Jobs · Engineering · California

Software Engineer- Cybersecurity and Cryptography

Xona · Burlingame, CA · 3 wk ago
On-siteEngineeringFull-time

About the role

Xona is seeking a high-caliber Software Engineer specializing in Cybersecurity and Cryptography to lead the development of our production-grade ground segment software. This role involves designing and implementing cryptographic modules, applying defensive programming techniques, and integrating secure hardware components.

Responsibilities

  • Design and implement production-ready cryptographic modules for key management, IAM, and secure communication protocols (e.g., TLS, AES-GCM, ECC).
  • Apply rigorous defensive programming techniques to eliminate common vulnerabilities and ensure software resilience against adversarial inputs.
  • Develop secure data-at-rest solutions for persistent memory (PMEM) architectures, protecting sensitive cryptographic material from cold-boot or physical extraction attacks.
  • Lead the development of high-availability ground station software managing the security lifecycle of the satellite constellation.
  • Integrate Hardware Security Modules (HSMs) and Trusted Platform Modules (TPMs) into the ground infrastructure for secure key storage and signing operations.
  • Implement Zero Trust architecture in hybrid-cloud environments, ensuring robust protection against sophisticated threats.

Requirements

  • Cryptographic Implementation: Mastery of C/C++ with a focus on memory-safe patterns and defensive coding standards (e.g., MISRA C, SEI CERT); proficiency in Python for security tooling.
  • Defensive Programming: Direct experience programming for persistent memory or non-volatile storage, including an understanding of memory-mapped files and data consistency models.
  • Applied Cryptography: Deep understanding of symmetric/asymmetric encryption, digital signatures, hashing, and Public Key Infrastructure (PKI).
  • Security Infrastructure: Hands-on experience with Cloud Security (AWS), Kubernetes security, and automated CI/CD security scanning (SAST/DAST).

Technical Qualifications

  • Experience: 5+ years of software engineering experience with a heavy focus on security-sensitive applications.
  • Languages: Mastery of C/C++ with a focus on memory-safe patterns and defensive coding standards (e.g., MISRA C, SEI CERT); proficiency in Python for security tooling.
  • Systems Programming: Direct experience programming for persistent memory or non-volatile storage, including an understanding of memory-mapped files and data consistency models.
  • Applied Cryptography: Deep understanding of symmetric/asymmetric encryption, digital signatures, hashing, and Public Key Infrastructure (PKI).
  • Security Infrastructure: Hands-on experience with Cloud Security (AWS), Kubernetes security, and automated CI/CD security scanning (SAST/DAST).

Preferred Qualifications

  • Experience with Satellite Ground Segment software or aerospace communications.
  • Knowledge of Post-Quantum Cryptography (PQC) standards.
  • Familiarity with hardware-level security and side-channel attack mitigation.
  • Experience implementing Zero Trust architecture in hybrid-cloud environments.

Pay

Competitive salary commensurate with experience.

Schedule

Full-time, remote work option available.

Benefits

Comprehensive benefits package including health insurance, retirement plans, and paid time off.

Skills

Experience with C/C++, Python, memory-safe patterns, defensive coding standards, persistent memory programming, cryptography, PKI, cloud security, Kubernetes, CI/CD security scanning, and Zero Trust architecture.

Benefits

Flexible working hours, professional development opportunities, and a supportive team culture.

Similar jobs