Security Engineer Security Operations

Security Engineer Security Operations at SpaceX

SpaceX is driven by the vision of a multi-planetary future for humanity. To achieve this, we are actively developing advanced technologies, with the ultimate goal of enabling human life on Mars. This mission attracts sophisticated adversaries seeking to disrupt or obtain our cutting-edge innovations.

We are looking for a dedicated Security Engineer to join our Security Operations team. In this critical role, you will build and enhance the capabilities needed to detect and respond to these persistent threats within an environment that launches rockets and controls spacecraft. Your primary focus will be developing tooling and data delivery mechanisms to identify threat actors before they can compromise SpaceX's mission.

Your work will involve creating solutions to address visibility gaps and bolstering the resilience of internal tooling for maximum threat detection uptime. This includes developing automation workflows to reduce triage time for security detections, creating services to integrate new datasets or enrich existing ones, and assisting the Security Operations Center (SOC) in incident response and addressing visibility challenges during incidents. If you are passionate about detecting and disrupting sophisticated threat actors to secure SpaceX's ambitious mission to Mars, we encourage you to connect with us.

Responsibilities

• Build and improve existing security detection mechanisms and automation frameworks directly driving the Security Operations Center's effectiveness.
• Engage with relevant owners of high-risk systems and services to identify and prioritize detection gaps.
• Investigate anomalous or suspicious behavior identified through the detection engineering process.
• Participate in adversary emulation activities to identify detection gaps in the environment.

Basic Qualifications

• 2+ years of professional experience in incident response, security operations, or security engineering; OR a bachelor’s degree in security engineering, computer science, cyber security, engineering, math, or other STEM discipline.
• Experience with any modern programming language (e.g., Python, Go, C++, Rust).

Preferred Skills And Experience

• Experience performing Incident Response tasks or contributing to a CSIRT team.
• Experience building Extract, Transform, and Load (ETL) pipelines to optimize logging formats for threat detection from diverse systems.
• Demonstrated ability to support and manage services in a Kubernetes (k8s) environment, ensuring high availability and reliability through monitoring, alerting, and infrastructure automation.
• Knowledge of traditional Security Operations environments and response procedures, including modern Security Information and Event Management (SIEM) systems.
• Knowledge of common attack trends or techniques, and the evidence sources needed to investigate.
• Familiarity with enterprise security controls and best practices for Windows, Linux, and/or macOS systems.

Additional Requirements

• Ability to work extended hours and weekends as needed.

Key skills/competency

• Security Operations
• Incident Response
• Detection Engineering
• Automation Frameworks
• Cybersecurity
• Threat Detection
• ETL Pipelines
• Kubernetes (k8s)
• SIEM Systems
• Programming (Python, Go)