Logos Space is a Low Earth Orbit (LEO) satellite system purpose-built to serve the connectivity needs of the commercial enterprise users and government users. We will help fill an important gap in the market, providing resilient, high-performance satellite-based connectivity services to enterprise and government customers worldwide. Business customers have contracts with agreed-upon performance standards for their broadband, and Logos will build these capabilities into the system from the beginning. Speed and reliability are the foundation of the system. Logos is designed to extend cloud and data center network connectivity anywhere in the world to fixed, seaborne, and airborne terminals.

Logos is led by a team of highly experienced engineers with proven track records in the networking and satellite industries.

‍

Position Summary & Responsibilities

The Network Engineering team at Logos Space engineering is responsible for ensuring the success of our network by providing unique levels of security and authentication in space communications.  The framework for this is inherent in the concept of a Layer 2, 2.5, and 3 service that can support full end to end, or customer-provided encryption, isolated flows, and point to point delivery that never utilizes shared infrastructures, such as IP Transit exchanges. Providing these services, and fully exploiting the benefits of this framework is the fundamental challenge in this position.

This position will be responsible for developing an integrated security architecture across the payload, bus, ground segment and Software Defined Network segments of the Logos architecture, and both managing its implementation, and working with the other implementation teams to ensure if it is fully implemented. Once deployed, the security architecture will need to address emergent threats and continually evolve to meet new ones.  This role is not an advisory one; it is a driver of much of the architecture, and will require overseeing extensive development efforts specific to the security architecture, as well as those included within the other development efforts, such the ground segment and spacecraft systems.

You should be prepared to work and thrive in a fast moving environment where you are comfortable taking vague design ideas and turning them into tangible hardware ready for test and flight. We are seeking engineers who love to solve hard problems!

• Security Strategy and Architecture: Develop and maintain a comprehensive security strategy, architecture, and roadmap tailored to the specific challenges and opportunities presented by a hybrid space and terrestrial network operating at all layers of the network. Specific focuses include:
  
  • Develop the technical requirements for confidentiality and authentication throughout the Logos system, protecting both customer traffic and Logos control over the network.
  • Develop the product security requirements to ensure that the Logos product is not vulnerable to any form of cyber attack or denial. Continually update these as the threat environment continues to evolve
  • Develop policies, practices, and implement assurance of the security of the Logos supply chain; ensuring no vulnerabilities are introduced by any element of the supply chain
• Threat Modeling and Risk Assessment: Conduct thorough threat modeling and risk assessments to identify vulnerabilities and potential attack vectors across all network layers and environments (space, ground infrastructure, and interconnections).
• Security Controls Implementation: Lead the design, implementation, and management of security controls, including but not limited to:
  
  • Network segmentation strategies
  • Intrusion detection and prevention systems (IDS/IPS) 
  • Encryption technologies for data in transit and at rest, considering the unique constraints of space-based links.
  • Access control mechanisms, including multi-factor authentication (MFA) and role-based access control (RBAC)
  • Security Information and Event Management (SIEM) system design and integration
  • Vulnerability management programs, including regular scanning and remediation efforts.
• Incident Response: Develop and maintain incident response plans and procedures specific to the hybrid network environment, including simulation exercises and post-incident analysis. Lead and coordinate security incident response activities.
• Security Monitoring and Analysis: Establish robust security monitoring capabilities to detect and analyze suspicious activity across the network. Develop custom alerts and dashboards to provide actionable insights.
• Compliance and Governance: Ensure adherence to relevant security standards, regulations, and compliance frameworks (e.g., NIST, ISO 27001) as they pertain to both terrestrial and potentially space-based operations.
• Collaboration and Communication: Collaborate effectively with network engineering, systems engineering, and software development teams to integrate security best practices throughout the network lifecycle. Communicate security risks and recommendations to other technical and non-technical stakeholders.
• Security Awareness and Training: Contribute to the development and delivery of security awareness training programs tailored to the unique aspects of the hybrid network environment.
• Technology Evaluation: Evaluate and recommend new security technologies and solutions relevant to the evolving threat landscape and the specific requirements of the hybrid network.
• Mentorship and Leadership: Build the Logos software and access control team by recruiting the talent needed to secure the system. Provide technical guidance and mentorship to security team members and contribute to the overall growth of the security organization, and Logos as a whole.

Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, or a related field (Master's degree preferred).
• Minimum of 7-10 years of experience in network security engineering, with demonstrable experience in designing and implementing security solutions for complex network environments.
• In-depth understanding of networking protocols and technologies across Layers 2, 2.5 (MPLS, QinQ), and 3 (TCP/IP, routing, switching).
• Strong knowledge of security principles, best practices, and frameworks (e.g., Zero Trust, defense-in-depth).
• Experience with the actual implementation of network security technologies, intrusion detection/prevention systems, and endpoint security solutions.
• Understanding of encryption and authentication technologies and their application in network security.
• Excellent analytical, problem-solving, and troubleshooting skills.
• Strong communication, presentation, and interpersonal skills.
• Ability to work independently and as part of a collaborative team. 
•  Familiarity with cloud security principles and practices.

Preferred Qualifications:

• Experience working with or understanding the unique security challenges and considerations of space-based communication systems.  
• Knowledge of satellite networking concepts and protocols.
• Relevant security certifications such as CISSP, CISM, CompTIA Security+, or equivalent.
• Experience with automation for security tasks.
• Ability and willingness to attain a Top Secret Clearance

‍To apply, please submit your resume or CV to careers@logosspace.com with the name of the job title in the subject line. 

‍

--------

‍Logos Space Services is an equal opportunity employer committed to fostering creativity, curiosity and diverse perspectives among employees. We seek to create an environment where everyone can reach their full potential and drive outstanding results. All qualified applicants will receive consideration for employment without regard to race, national origin, age, sex, religion, disability, sexual orientation, marital status, veteran status, gender identity or expression, or any other basis protected by local, state, or federal law. This policy applies with regard to all aspects of one's employment, including hiring, transfer, promotion, compensation, eligibility for benefits, and termination. Offers will be contingent on the candidate's ability to access export-controlled information under U.S. law.