Cybersecurity Application Engineer

About Axiom Space

Axiom Space is building the world’s first commercial space station – Axiom Station. Serving as a cornerstone for sustained human presence in space, this next-generation orbital platform fosters groundbreaking innovation and research in microgravity, and cultivates the vibrant, global space economy of tomorrow. Today, driven by the vision of leading humanity's journey off planet, Axiom Space is the principal provider of commercial human spaceflight services to the International Space Station and developer of advanced spacesuits for the Moon and low-Earth orbit. Axiom Space is building era-defining space infrastructure that drives exploration and fuels a vibrant space economy that will empower our civilization to transcend Earth for the benefit of every human, everywhere.Axiom Space fosters a work environment inclusive of all perspectives. We are the pioneers of commercial space, leading the transformation of low-Earth orbit into a global space marketplace. Our mission-driven team is seeking a bold and dynamic Cybersecurity Application Engineer who is fueled by high ownership, execution horsepower, growth mindset, and driven to understand our world, science/technology, and life itself, for the benefit of all on Earth and beyond.

Position Summary

We are looking for a resilient, high-energy, experienced Cybersecurity Application Engineer with a strong background in cybersecurity applications to design, develop, implement, and maintain secure software systems within our aerospace applications for the Axiom Space Commercial Space program in Houston, TX. The selected candidate will ensure proper cybersecurity is embedded throughout the software development lifecycle and aligned with aerospace regulations and security frameworks. You will work closely with software engineers, system architects, and cybersecurity teams to ensure mission-critical applications meet the highest security standards. Candidates with a solid programming foundation who can quickly adapt to new languages and security frameworks are encouraged to apply.

Key Duties & Responsibilities

Secure Software Design & Integration

Design and integrate secure communications protocols and mechanisms into software applications, ensuring confidentiality, integrity, and availability of data. Embed security controls at the application level, including authentication, authorization, input validation, and encryption, tailored to aerospace requirements.

Threat Modeling & Risk Assessment

Perform comprehensive threat modeling to identify potential risks and attack vectors in software systems. Conduct risk assessments and vulnerability analysis to evaluate and mitigate security weaknesses throughout the development lifecycle.

Security Automation & DevOps Collaboration

Collaborate with DevOps teams to seamlessly integrate security automation tools within CI/CD pipelines, enabling continuous security validation and rapid response to vulnerabilities. Champion secure coding practices and foster a culture of security awareness across development and operations teams.

Application Security Testing

Conduct code reviews, static and dynamic analysis, and penetration testing of aerospace applications to uncover and remediate security flaws. Document findings and recommend solutions to enhance the security posture of software products.

Incident Response & Forensics

Contribute to incident response activities by investigating and analyzing application-level attacks. Support forensic investigations to determine root causes, impact, and remediation strategies following security incidents.

Continuous Learning & Industry Awareness

Stay abreast of emerging threats, vulnerabilities, and trends in both cybersecurity and the aerospace domain. Participate in ongoing training and professional development to maintain expertise in cutting-edge security technologies and best practices.

Stakeholder Communication & Project Management

Communicate project progress, status, and potential issues clearly to stakeholders and leadership, ensuring transparency and alignment with organizational goals. Implement and maintain agile project management methodologies throughout the project lifecycle, adapting to changing requirements and priorities.

Additional Responsibilities

Perform additional job duties as assigned, supporting cross-functional initiatives and contributing to the overall success of the cybersecurity program.

Qualifications

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education & Experience

• Bachelor’s Degree in Cybersecurity, Computer Science, or Computer Engineering is required
• 7+ years of relevant experience in cybersecurity or related fields is expected
• Demonstrated success in secure software development, particularly within aerospace or other regulated industries
• Proven ability to deliver high-quality results under tight deadlines, even in ambiguous or fast-moving environments
• History of proactive problem-solving and applying sound judgment to overcome complex challenges

Technical Skills and Knowledge

• Familiarity with industry standards and frameworks such as: FISMA, CMMC, NIST, AES, FIPS 140-2/3
• Proficiency in security tools, including: Static and dynamic analysis platforms, Penetration testing suites, Automation frameworks for security testing
• Strong understanding of application security principles, cryptography, and secure coding standards
• Experience with systems programming languages such as C, C++, Rust, or similar
• Knowledge of hardware security modules and cryptographic key management practices
• Relevant certifications are highly valued and may include: CISSP, CEH, GIAC
• Excellent communication and teamwork abilities are essential for collaborating across multidisciplinary teams and effectively conveying complex security concepts
• Ability to adapt and thrive in dynamic environments, contributing positively to organizational goals

Skills

Knowledge of zero trust architectures, secure boot, and hardware root-of-trust. Professional certifications such as CISSP, CEH, GWEB, OSCP, or CSSLP. Familiarity with the SPARTA framework. Familiarity with DO-178C. Strong understanding of network protocols, including TCP/IP and UDP. Exposure to software development in Linux environments. Experience supporting aerospace or defense programs.

Competencies

Embody our core values of leadership, innovation, and teamwork. In addition, to perform the job successfully, an individual should demonstrate the following competencies:

• Accountability
• Sense of Urgency
• Extreme Ownership
• Execution and Delivery
• Efficiency
• Effectiveness

Work Environment

Generally, an office environment, but can involve inside or outside work depending on the task.

Requirements

• Must be able to complete a U.S. government background investigation.
• Management has the prerogative to select at any level for which the position is advertised.
• Proof of U.S. Citizenship or US Permanent Residency is a requirement for this position.
• Must be willing to work evenings and weekends as needed to meet critical project milestones.

Physical Requirements

• Work may involve sitting or standing for extended periods (90% of the time)
• May require lifting and carrying up to 25 lbs. (5% of the time)

Equipment and Machines

Standard office equipment (PC, phone, printer, etc.)Axiom Space is proud to be an equal opportunity employer. Axiom Space does not discriminate on the basis of race, regional color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with disability, or other applicable legally protected characteristics.

Key skills/competency

• Cybersecurity Application Engineering
• Secure Software Design
• Threat Modeling
• Risk Assessment
• Application Security Testing
• Incident Response
• DevOps
• Aerospace Security
• NIST Frameworks
• Secure Coding Practices