Home › Companies › 6AAE2F0452165153E7191BF3F850732E › Platform Security Engineer
Platform Security Engineer
6AAE2F0452165153E7191BF3F850732E · SLC, UT 84115; 2800 S West Temple Suite 2, SLC, UT, 84115, USA · Remote · Deleted · Paycom ATS
Job facts
| Field | Value |
|---|---|
| Company | 6AAE2F0452165153E7191BF3F850732E |
| Title | Platform Security Engineer |
| Normalized title | - |
| Department / team | - |
| Location | SLC, UT, United States |
| Work model | Remote / Remote |
| Employment type | - |
| Salary | - |
| Status | deleted |
| ATS provider | Paycom ATS |
| Posted / first seen | 2026-03-19 / 2026-05-31 |
| Changed / last seen | 2026-06-06 / 2026-06-03 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from 6AAE2F0452165153E7191BF3F850732E. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Paycom ATS. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in SLC. | Open |
| Work model jobs | Active Remote postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | 6AAE2F0452165153E7191BF3F850732E |
| Source | 09309bb5-51e0-4885-9a82-2ad93bcc384c |
| ATS provider | Paycom ATS |
Description
Description
Position Summary
Teal Drones is seeking an experienced Platform Security Engineer to own and mature our end-to-end software security posture across embedded Linux drone platforms, CI/CD infrastructure, and government cloud environments.
This role is the primary security authority responsible for threat modeling, vulnerability management, hardened firmware builds, secrets governance, and compliance assessments including Blue List / DoD evaluations.
You will collaborate directly with embedded firmware engineers, DevOps, various customers and platform teams to embed security into every layer of the software development lifecycle. This role also includes many hands-on engineering duties.
Essential Duties and Responsibilities
Embedded Linux Platform & Firmware Security
Design, implement and enforce hardening standards for Ubuntu-based embedded Linux firmware running on Qualcomm QRB5165/8550 and similar SoC platforms.
Own the process and conduct hands-on activities of auditing, patching, and validating OS-level security updates (e.g., Ubuntu ESM, CVE triage) for offline-deployable drone firmware images.
Identify and eliminate unnecessary services and open from production firmware builds to reduce attack surface during compliance assessments.
Develop, author and maintain BitBake/Yocto security recipes and patches for Qualcomm BSP layers, ensuring build-time application of security hardening.
Software Build Pipeline Security
Secure CI/CD pipelines, including build isolation, artifact integrity, and protection against race conditions and cross-job artifact contamination.
Enforce code signing, reproducible builds, and chain-of-custody controls for firmware artifacts distributed via internal Apache/S3 infrastructure.
Implement and audit role-based access controls across SCM and build systems.
Define and enforce branch protection policies, merge request security gates, and automated SAST/SCA scanning in CI pipelines.
Secrets Management & Cryptography
Lead, design and implement a secrets management strategy across build servers, embedded devices, and cloud infrastructure (e.g., HashiCorp Vault, AWS Secrets Manager).
Govern cryptographic key lifecycle: RSA key generation, rotation, storage, and revocation for firmware signing, device authentication, and secure comms.
Eliminate hardcoded credentials and insecure secret injection patterns across build scripts, Dockerfiles, and configuration files.
Implement challenge-response and hardware-rooted authentication mechanisms for embedded device access control.
Government Cloud & Compliance Security
Guide and build architecture and security controls for GovCloud (AWS GovCloud, Azure Government) deployments, ensuring alignment with FedRAMP, NIST SP 800-171, CMMC, and DoD IL requirements.
Hands-on respond to Nessus/vulnerability scanner findings (e.g., open port documentation, service inventory) from internal security assessments and Blue List evaluations.
Maintain security documentation including system security plans (SSPs), POA&Ms, and network/service inventories for auditable compliance records.
Coordinate with assessors and program security officers during formal security reviews of drone systems and supporting infrastructure.
Network & Device Security
Conduct and review network security assessments of drone fleet infrastructure, including nmap/Nessus scanning, open port auditing, and firewall rule management.
