×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Security Manager Systems Engineer

Senior Software Security Engineer

Job in Golden, Jefferson County, Colorado, 80401, USA
Listing for: Loft Federal
Full Time position
Listed on 2026-05-16
Job specializations:
  • IT/Tech
    Cybersecurity, Security Manager, Systems Engineer
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below

Loft Federal is committed to delivering theU.S. national security space communityafast, affordable, and streamlinedpathway to orbit. As awholly owned U.S. subsidiary of Loft Orbital Solutions, Inc., we specialize in providing mission-ready space infrastructure with unmatched efficiency.

At Loft, we empower our team withautonomy, ownership, and bold problem-solving opportunitieswhile fostering atight-knit, supportive environment. We believe that diversity, inclusivity, and communityare the foundation of an open and innovative culture. We valuekind, collaborative, and mission-driven teammates who excel inproblem-solving and communication—because great solutions come from great teams.

Are you ready to embark on this exciting journey with us?

We are seeking a Senior Software Security Engineer to lead the design, implementation, and assessment of the security architecture for our flight and ground software systems. This is not a traditional IT compliance role; you are a hands‑on software engineer first, with a deep passion for building security into the core of a product. You will be responsible for everything from hands‑on coding of security services to integrating automated controls into our CI/CD pipelines and ensuring our architecture meets the stringent requirements for a government Authority to Operate (ATO).

You will spend your time writing code, hardening our infrastructure, participating in threat modeling, and mentoring our talented software engineers in secure development practices. You will be the team's expert on balancing cutting‑edge security with the very real constraints of embedded systems and the compliance demands of NIST and CMMC frameworks.

What You’ll Do
  • Architect & Design: Design, develop, and contribute to the Zero Trust security architecture for our flight software, including services for authentication/ authorization, cryptographic key management, secure data storage, and secure transport. Lead the research and evaluation of security features, protocols, and third‑party tools to make data‑driven architectural decisions.
  • Harden Mission Infrastructure: Collaborate with infrastructure teams to secure our onboardflight software platform, including hardening embedded Linux systems, segmenting spacecraft network enclaves, configuring onboard

    IAM policies, and mitigating operational cybersecurity risks across the asset lifecycle.
  • Implement Security Controls in the SDLC: Work with the Dev Ops team to integrate and automate security controls directly into our CI/CD pipelines, including Static/Dynamic Application Security Testing (SAST/DAST), Software Composition Analysis (SCA), SBOM generation, and container vulnerability scanning using tools like Sonar Qube.
  • Lead Compliance Efforts: Serve as the technical expert for designing and implementing security controls required by NIST SP 800-53 / 800-171 such as encryption, access control, and secure logging. Participate in security architecture reviews, code audits, and threat modeling sessions to identify and remediate vulnerabilities like API weaknesses and supply chain risks. Collaborate with security team and ISSM to prepare systems and documentation for ATO approval.
What

We’re Looking For

Required Skills:

  • 5+ years of professional experience in software development, with at least 3 years in a security-focused role.
  • Deep understanding of modern security principles, including Dev Sec Ops , Zero Trust, container security, and common threats.
  • Demonstrable expertise in one or more of the following security domains: network security, application security, or cryptography.
  • Technical experience implementing and assessing controls for frameworks such as NIST SP 800-53 / 800-171.
  • Hands‑on experience with scripting and programming languages (e.g., Python, Bash, C++).
  • Strong understanding of Linux systems security and hardening.
  • Experience with container security (Docker, k3s) and vulnerability scanning tools.
  • One or more current, relevant security certifications such as Security+, CySA+, GSEC, CASP, or CISSP.
  • Active security clearance required.
Desired Skills (The more of these you have, the better)
  • Experience with embedded Linux environments and the challenges…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search