Sr. Information Security Engineer (Identity and Access Management)
Hawthorne, CA, United States
SpaceX
SpaceX designs, manufactures and launches advanced rockets and spacecraft. The company was founded in 2002 to revolutionize space technology, with the ultimate goal of enabling people to live on other planets.SpaceX was founded under the belief that a future where humanity is out exploring the stars is fundamentally more exciting than one where we are not. Today SpaceX is actively developing the technologies to make this possible, with the ultimate goal of enabling human life on Mars.
SR. INFORMATION SECURITY ENGINEER (IDENTITY AND ACCESS MANAGEMENT)
SpaceX is looking for a Sr. Information Security Engineer to join the Information Security team to help protect and drive the SpaceX mission. Information drives our business and we must protect the confidentiality, integrity, and availability of systems and processes across the enterprise. As a highly visible and dynamic organization, we must also value and guard against damage to our reputation and brand. Finally, it is paramount that we defend against loss of control or confidence in our systems, to guarantee the highest probability of success. This role will focus on the "behind the scenes" technologies that ensure our networks and systems are up to industry and SpaceX standards of information security. It will also focus on providing high-criticality and high-risk services, with the confidentiality, integrity, and availability of those services in mind. This role will partner with various application development and customer groups across SpaceX to ensure that we are identifying and remediating any emerging vulnerabilities.
As an Identity and Access Management Engineer, you'll be a key member of the Information Security team. You’ll work on applications and systems which touch all aspects of the SpaceX infrastructure, ensuring users and systems are properly authenticated and authorized to utilize our systems. You’ll use your creativity to develop solutions to interesting problems; integrating new technologies with legacy systems can be challenging, and engineering solutions to retrofit or replace these systems are a common occurrence as we continue to mature. Automation workloads are commonplace, and ensuring the security of these workloads is of paramount importance. This role requires a strong background in security as it relates to platform infrastructure, application security, and other aspects of network/cloud infrastructure security.
RESPONSIBILITIES:
- Develop passwordless authentication solutions within the greater SpaceX organization
- Work with industry-standard tools and technologies such as Hashicorp Vault, Puppet, WebAuthn and others to improve the security posture of SpaceX
- Engineer solutions to challenging legacy, business critical software’s problems, including credential management for automated workflows
- Standardize authentication and authorization software, policies and procedures across the enterprise
- Architect complex IAM systems which span multiple organizations, challenging requirements and ensuring appropriate access to mission-critical systems
- Scope and perform security reviews of on-premise infrastructure, private and public cloud environments
- Work with engineering teams within SpaceX as a liaison to the Information security team, ensuring adherence to best practices and providing early security-conscious changes
- Produce research and collaborate with our peers in the broader cyber-security industry
BASIC QUALIFICATIONS:
- Bachelor’s degree in information systems, information security, computer science, or computer engineering and 4+ years of information security, networking and/or systems administration experience; or 6+ years of information security experience without a degree
- 2+ years of experience designing, building, implementing, integrating and/or maintaining IAM and configuration management technologies in an enterprise level environment
- Experience with Linux, Windows, and Mac system internals
- Experience with SAML, OIDC, and OAuth
PREFERRED SKILLS AND EXPERIENCE:
- Experience with WebAuthn, PIV and similar standards
- Experience with secure code development practices
- Experience with the Python programming language, C#, or Rust
- Familiarity with developing web-based APIs, HTTP-RPC, and REST
- Familiarity with enterprise security controls and security best practices for Windows, Linux, and Mac systems
- Effective problem-solving skills, and ability to quickly determine root-causes of issues
- Familiarity with macOS and Windows code-signing and deployment of enterprise applications
ADDITIONAL REQUIREMENTS:
- Willingness to work extended hours and weekends as needed
ITAR REQUIREMENTS:
- To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State. Learn more about the ITAR here
SpaceX is an Equal Opportunity Employer; employment with SpaceX is governed on the basis of merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability or any other legally protected status.
Applicants wishing to view a copy of SpaceX’s Affirmative Action Plan for veterans and individuals with disabilities, or applicants requiring reasonable accommodation to the application/interview process should notify the Human Resources Department at (310) 363-6000.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Application security Automation C Cloud Computer Science IAM Linux MacOS Puppet Python Rust SAML Vulnerabilities Windows
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Senior Cyber Security Specialist jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs