Director - Product Security
MDA
About MDA:
Building the space between proven and possible, MDA Space (TSX:MDA) is a trusted mission partner to the global space industry. A robotics, satellite systems and geointelligence pioneer with a 55-year+ story of world firsts and more than 450 missions, MDA Space is a global leader in communications satellites, Earth and space observation, and space exploration and infrastructure. The MDA Space team of more than 3,800 space experts in Canada, the US and the UK has the knowledge and know-how to turn an audacious customer vision into an achievable mission – bringing to bear a one-of-a-kind mix of experience, engineering excellence and wide-eyed wonder that’s been in our DNA since day one. For those who dream big and push boundaries on the ground and in the stars to change the world for the better, we’ll take you there.
The Role:
MDA Space is seeking a Director of Product Security responsible for ensuring the security and integrity of MDA Space’s system, product and service offerings in its Geointelligence, Robotics and Space Operations and Satellite Systems business areas. The Director of Product Security will be responsible for ensuring that security is built into every stage of the product lifecycle from conception, through design, development, manufacture, delivery and operation. The director will lead the effort to systematically anticipate and mitigate security vulnerabilities and ensure that MDA’s offerings meet standards commensurate with the mission and safety critical applications our systems, products and services are used.
Job Responsibilities:
1. Product Security Strategy
a. Develop and implement a comprehensive product security strategy for systems, products and services spanning from design to post-delivery phases, aligning with the company's overall business goals and objectives.
2. Product Security Governance
a. Define, implement and maintain product security policies, standards, and governance frameworks.
b. Ensure compliance with regulatory, industry standards and customer security requirements
c. Ensure that regular security audits and threat modeling and risk assessments are conducted to identify potential security vulnerabilities in products and services.
3. Secure Product Development Lifecycle
a. Ensure that security-by-design principles are integrated into systems and product architectures, coding, threat modeling, and testing across all Business Areas.
b. Oversee secure development practices for both hardware and software components, including static and binary analysis, penetration testing, and SBOM (Software Bill of Materials) management, ensuring security is embedded from initial design through production and deployment.
4. Incident Response and Lifecycle Management
a. Develop and lead incident response plans for product security breaches.
b. Manage vulnerabilities and coordinate responses to security incidents affecting products in the field, including leading the PSIRT (Product Security Incident Response Team)
c. Maintain product security after delivery, including monitoring, updates, and end-of-life considerations.
5. Product Security Training and Culture
a. Promote a security-aware culture within product development and project teams across MDA Space Business Areas.
b. Ensure relevant product security training is delivered and measured for effectiveness
c. Foster collaboration across MDA Space Business areas, including Chief Architect, Product Development, Program Management, Engineering and Mission Assurance teams to ensure security is integrated consistently and effectively into the product development and operation lifecycle.
6. Stakeholder Engagement
a. Act as the primary point of contact for product security with customers, regulators, and internal teams.
b. Communicate security risks, strategies, and incidents to executive leadership and to the Board of Directors.
Job Qualifications:
1. Technical Expertise
a. Deep understanding of both hardware and software security, including secure coding, embedded systems, and cryptography.
b. Experience with secure product development lifecycles, vulnerability management, and compliance frameworks relevant to the industry.
c. Strong experience designing secure hardware and software systems, with experience in the domain of development and operation of spaceflight systems and their ground control systems viewed as a major asset.
2. Leadership and Communication
a. Proven leadership skills in managing cross-functional teams and influencing without direct authority.
b. Strong communication skills to advocate for security and educate both technical and non-technical stakeholders.
3. Regulatory and Compliance Knowledge
a. Experience in the delivery and accreditation of systems/services against recognized industry or government standards such as NIST SP800-53, NIST 800-171, SOC1, SOC2 and ISO27001.
4. Risk Management and Incident Response
a. Experience developing risk assessments, security policies, and incident response plans tailored to product security.
5. Education and Experience
a. A degree in computer science, engineering, cybersecurity, or a related field.
b. 10+ years of experience in product security, with at least 5 years in a leadership role
Comments/Special Considerations:
- Successful candidates must obtain and hold security clearance at the Secret level, and pass security assessment for the Controlled Goods Program (CGP).
We’re a dream team of purpose-driven, collaborative and passionate people, and we are constantly looking for others to join #TeamMDA to ignite new and innovative approaches to problem-solving that push us forward to improve life on and above Earth. If you’re excited to expand our place in space and driven to inspire the next generation, we’ll take you there.
We have entered a new era of exploration and development, and MDA welcomes all who yearn to suit up and be part of it. An equal opportunity employer prizing diversity, integrity and collaboration, we are committed to growing MDA’s and Canada’s leadership in this next golden age.
MDA Space is proud to provide accommodation(s) during the recruitment process. Should you require any accommodations, please indicate this on your application/cover letter and we will work with you to meet your accessibility needs.
The compensation range for this position is $170,000-210,000 annually. The specific compensation offered will be based on the qualifications and experience of the successful candidate.