Establish secure remote access patterns for embedded devices (ADB, SSH hardening, udev-based controls) and enforce least-privilege access models.
Oversee radio frequency and communications security for drone platforms, including secure licensing and MAC-based authentication workflows for radio hardware.
Monitor and respond to security events across fleet management infrastructure using Prometheus/Grafana or similar alerting pipelines.
Security Program Leadership
Define and maintain the organization’s platform security roadmap, policies, and standards across hardware, firmware, software, and cloud layers.
Champion a security-first engineering culture through training, threat modeling workshops, and design reviews.
Manage third-party security vendors, penetration testers, and compliance consultants.
Track and report on security KPIs and vulnerability SLA compliance to engineering leadership.
Required Qualifications
Bachelor's or master's degree in computer science, Computer Engineering, or a related field.
5+ years hands-on experience in application security engineering, product security, or a closely related security engineering role.
Deep experience with embedded Linux systems (Yocto/BitBake, systemd, OverlayFS, device bring-up).
Strong proficiency in Linux OS hardening: service minimization, Ubuntu security patching (ESM), CVE management, and secure boot.
Experience securing CI/CD pipelines (Jenkins, GitLab CI) including artifact signing, secret scanning, and build isolation.
Proficiency with container technologies, primarily Docker.
Solid understanding of cryptography fundamentals: RSA, TLS, symmetric encryption, PKI, key management best practices.
Familiarity with government cloud security frameworks: FedRAMP, NIST 800-171, CMMC Level 2/3, or DoD IL2/IL4.
Experience with vulnerability management tooling: Nessus, OpenVAS, nmap, or equivalent.
Strong proficiency in scripting (Bash, Python) for security automation and tooling.
Strong written communication skills for producing compliance documentation and security assessments.
Proficiency with secrets management platforms (HashiCorp Vault, AWS Secrets Manager, SOPS).
Additional Desired Qualifications
Active DoD security clearance or eligibility preferred.
Background in drone, robotics, or aviation ssystems security.edge of radio communications security and RF licensing compliance.
Relevant certifications: CISSP, OSCP, CSSLP, GREM, or equivalent.
Experience with Qualcomm SoC platforms (QRB5165 or similar) and Android Debug Bridge (ADB) workflows.
Physical Requirements and Working Conditions
Must be able to walk, stand, and navigate large indoor and outdoor facilities for extended periods of time.
Ability to lift, carry, and move materials and equipment weighing up to 25 lbs on a regular basis.
Use of personal protective equipment (PPE) may be required in designated areas or when performing specific tasks, in accordance with safety protocols and company policy.
May be required to climb ladders, stoop, kneel, or crouch during inspections, maintenance walk-throughs, or emergency response situations.
Regular exposure to facility operations including noise, dust, temperature fluctuations, and industrial equipment.
Occasional off-hours or weekend work required for emergency facility responses or projects as needed
Requires frequent use of a computer and other standard office equipment for documentation, communication, and coordination tasks.
Background Check
This position will require successfully completing a post-offer background check. Qualified candidates with a criminal history will be considered and are not automatically disqualified, consistent with federal and state law.
EEO and ITAR/EAR Work Authorization Disclosure
Red Cat Holdings provides equal employment opportunities (EEO) to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This position requires direct or indirect access to hardware, software, technology or technical data controlled under the International Traffic in Arms Regulations (ITAR) and the Export Administration Regulations (EAR). Successful candidates for positions subject to ITAR/EAR restrictions must provide proof of U.S. Citizenship or Permanent Residence and must not require sponsorship for export-restricted work authorization.
E-Verify
The company participates E-Verify ensure eligibility for employment and compliance with Right to Work rules.
Compensation: Salary plus generous annual equity package and potential bonuses.
