Security Operations Engineer

Overview

Umbra is an American space technology company delivering advanced systems, from sensors to spacecraft, that empower customers worldwide with unmatched access to critical information from space. Our mission is simple and ambitious: redefine space—for people, systems, and missions in every domain. Umbra's ecosystem operates through three business units:
Remote Sensing (the data), Space Systems (the components), and Mission Solutions (the platforms). Together, our teams develop capabilities that deliver persistent access, resilient performance, and mission-ready solutions, advancing U.S. space leadership while keeping the world safe and informed.

Umbra s Information Technology organization operates as a shared service and strategic capability, embedding security, automation, and operational rigor directly into the platforms the business depends on. Security is not an overlay, it is designed, implemented, and evidenced through IT platforms.

The Security Operations Engineer is a hands-on technical role responsible for implementing, operating, and continuously improving security controls across Umbra s corporate technology platforms. This position serves as the primary conduit between Information Security (Info Sec) and IT execution, ensuring security policy is translated into durable, auditable technical controls.

Sitting within Core Infrastructure, this role owns the security configuration control plane for corporate IT, identity, access, network security, endpoint posture, logging, and detection, while partnering closely with Info Sec on risk management, POA&M execution, and audit readiness.

This is an engineering-first role focused on building secure-by-default platforms, not a SOC-only or alert-triage position. The mission is to embed security into Umbra s core technology platforms by implementing scalable, automated, and auditable security controls that protect the enterprise while enabling speed, reliability, and compliance.

Our aim is to hire this position to work in either our Santa Barbara/Goleta, CA office, Arlington, VA office, or Reston, VA office (coming soon).

Security Control Implementation & Operations

• Implement and operate technical security controls across identity, endpoint, network, and cloud platforms.
• Translate Info Sec policies, standards, and POA&Ms into enforceable configurations and guardrails.
• Own security configuration hygiene for corporate platforms, ensuring controls are consistently applied and monitored.

Identity & Access Security

• Operate and secure Umbra s Identity & Access Management (IAM) stack, including IdP, SSO, MFA, SCIM/JIT, and PAM.
• Partner with Core Infrastructure and Digital Workplace to ensure access is least-privilege, time-bound, and auditable.
• Support quarterly access reviews and remediation activities in partnership with Info Sec.

Endpoint & Platform Security

• Partner with Digital Workplace to enforce endpoint security baselines across Windows and macOS.
• Ensure endpoint controls align with Info Sec standards (encryption, patching, device trust).
• Operate platform-level security tooling for endpoint posture, monitoring, and compliance.

Network & Cloud Security

• Support security operations across network and cloud environments, including:
• Firewalls, segmentation, ZTNA/VPN
• Cloud guardrails and security configurations
• Partner with Core Infrastructure engineers to ensure secure-by-design network and cloud architectures

Detection, Logging & Incident Support

• Operate and tune logging, monitoring, and detection capabilities across IT platforms.
• Support investigation and response for security incidents in coordination with Info Sec.
• Provide technical context, evidence, and remediation support during incident response activities.

Audit, Evidence & Compliance Enablement

• Act as a primary technical contributor to audit evidence generation for IT-owned controls.
• Maintain documentation, configuration artifacts, and system evidence required for SOC 2, NIST, CMMC, FedRAMP, and related frameworks.
• Partner with Info Sec to ensure evidence is accurate, timely, and repeatable.

Continuous Improvement & Automation

• Identify opportunities to automate security controls, evidence collection, and compliance reporting.
• Reduce manual security toil through policy-driven automation and infrastructure-as-code patterns.
• Contribute security improvements to the IT automation backlog via the SMO.

Cross-Team Collaboration & Governance

• Collaborate closely with:
• Info Sec for policy, risk, and assurance
• Core Infrastructure for platform guardrails
• Digital Workplace for endpoint and employee-facing security controls
• Enterprise Applications for app-level security configuration and evidence
• Participate in SMO forums, CABs, and security-related change reviews

Required Qualifications

• 5+ years of experience in security engineering, security operations, or infrastructure security roles.
• Strong hands-on experience implementing security controls across:
• Identity & Access Management
• Endpoint…