Senior Information Assurance Engineer
Vast
At Vast, our mission is to contribute to a future where billions of people are living and thriving in space. We are building artificial gravity space stations, allowing long-term stays in space without the adverse effects of zero-gravity. Our initial crewed space habitat will be Haven-1, scheduled to be the world’s first commercial space station when it launches into low earth orbit in August 2025. Our team is all-in, committed to executing our mission safely and on time. If you want to work with the most talented people on Earth furthering space exploration for humanity, come join us.
Vast is looking for an Senior Information Assurance Engineer, reporting to the Information Security Manager, to assist in the deployment and maintenance of the organization's growing cybersecurity infrastructure. The Senior Information Assurance Engineer supports the enforcement of security policies and procedures, ensuring compliance with pertinent regulations and security standards (i.e.
This will be a full-time, exempt position located in our Long Beach location.
Responsibilities:
- Research, select/build, and implement tools to improve our security posture
- Evaluate and recommend security technologies, tools, and best practices.
- Implement/maintain solutions and configurations to achieve compliance with government regulations like NIST 800-171, CMMC 2.0, and ITAR/EAR
- Work cross-functionally with other teams to ensure the security of the systems they use or build
- Continuously monitor compliance and security controls
Minimum Qualifications:
- 4+ years of hands-on experience
- Experience implementing compliance requirements (i.e. NIST 800-171, CMMC 2.0, DFARS 252.204-7012, ITAR/EAR)
- Experience supporting audits and assessments
- Experience implementing security baselines for Windows, MacOS, and Linux endpoints leveraging industry known benchmarks (i.e. STIG, CIS, NSA SHB, etc.)
- Experience in using automation scripts (i.e. Powershell, Bash, Python)
Preferred Skills & Experience:
- Proficiency in configuring, deploying, and maintaining security tools such as SIEM, IDS/IPS, antivirus, and vulnerability scanning.
- Experience automating compliance processes (i.e. compliance as code, security orchestration)
- Familiarity with security SaaS solutions and relevant integrations
- Prior experience working in a fast-paced startup environment.
Additional Requirements:
- Ability to travel up to 50% of the time
- Willingness to work evenings and/or weekends to support critical mission milestones
- Ability to lift up to 25lbs unassisted
- Specific certifications, as appropriate
Pay Range:
- Level II: $120,000 - $170,000
- Level III: $140,000 - $200,000
U.S. EXPORT CONTROL COMPLIANCE STATUS
The person hired will have access to information and items subject to U.S. export controls, and therefore, must either be a “U.S. person” as defined by 22 C.F.R. § 120.62 or otherwise eligible for deemed export licensing. This status includes U.S. citizens, U.S. nationals, lawful permanent residents (green card holders), and asylees and refugees with such status granted, not pending.EQUAL OPPORTUNITY