitigate risks?
  • Monitor Security tools, and Unix system logs for suspicious activities, analyze security incidents, and respond promptly to mitigate potential threats
• Cloud Security:
  • Design, configure, and manage security measures within our cloud environments (e.g., AWS, Azure), including identity and access management, network security, and data protection strategies?
  • Implement and maintain cloud security best practices, ensuring compliance with relevant regulations and standards?
  • Collaborate with cloud service providers to assess and integrate new security features and services?
• Kubernetes and Containerization Security:
  • Secure Kubernetes clusters by implementing best practices, including role-based access control (RBAC), network policies, and pod security standards?
  • Manage and secure containerized applications using platforms like Docker and Kubernetes, ensuring the integrity and security of container images and registries?
  • Monitor and address vulnerabilities within container environments, implementing necessary patches and configurations?
• API Security:
  • Develop and enforce security standards for APIs, ensuring secure authentication, authorization, and data validation mechanisms?
  • Conduct regular security assessments of APIs to identify and mitigate potential vulnerabilities?
  • Collaborate with development teams to integrate security measures into API design and implementation?
• Automation and Tool Development:
  • Develop and implement automated solutions to enhance security operations, including automated monitoring, alerting, and incident response mechanisms?
  • Utilize scripting languages (e.g., Python, Bash) to automate routine security tasks and processes, improving efficiency and reducing manual intervention?
  • Collaborate with DevOps teams to integrate security tools and practices into CI/CD pipelines, ensuring security is embedded throughout the development lifecycle?
• Security Monitoring and Incident Response:
  • Monitor security tools and systems for alerts and events, investigating and responding to potential security incidents?
  • Develop and maintain incident response plans and playbooks, conducting regular drills to ensure preparedness?
  • Collaborate with internal and external stakeholders to coordinate responses to security incidents and vulnerabilities?
• Documentation and Compliance:
  • Create and maintain comprehensive documentation of security policies, procedures, and configurations?
  • Assist in security audits and assessments, providing necessary documentation and evidence to demonstrate compliance?
  • Stay updated on emerging security threats, technologies, and regulatory requirements, adapting security strategies accordingly?

QUALIFICATIONS

Required:

• Bachelor’s degree in Computer Science, Information Security, or a related field?
• Over 5 years of experience in information security engineering, with a strong focus on Unix systems, cloud security, Kubernetes, containerization, and API security?
• Proficiency in Unix/Linux/Mac operating systems, including security configurations and best practices?
• Experience with cloud platforms (e.g., AWS, Azure), including security services and configurations?
• Proficiency in Kubernetes and container orchestration platforms, including security best practices
• Experience with API security, including authentication, authorization, and data validation techniques?
• Proficiency in scripting languages such as Python and Bash for automation purposes?
• Experience with Security Information and Event Management monitoring tools, and incident response processes?
• Strong understanding of networking concepts, protocols, and security measures?
• Excellent problem-solving skills, attention to detail, and the ability to work both independently and collaboratively?

Desired:

• Certifications such as CISSP, AWS Certified Security – Specialty, Certified Kubernetes Security Specialist (CKS), or similar?
• Experience with compliance frameworks such as NIST, ISO 27001, SOC 2 and PCI-DSS?
• Familiarity with configuration management tools (e.g., Ansible, Terraform, Chef) and infrastructure as code (IaC) practices?
• Experience with containerization technologies (e.g., Docker, Kubernetes) and their security considerations?
• Knowledge of DevSecOps practices and integrating security into CI/CD pipelines

Firefly offers outstanding benefits for our employees, including generous health, dental and vision plans with low plan deductibles, parental leave, educational reimbursement, short term disability, and flexible PTO options.

To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.

Firefly Aerospace, Inc. is an Equal Opportunity Employer; employment with Firefly is governed based on merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability or any other legally protected status