Full job record
| Job ID | ebbd607e87548d4ab0b4752a02c787f92f7823f0 |
| Org ID | 54397c73-abb2-493f-951e-b0f646283c44 |
| Source ID | 09309bb5-51e0-4885-9a82-2ad93bcc384c |
| Board ID | 09309bb5-51e0-4885-9a82-2ad93bcc384c |
| Provider | paycom |
| Provider Job Key | 313427 |
| Title | Platform Security Engineer |
| Normalized Title | — |
| Status | deleted |
| Active | no |
| Location Text | SLC, UT 84115; 2800 S West Temple Suite 2, SLC, UT, 84115, USA |
| Department | — |
| Team | — |
| Employment Type | — |
| Workplace Type | remote |
| Remote Policy | remote |
| Country | United States |
| Region | UT |
| City | SLC |
| Salary Raw | Description Position Summary Teal Drones is seeking an experienced Platform Security Engineer to own and mature our end-to-end software security posture across embedded Linux drone platforms, CI/CD infrastructure, and government cloud environments. This role is the primary security authority responsible for threat modeling, vulnerability management, hardened firmware builds, secrets governance, and compliance assessments including Blue List / DoD evaluations. You will collaborate directly with embedded firmware engineers, DevOps, various customers and platform teams to embed security into every layer of the software development lifecycle. This role also includes many hands-on engineering duties. Essential Duties and Responsibilities Embedded Linux Platform & Firmware Security Design, implement and enforce hardening standards for Ubuntu-based embedded Linux firmware running on Qualcomm QRB5165/8550 and similar SoC platforms. Own the process and conduct hands-on activities of auditing, patching, and validating OS-level security updates (e.g., Ubuntu ESM, CVE triage) for offline-deployable drone firmware images. Identify and eliminate unnecessary services and open from production firmware builds to reduce attack surface during compliance assessments. Develop, author and maintain BitBake/Yocto security recipes and patches for Qualcomm BSP layers, ensuring build-time application of security hardening. Software Build Pipeline Security Secure CI/CD pipelines, including build isolation, artifact integrity, and protection against race conditions and cross-job artifact contamination. Enforce code signing, reproducible builds, and chain-of-custody controls for firmware artifacts distributed via internal Apache/S3 infrastructure. Implement and audit role-based access controls across SCM and build systems. Define and enforce branch protection policies, merge request security gates, and automated SAST/SCA scanning in CI pipelines. Secrets Management & Cryptography Lead, design and implement a secrets management strategy across build servers, embedded devices, and cloud infrastructure (e.g., HashiCorp Vault, AWS Secrets Manager). Govern cryptographic key lifecycle: RSA key generation, rotation, storage, and revocation for firmware signing, device authentication, and secure comms. Eliminate hardcoded credentials and insecure secret injection patterns across build scripts, Dockerfiles, and configuration files. Implement challenge-response and hardware-rooted authentication mechanisms for embedded device access control. Government Cloud & Compliance Security Guide and build architecture and security controls for GovCloud (AWS GovCloud, Azure Government) deployments, ensuring alignment with FedRAMP, NIST SP 800-171, CMMC, and DoD IL requirements. Hands-on respond to Nessus/vulnerability scanner findings (e.g., open port documentation, service inventory) from internal security assessments and Blue List evaluations. Maintain security documentation including system security plans (SSPs), POA&Ms, and network/service inventories for auditable compliance records. Coordinate with assessors and program security officers during formal security reviews of drone systems and supporting infrastructure. Network & Device Security Conduct and review network security assessments of drone fleet infrastructure, including nmap/Nessus scanning, open port auditing, and firewall rule management. Establish secure remote access patterns for embedded devices (ADB, SSH hardening, udev-based controls) and enforce least-privilege access models. Oversee radio frequency and communications security for drone platforms, including secure licensing and MAC-based authentication workflows for radio hardware. Monitor and respond to security events across fleet management infrastructure using Prometheus/Grafana or similar alerting pipelines. Security Program Leadership Define and maintain the organization’s platform security roadmap, policies, and standards across hardware, firmware, software, and cloud layers. Champion a security-first engineering culture through training, threat modeling workshops, and design reviews. Manage third-party security vendors, penetration testers, and compliance consultants. Track and report on security KPIs and vulnerability SLA compliance to engineering leadership. Required Qualifications Bachelor's or master's degree in computer science, Computer Engineering, or a related field. 