Software Engineer- Cybersecurity and Cryptography
About the role
Xona is seeking a high-caliber Software Engineer specializing in Cybersecurity and Cryptography to lead the development of our production-grade ground segment software. This role involves designing and implementing cryptographic modules, applying defensive programming techniques, and integrating secure hardware components.
Responsibilities
- Design and implement production-ready cryptographic modules for key management, IAM, and secure communication protocols (e.g., TLS, AES-GCM, ECC).
- Apply rigorous defensive programming techniques to eliminate common vulnerabilities and ensure software resilience against adversarial inputs.
- Develop secure data-at-rest solutions for persistent memory (PMEM) architectures, protecting sensitive cryptographic material from cold-boot or physical extraction attacks.
- Lead the development of high-availability ground station software managing the security lifecycle of the satellite constellation.
- Integrate Hardware Security Modules (HSMs) and Trusted Platform Modules (TPMs) into the ground infrastructure for secure key storage and signing operations.
- Implement Zero Trust architecture in hybrid-cloud environments, ensuring robust protection against sophisticated threats.
Requirements
- Cryptographic Implementation: Mastery of C/C++ with a focus on memory-safe patterns and defensive coding standards (e.g., MISRA C, SEI CERT); proficiency in Python for security tooling.
- Defensive Programming: Direct experience programming for persistent memory or non-volatile storage, including an understanding of memory-mapped files and data consistency models.
- Applied Cryptography: Deep understanding of symmetric/asymmetric encryption, digital signatures, hashing, and Public Key Infrastructure (PKI).
- Security Infrastructure: Hands-on experience with Cloud Security (AWS), Kubernetes security, and automated CI/CD security scanning (SAST/DAST).
Technical Qualifications
- Experience: 5+ years of software engineering experience with a heavy focus on security-sensitive applications.
- Languages: Mastery of C/C++ with a focus on memory-safe patterns and defensive coding standards (e.g., MISRA C, SEI CERT); proficiency in Python for security tooling.
- Systems Programming: Direct experience programming for persistent memory or non-volatile storage, including an understanding of memory-mapped files and data consistency models.
- Applied Cryptography: Deep understanding of symmetric/asymmetric encryption, digital signatures, hashing, and Public Key Infrastructure (PKI).
- Security Infrastructure: Hands-on experience with Cloud Security (AWS), Kubernetes security, and automated CI/CD security scanning (SAST/DAST).
Preferred Qualifications
- Experience with Satellite Ground Segment software or aerospace communications.
- Knowledge of Post-Quantum Cryptography (PQC) standards.
- Familiarity with hardware-level security and side-channel attack mitigation.
- Experience implementing Zero Trust architecture in hybrid-cloud environments.
Pay
Competitive salary commensurate with experience.
Schedule
Full-time, remote work option available.
Benefits
Comprehensive benefits package including health insurance, retirement plans, and paid time off.
Skills
Experience with C/C++, Python, memory-safe patterns, defensive coding standards, persistent memory programming, cryptography, PKI, cloud security, Kubernetes, CI/CD security scanning, and Zero Trust architecture.
Benefits
Flexible working hours, professional development opportunities, and a supportive team culture.