Senior Software Security Engineer

Summary

Join Muon Space as a Staff Software Security Engineer and contribute to the development of secure software for hardware systems in U.S. Government and ITAR-controlled environments. You will champion secure coding practices, collaborate with software engineers and cross-functional teams, and ensure compliance with ITAR regulations. Responsibilities include threat modeling, vulnerability analysis, and security code reviews. The ideal candidate possesses extensive software development experience, expertise in secure SDLC practices, and in-depth knowledge of ITAR. This role offers a competitive salary and comprehensive benefits package.

Requirements

• Minimum of 10 years of professional experience in software development
• Proven experience in software development security, including secure SDLC practices, threat modeling, and vulnerability assessment
• Demonstrable experience writing, testing, and debugging software for hardware platforms
• Experience with U.S. Government contracts and familiarity with government standards and procurement processes
• In-depth knowledge and hands-on experience with International Traffic in Arms Regulations (ITAR)
• Experience with software version control systems (e.g., Git), continuous integration/continuous deployment (CI/CD) pipelines, and automated testing frameworks
• Strong analytical and problem-solving skills with the ability to troubleshoot complex software and hardware integration issues
• Excellent written and verbal communication skills, with the ability to document technical details clearly and concisely

Responsibilities

• Implement and champion secure coding practices and software development security methodologies throughout the development lifecycle
• Implement and enforce secure coding practices (e.g., SAST, DAST, threat modeling) throughout the software development lifecycle
• Collaborate closely with software engineers to define software requirements, ensure seamless hardware/software integration, and troubleshoot complex system-level issues
• Collaborate with cross-functional teams to define software requirements, system architecture, and integration plans
• Review and advise on the development of software for ITAR-controlled payloads, ensuring strict adherence to all applicable export control laws and company policies
• Ensure all software development activities and deliverables comply with U.S. Government standards and ITAR regulations
• Work extensively with ITAR systems, including managing access to controlled technical data, ensuring compliance with applicable controls and regulations
• Conduct threat modeling, vulnerability analysis, and security code reviews to identify and mitigate potential security risks in software and systems
• Develop and maintain comprehensive software documentation, including design specifications, test plans, verification procedures, and reports necessary for U.S. Government contracts and ITAR compliance
• Support the integration, testing, and deployment of software solutions in laboratory and operational environments
• Contribute to the continuous improvement of software development processes, security protocols, and compliance procedures
• Advise the organization on CMMC compliance

Preferred Qualifications

• Experience with specific industry standards relevant to government or aerospace/defense projects (NIST 800-series)
• Familiarity with encryption technologies and secure data handling practices
• Experience working in Agile development environments
• Knowledge of systems engineering principles
• Experience implementing CMMC
• Direct experience with working in an organization that contracts with the US Government

Benefits

• Medical, dental, and vision insurance
• A 401k retirement plan
• Short & long term disability and life insurance
• Three weeks paid vacation for new employees
• 12 paid holidays
• Unlimited sick time
• Paid parental leave