Your space-enabled career begins here

Building the space between proven and possible, MDA Space (TSX:MDA) is a trusted mission partner to the global space industry. A robotics, satellite systems and geointelligence pioneer with a 55-year+ story of world firsts and more than 450 missions, MDA Space is a global leader in communications satellites, Earth and space observation, and space exploration and infrastructure.

The MDA Space team of more than 3,000 space experts in Canada, the US and the UK has the knowledge and know-how to turn an audacious customer vision into an achievable mission – bringing to bear a one-of-a-kind mix of experience, engineering excellence and wide-eyed wonder that’s been in our DNA since day one.

For those who dream big and push boundaries on the ground and in the stars to change the world for the better, we’ll take you there.

We’re on the hunt for a Staff Systems Engineer – Security in our Robotics and Space Operations Team at our Brampton Office

As a member of the Engineering team you will work on our programs such as Canada Arm 3 and MDA Skymaker products. You will work as part of a technical team to develop new capabilities, enhance existing capabilities and deliver solutions to our customers.

The Position

As a Staff Systems Engineer - Security, you would have responsibilities as the technical authority for security engineering elements for MDA’s Robotics and Space Operations products.

You will ensure expert support is provided to various product/project teams to ensure that they address the security target and comply with applicable policies, procedures and standards. You will define the target security posture and/or the security requirements for projects and solutions during their definition and development. You will provide insight into vulnerability management and response within complex information systems. Specifically this includes analyzing target environments identifying potential security vulnerabilities, policy violations, unexpected or undesired behaviour and activity.

Excellent internal and external communication and leadership skills are necessary in order to lead your team, work closely with the customer, with other technical teams, and to support the development of robust, secure and cost effective systems.

The successful candidate will have a blend of deep security knowledge, systems engineering experience, and experience working within government and defence contracts.

Responsibilities:

As a Staff Systems Engineer – Security (Product Security Role), you may have a wide range of responsibilities that include:

• Function as the overall Technical Authority for all security engineering activities involved in the Robotics and Space Operations products/projects;
• Consulting on the overall system architectures and operations concepts from a security perspective;
• Develop and maintain all security related system artefacts (e.g. specifications, ICDs, profiles, test documents, etc) from the customer level down to the major subsystem level;
• Derive security requirements, designs, solutions and mechanisms in response to customer requirements or industry standards
• Develop and lead all security acceptance and accreditation programs for systems;
• Support engineering program delivery through the development and generation of security related artefacts such as engineering plans, engineering budgets, design reports, and operational concepts;
• Review of design material provided by Subcontractors to ensure compliance to requirements;
• Oversee the verification plans for security related aspects of the product/system;

• Support cost estimates and presentations to both customers and senior management as necessary
• Responsible for ensuring Secure Software Development Lifecycle best practices are applied and measured
• Participate in Product Security Incident Response Team (PSIRT)
• Engage and interface across MDA to ensure security alignment between programs, business areas and corporate services.
• Direct and mentor other security personnel

Mandatory experience and skills:

• 15+ years of security systems engineering experience;
• Certified Information System Security Professional (CISSP)
• Experience in the following areas: Cloud Computing, Network Defense principles and practice, Identity & Privileged Access Management, Information Security, Cross Domain Solutions, Vulnerability Management and Threat Risk Assessment;
• Experience implementing and operating technologies in the SSDLC, including manual code reviews, SAST, DAST, IAST, RASP;
• Experience Threat and Risk Assessment using HTRA1 methodology.
• Experience in the delivery and accreditation of systems/services against NIST SP800-53
• Excellent verbal and written communications and customer interaction skills
• Excellent interpersonal skills, problem solving abilities and project execution strengths.

Other experience and skills:

• Understanding of government project delivery and execution processes from requirements through commissioning and support;
• Experience with NIST SP-800 suite (e.g.-53, -171) ISO/IEC, DISA STIGs, CIS, SANS standards;
• Experience in the delivery and accreditation of systems/services against recognized industry or government standard such NIST 800-171, SOC1, SOC2, ISO27001
• Experience in developing security elements as inputs to System Engineering Management Plans;
• Experience in designing, deploying and working with technologies such as Security Information and Event Management (SIEM), Intrusion Detection System (IDS), Intrusion prevention System (IPS), Endpoint Detection and Response (EDR), Identity & Privileged Management technologies
• Establishing Business Continuity Plans and Disaster Recovery Programs;
• Experience using Open Source Security Testing Methodology
• Experience Threat Modeling using industry standards such as PASTA, DREAD,
• Experience using an Application Security Verification Standard such as OWASP ASVS
• Experience with OWASP References and SQL Vulnerabilities
• Familiarity with requirements management software
• Certifications such as:
• Certified Cloud Security Professional (CCSP)
• Certified Information Security Manager (CISM)
• Offensive Security Certified Professional (OCSP)

Education:

• A University degree in Engineering, Computer Science, or related field from an accredited institution is required.

Comments/Special Considerations:

Successful candidates must obtain and hold security clearance at the SECRET status level II, and pass security assessment for the Controlled Goods Program (CGP).

We’re a dream team of purpose-driven, collaborative and passionate people, and we are constantly looking for others to join #TeamMDA to ignite new and innovative approaches to problem-solving that push us forward to improve life on and above Earth. If you’re excited to expand our place in space and driven to inspire the next generation, we’ll take you there.

We have entered a new era of exploration and development, and MDA welcomes all who yearn to suit up and be part of it. An equal opportunity employer prizing diversity, integrity and collaboration, we are committed to growing MDA’s and Canada’s leadership in this next golden age.

MDA provides competitive compensation and benefits packages for its employees at all locations. As a team member of MDA, you and your qualified dependents are eligible to participate in a benefit plan that ensures a comprehensive level of protection through competitive health care including; extended healthcare and flexible drug plans, dental and vision benefits, disability income protection, life insurance, group retirement savings plans; and an employee and family assistance program.

MDA is proud to provide accommodation(s) during the recruitment process. Should you require any accommodations, please indicate this on your application/cover letter and we will work with you to meet your accessibility needs.

The compensation range for this position is $123,000 - $169,000 annually. The specific compensation offered will be based on the qualifications and experience of the successful candidate.

#LI-KP1