About Us
LeoLabs is the leading provider of integrated solutions that persistently monitor activity in space to reveal threats to safety and security. Through our unique global radar network and AI-enabled analytic platform, we collect millions of measurements per day across more than 21,000 objects in low Earth orbit (LEO) to maintain a living map of orbital traffic. LeoLabs is transforming how military space commands, civil government agencies, commercial satellite operators see, understand and act on opportunities to protect and defend their assets in space.
The Opportunity
We are seeking an experienced and highly motivated Site Reliability Engineer with a security focus to join the Platform team at LeoLabs. As a security focused SRE, you will collaborate with the CISO and cybersecurity team, as you play a critical role in implementing, enforcing and maintaining the security baseline across our AWS organization. You will be responsible for implementing security guardrails using IaC and AWS native solutions including but not limited to AWS GuardDuty, AWS Inspector, AWS Systems Manager, and AWS Config.
Key Responsibilities:
· System Reliability: Design, implement, and maintain scalable and reliable systems
· Monitoring and Incident Response: Set up monitoring tools and create incident response plans to quickly identify and resolve issues, as well as implementing preventative measures
· Collaboration: Work closely with development teams to integrate security controls and best practices into the development process
· Documentation: Create and maintain documentation for system architecture, processes, and incident reports
· Security: Implement and enforce security best practices across all systems, ensuring compliance with industry standards
Qualifications:
· Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent work experience
· Proficient in Python, Java, Go or other high-level languages in a SaaS platform
· Experience with compliance and security frameworks (NIST, ISO-27001, Fedramp, OWASP)
· Experience with securing a Kubernetes cluster, and developing security patterns for multiple engineering teams to follow
· Experience with fine-grained authorization frameworks (AWS IAM/Cedar), SSO, and SAML/OIDC
· Experience with cost-effective auditing and logging to a SIEM
· Experience with infrastructure as code, policy as code, and testing changes to infrastructure and policy (Terraform)
· Experience building and maintaining reliable, scalable systems in a cloud-native Linux/UNIX environment like AWS/GCP/Azure
· Experience with cloud deployment technologies, such as Kubernetes, Docker containers, Serverless (Lambdas), and Hybrid (on-prem/external Clouds)
· Excellent problem-solving skills and a proactive mindset to identify and address security vulnerabilities and operational issues
· Ability to work on-call outside of normal business hours during critical escalations
Preferred qualifications
· Experience with Terragrunt
· Familiarity with AWS Organizations, JIT IAM credential solutions, and Atlantis
Within 1 month, you’ll:
· Complete our comprehensive onboarding program, gaining insights into our business, vision, and team
· Gain an understanding about how your role fits into LeoLabs broader organization
· Familiarize yourself with LeoLabs' engineering stack, AWS Organization, and security posture
Within 3 months, you’ll:
· Collaborate and support the CISO on threat modeling and security control integration into development processes
· Begin contributing to automating security measures using infrastructure and policy as code.
· Provide recommendations on enhancing security practices and development workflows
Within 6 months, you’ll:
· Own the implementation of security improvements and continuous monitoring processes
· Lead security training sessions and collaborate on cloud and container security enhancements
· Refine and document incident response procedures with the broader team
Within 12 months, you’ll:
· Drive the evolution of our security-focused SRE practices, influencing the entire organization's approach to security
· Actively mitigate risk of failed delivery and missed deadlines through courageous, transparent communication with colleagues and stakeholders throughout a project life cycle
· Be a key advisor for security in new product developments and platform evolution
· Mentor junior engineers, fostering a security-first development culture
Salary offers are based on a combination of factors, including, but not limited to, experience, skills, and location. The salary range for this position $125,000 - 184,000
(We do not work with outside staffing agencies)
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
ITAR REQUIREMENTS
To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be eligible to obtain the required authorizations from the U.S. Department of State. More information regarding ITAR can be found at DDTC’s website