Senior Information Security Engineer

At Vast, our mission is to contribute to a future where billions of people are living and thriving in space. We are building artificial gravity space stations, allowing long-term stays in space without the adverse effects of zero-gravity. Our initial crewed space habitat will be Haven-1, scheduled to be the world’s first commercial space station when it launches into low earth orbit in May 2026. Our team is all-in, committed to executing our mission safely and on time. If you want to work with the most talented people on Earth furthering space exploration for humanity, come join us.

Vast is looking for a(n) Senior Information Security Engineer reporting to the Information Security Manager, to support the development of the systems that will be required for the design and build of artificial-gravity human-rated space stations.

This will be a full-time, exempt position located in our (Long Beach) location. 

Responsibilities:

• Design, deploy, and manage enterprise security technologies including firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, and security information and event management (SIEM) platforms.
• Implement/maintain solutions and configurations to achieve compliance with government regulations like NIST 800-171, CMMC 2.0, and ITAR/EAR.
• Work cross-functionally with other teams to ensure the security of the systems they use or build.
• Automate our security infrastructure to the maximum extent possible.
• Collaborate with SOC analysts and other teams to enhance detection and response capabilities.
• Support monitoring of  security systems, networks, and applications for suspicious activities.

Minimum Qualifications:

• 2+ years of hands-on experience.
• Experience securing Windows, MacOS, and Linux endpoints.
• Proficiency in configuring, deploying, and maintaining security tools such as SIEM, IDS/IPS, antivirus, and vulnerability scanning.
• Proficient understanding of cloud technologies such as AWS, Google, and Azure.
• Proficient in using automation scripts (i.e. Powershell, Bash, Python).
• Knowledge of network protocols, firewalls, and intrusion detection/prevention systems.

Preferred Skills & Experience:

• Technical certifications such as OSCP, eCPPT, or platform specific certifications.
• Familiarity with Kali Linux.
• Understanding of cyber deception.
• Experience conducting social engineering campaigns.
• Experience supporting audits and assessments.
• Understanding of compliance requirements and certifications like NIST 800-171, CMMC 2.0, DFARS 252.204-7012, ITAR/EAR.
• Familiarity with security SaaS solutions and relevant integrations.
• Prior experience working in a fast-paced startup environment.

Additional Requirements:

• Ability to travel up to 10% of the time.
• Willingness to work overtime, or weekends to support critical mission milestones.

Pay Range:

• Senior Information Security Engineer: $143,500 - $203,700
• Staff Information Security Engineer: $158,100 - $226,900

Salary Range: California$143,000—$226,900 USDCOMPENSATION AND BENEFITS   Base salary will vary depending on job-related knowledge, education, skills, experience, business needs, and market demand. Salary is just one component of our comprehensive compensation package. Full-time employees also receive company equity, as well as access to a full suite of compelling benefits and perks, including: 100% medical, dental, and vision coverage for employees and dependents, flexible paid time off for exempt staff and up to 10 days of vacation for non-exempt staff, paid parental leave, short and long-term disability insurance, life insurance, access to a 401(k) retirement plan, One Medical membership, ClassPass credits, personalized mental healthcare through Spring Health, and other discounts and perks. We also take pride in offering exceptional food perks, with snacks, drip coffee, cold drinks, and dinner meals remaining free of charge, and lunch subsidized as part of Vast’s ongoing commitment to providing high-quality meals for employees.

U.S. Export Control Compliance Status

The person hired will have access to information and items subject to U.S. export controls, and therefore, must either be a “U.S. person” as defined by 22 C.F.R. § 120.62 or otherwise eligible for deemed export licensing. This status includes U.S. citizens, U.S. nationals, lawful permanent residents (green card holders), and asylees and refugees with such status granted, not pending.  

Equal Opportunity

Vast is an Equal Opportunity Employer; employment with Vast is governed on the basis of merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability or any other legally protected status.