Security Engineer
Navteca, Houston, TX, United States
Security Engineer – NASA Mission Cloud
Overview
The Security Engineer for NASA Mission Cloud is responsible for designing, implementing, and maintaining robust security controls across mission-critical cloud environments that support spaceflight, research, and data operations. This role ensures the confidentiality, integrity, and availability of mission systems by applying advanced cybersecurity practices, compliance frameworks, and DevSecOps methodologies in highly regulated, high-stakes environments.
Key Responsibilities
Design and implement cloud security architectures across AWS, Azure, and/or GCP environments supporting mission workloads
Develop and enforce security controls aligned with federal standards (e.g., NIST 800-53, FedRAMP)
Integrate security into CI/CD pipelines (DevSecOps), including automated scanning, vulnerability management, and policy enforcement
Monitor cloud environments for threats using SIEM, IDS/IPS, and cloud-native security tools
Conduct security assessments, risk analyses, and vulnerability scans across infrastructure and applications
Lead incident response activities, including detection, containment, eradication, and post-incident analysis
Implement identity and access management (IAM) strategies, including least privilege and Zero Trust principles
Secure containerized and microservices environments (Docker, Kubernetes)
Protect sensitive mission data through encryption, key management, and data governance practices
Collaborate with cloud engineers, developers, and mission teams to embed security best practices
Maintain documentation for security controls, compliance artifacts, and audit readiness
Support Authority to Operate (ATO) processes and continuous monitoring requirements
Required Qualifications
Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
5+ years of experience in cybersecurity, cloud security, or DevSecOps roles
Hands‑on experience with at least one major cloud provider (AWS, Azure, or GCP)
Strong understanding of cloud security principles (IAM, network security, encryption, logging/monitoring)
Experience with security tools (e.g., SIEM platforms, vulnerability scanners, endpoint protection)
Knowledge of compliance frameworks such as NIST, FedRAMP, or FISMA
Experience with scripting or automation (Python, Bash, PowerShell)
Familiarity with container security and Kubernetes security best practices
Strong analytical, troubleshooting, and incident response skills
Preferred Qualifications
Experience supporting aerospace, defense, or government environments
Relevant certifications (e.g., CISSP, CISM, AWS Security Specialty, Azure Security Engineer, GCP Security Engineer)
Experience with Infrastructure as Code (Terraform, CloudFormation, Bicep) and securing IaC pipelines
Knowledge of Zero Trust Architecture and advanced threat detection techniques
Experience with data protection in high-performance or scientific computing environments
Active or eligible for U.S. security clearance
Core Competencies
Cloud Security Architecture
DevSecOps & Automation
Risk Management & Compliance
Threat Detection & Incident Response
Identity & Access Management (IAM)
Data Protection & Encryption
Vulnerability Management
Collaboration & Technical Leadership
Benefits
Navteca offers a comprehensive benefits package, including:
Medical Insurance
Dental Insurance
Life and AD&D Insurance
Short-Term and Long-Term Disability (STD/LTD)
401(k) Retirement Plan
Paid Vacation
Paid Holidays
Paid Sick Leave
Comp/Flex Time
#J-18808-Ljbffr
Overview
The Security Engineer for NASA Mission Cloud is responsible for designing, implementing, and maintaining robust security controls across mission-critical cloud environments that support spaceflight, research, and data operations. This role ensures the confidentiality, integrity, and availability of mission systems by applying advanced cybersecurity practices, compliance frameworks, and DevSecOps methodologies in highly regulated, high-stakes environments.
Key Responsibilities
Design and implement cloud security architectures across AWS, Azure, and/or GCP environments supporting mission workloads
Develop and enforce security controls aligned with federal standards (e.g., NIST 800-53, FedRAMP)
Integrate security into CI/CD pipelines (DevSecOps), including automated scanning, vulnerability management, and policy enforcement
Monitor cloud environments for threats using SIEM, IDS/IPS, and cloud-native security tools
Conduct security assessments, risk analyses, and vulnerability scans across infrastructure and applications
Lead incident response activities, including detection, containment, eradication, and post-incident analysis
Implement identity and access management (IAM) strategies, including least privilege and Zero Trust principles
Secure containerized and microservices environments (Docker, Kubernetes)
Protect sensitive mission data through encryption, key management, and data governance practices
Collaborate with cloud engineers, developers, and mission teams to embed security best practices
Maintain documentation for security controls, compliance artifacts, and audit readiness
Support Authority to Operate (ATO) processes and continuous monitoring requirements
Required Qualifications
Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
5+ years of experience in cybersecurity, cloud security, or DevSecOps roles
Hands‑on experience with at least one major cloud provider (AWS, Azure, or GCP)
Strong understanding of cloud security principles (IAM, network security, encryption, logging/monitoring)
Experience with security tools (e.g., SIEM platforms, vulnerability scanners, endpoint protection)
Knowledge of compliance frameworks such as NIST, FedRAMP, or FISMA
Experience with scripting or automation (Python, Bash, PowerShell)
Familiarity with container security and Kubernetes security best practices
Strong analytical, troubleshooting, and incident response skills
Preferred Qualifications
Experience supporting aerospace, defense, or government environments
Relevant certifications (e.g., CISSP, CISM, AWS Security Specialty, Azure Security Engineer, GCP Security Engineer)
Experience with Infrastructure as Code (Terraform, CloudFormation, Bicep) and securing IaC pipelines
Knowledge of Zero Trust Architecture and advanced threat detection techniques
Experience with data protection in high-performance or scientific computing environments
Active or eligible for U.S. security clearance
Core Competencies
Cloud Security Architecture
DevSecOps & Automation
Risk Management & Compliance
Threat Detection & Incident Response
Identity & Access Management (IAM)
Data Protection & Encryption
Vulnerability Management
Collaboration & Technical Leadership
Benefits
Navteca offers a comprehensive benefits package, including:
Medical Insurance
Dental Insurance
Life and AD&D Insurance
Short-Term and Long-Term Disability (STD/LTD)
401(k) Retirement Plan
Paid Vacation
Paid Holidays
Paid Sick Leave
Comp/Flex Time
#J-18808-Ljbffr