Platform Trust & Security Lead (Satellite / Firmware Security)The RoleThe Platform Trust & Security Lead will lead the security architecture for satellite onboard systems (bus + payload compute). You will be responsible for designing secure boot chains, attestation mechanisms, and enforcing trust boundaries across all onboard components. This role requires close collaboration with hardware, firmware, and system teams to ensure end-to-end platform integrity
Key Responsibilities- Security Strategy and Architecture: Develop and maintain a comprehensive security strategy, architecture, and roadmap tailored to the specific challenges of satellite and firmware security.
- Platform Trust Design: Lead the design and implementation of a robust secure boot and chain of trust architecture for all satellite onboard systems
- Security Controls Implementation: Drive the design, implementation, and management of platform-specific security controls, including:
- Defining requirements for Hardware Root of Trust (TPM, secure elements, eFuse)
- Implementing and managing firmware signing and attestation processes
- Developing access control mechanisms for onboard software and low-level interfaces.
- Threat Modeling and Risk Assessment: Conduct thorough threat modeling and risk assessments to identify vulnerabilities and potential attack vectors across satellite firmware and low-level embedded systems
- Incident Response: Develop and maintain incident response plans and procedures specific to onboard system compromise, and lead and coordinate security incident response activities.
- Collaboration and Communication: Work closely with hardware, firmware (C/C++, Rust preferred exposure), and systems teams to embed security best practices throughout the platform development lifecycle
- Team Growth and Leadership: Actively grow the Logos security team by recruiting top-tier talent and providing technical guidance and mentorship to contribute to the overall security organization growth.
Basic Qualifications:- Bachelor's degree in Computer Science, Cybersecurity, or a related field (Master's degree preferred).
- Minimum of 7-10 years of experience in network security engineering, with demonstrable experience in designing and implementing security solutions for complex network environments.
- Strong knowledge of security principles, best practices, and frameworks (e.g. Zero Trust, defense-in-depth).
- Excellent analytical, problem-solving, and low-level debugging skills
- Ability to work independently and as part of a collaborative team in a fast-moving environment.
Must-Have Skills- Secure boot / chain of trust design
- Embedded systems (C/C++, Rust preferred exposure)
- Hardware Root of Trust (TPM, secure elements, eFuse)
- Firmware signing / attestation
- Low-level debugging & threat modeling
Preferred Qualifications- Experience working with or understanding the unique security challenges and considerations of space-based communication systems.
- Knowledge of satellite networking concepts and protocols.
- Relevant security certifications such as CISSP, CISM, CompTIA Security+, or equivalent.
- Ability and willingness to attain a Top Secret Clearance.
Your level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, and experience.