Senior Information Security Engineer

At Vast, our mission is to contribute to a future where billions of people are living and thriving in space. We are building artificial gravity space stations, allowing long-term stays in space without the adverse effects of zero-gravity. Our initial crewed space habitat will be Haven-1, scheduled to be the world’s first commercial space station when it launches into low earth orbit in August 2025. Our team is all-in, committed to executing our mission safely and on time. If you want to work with the most talented people on Earth furthering space exploration for humanity, come join us.

Vast is looking for a Senior Information Security Engineer, reporting to the Information Security Manager, to assist in the deployment and maintenance of the organization's growing information security infrastructure. The Senior Information Security Engineer supports the enforcement of security policies and procedures, ensuring compliance with pertinent regulations and security standards (i.e. NIST SP 800-171 Rev 2)

This will be a full-time, exempt position located in our Long Beach location.

Responsibilities: 

• Research, select/build, and implement tools to improve our security posture
• Evaluate and recommend security technologies, tools, and best practices
• Implement/maintain solutions and configurations to achieve compliance with government regulations like NIST 800-171, CMMC 2.0, and ITAR/EAR
• Work cross-functionally with other teams to ensure the security of the systems they use or build
• Automate our security infrastructure to the maximum extent possible
• Assess our information systems attack surface to identify and remediate gaps and weaknesses
• Lead and improve our incident response program
• Monitor security systems, networks, and applications for suspicious activities

Minimum Qualifications:

• 4+ years of hands-on experience 
• Experience securing Windows, MacOS, and Linux endpoints
• Proficiency in configuring, deploying, and maintaining security tools such as SIEM, IDS/IPS, antivirus, and vulnerability scanning
• Proficient understanding of cloud technologies such as AWS, Google, and Azure
• Proficient in using automation scripts (i.e. Powershell, Bash, Python)
• Knowledge of network protocols, firewalls, and intrusion detection/prevention systems

Preferred Skills & Experience:

• Technical certifications such as OSCP, eCPPT, or platform specific certifications
• Familiarity with Kali Linux
• Understanding of cyber deception
• Experience conducting social engineering campaigns
• Experience supporting audits and assessments
• Understanding of compliance requirements and certifications like NIST 800-171, CMMC 2.0, DFARS 252.204-7012, ITAR/EAR 
• Familiarity with security SaaS solutions and relevant integrations
• Prior experience working in a fast-paced startup environment

Additional Requirements:

• Ability to travel up to 10% of the time
• Willingness to work evenings and/or weekends to support critical mission milestones

Pay Range:

• Senior Information Security Engineer: $140,000 - $185,000

COMPENSATION AND BENEFITS   Base salary will vary depending on job-related knowledge, education, skills, experience, business needs, and market demand. Salary is just one component of our comprehensive compensation package. Full-time employees also receive company equity, as well as access to a full suite of compelling benefits and perks, including: 100% medical, dental, and vision coverage for employees and dependents, flexible paid time off for exempt staff and up to 15 days of vacation for non-exempt staff, paid parental leave, short and long-term disability insurance, life insurance, free catered meals and snacks and beverages, access to a 401(k) retirement plan, One Medical membership, ClassPass credits, personalized mental healthcare through Spring Health, and other discounts and perks.

U.S. EXPORT CONTROL COMPLIANCE STATUS

The person hired will have access to information and items subject to U.S. export controls, and therefore, must either be a “U.S. person” as defined by 22 C.F.R. § 120.62 or otherwise eligible for deemed export licensing. This status includes U.S. citizens, U.S. nationals, lawful permanent residents (green card holders), and asylees and refugees with such status granted, not pending.  

EQUAL OPPORTUNITY

Vast is an Equal Opportunity Employer; employment with Vast is governed on the basis of merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability or any other legally protected status.