5+ years hands-on experience in application security engineering, product security, or a closely related security engineering role. Deep experience with embedded Linux systems (Yocto/BitBake, systemd, OverlayFS, device bring-up). Strong proficiency in Linux OS hardening: service minimization, Ubuntu security patching (ESM), CVE management, and secure boot. Experience securing CI/CD pipelines (Jenkins, GitLab CI) including artifact signing, secret scanning, and build isolation. Proficiency with container technologies, primarily Docker. Solid understanding of cryptography fundamentals: RSA, TLS, symmetric encryption, PKI, key management best practices. Familiarity with government cloud security frameworks: FedRAMP, NIST 800-171, CMMC Level 2/3, or DoD IL2/IL4. Experience with vulnerability management tooling: Nessus, OpenVAS, nmap, or equivalent. Strong proficiency in scripting (Bash, Python) for security automation and tooling. Strong written communication skills for producing compliance documentation and security assessments. Proficiency with secrets management platforms (HashiCorp Vault, AWS Secrets Manager, SOPS). Additional Desired Qualifications Active DoD security clearance or eligibility preferred. Background in drone, robotics, or aviation ssystems security.edge of radio communications security and RF licensing compliance. Relevant certifications: CISSP, OSCP, CSSLP, GREM, or equivalent. Experience with Qualcomm SoC platforms (QRB5165 or similar) and Android Debug Bridge (ADB) workflows. Physical Requirements and Working Conditions Must be able to walk, stand, and navigate large indoor and outdoor facilities for extended periods of time. Ability to lift, carry, and move materials and equipment weighing up to 25 lbs on a regular basis. Use of personal protective equipment (PPE) may be required in designated areas or when performing specific tasks, in accordance with safety protocols and company policy. May be required to climb ladders, stoop, kneel, or crouch during inspections, maintenance walk-throughs, or emergency response situations. Regular exposure to facility operations including noise, dust, temperature fluctuations, and industrial equipment. Occasional off-hours or weekend work required for emergency facility responses or projects as needed Requires frequent use of a computer and other standard office equipment for documentation, communication, and coordination tasks. Background Check This position will require successfully completing a post-offer background check. Qualified candidates with a criminal history will be considered and are not automatically disqualified, consistent with federal and state law. EEO and ITAR/EAR Work Authorization Disclosure Red Cat Holdings provides equal employment opportunities (EEO) to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This position requires direct or indirect access to hardware, software, technology or technical data controlled under the International Traffic in Arms Regulations (ITAR) and the Export Administration Regulations (EAR). Successful candidates for positions subject to ITAR/EAR restrictions must provide proof of U.S. Citizenship or Permanent Residence and must not require sponsorship for export-restricted work authorization. E-Verify The company participates E-Verify ensure eligibility for employment and compliance with Right to Work rules. Compensation: Salary plus generous annual equity package and potential bonuses. |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://www.paycomonline.net/v4/ats/web.php/jobs/ViewJobDetails?job=313427&clientkey=6AAE2F0452165153E7191BF3F850732E |
| Apply URL | https://www.paycomonline.net/v4/ats/web.php/jobs/ViewJobDetails?job=313427&clientkey=6AAE2F0452165153E7191BF3F850732E |
| First Seen At | 2026-05-31 19:04:57Z |
| Last Seen At | 2026-06-03 09:59:48Z |
| Last Checked At | 2026-06-06 09:47:28Z |
| Last Changed At | 2026-06-06 09:47:28Z |
| Inactive At | 2026-06-06 09:47:28Z |
| Source Posted At | 2026-03-19 00:00:00Z |
| Source Updated At | — |
| Raw Payload Uri | s3://bluework-jobs-prod-raw-590183727216/raw/provider=paycom/board=6AAE2F0452165153E7191BF3F850732E/date=2026-06-03/2026-06-03T09-59-46-215Z-c9bf255ade8650570476df13902e1ea5a61dc0f0ec03723f365a3e6c2acd2a32.json |
Event Fields
{
"content_hash": "4e31f423e58720ceed9a7c6ad60d938823e8a9e27620439e253ccaa1c10830fd",
"source_hash": "31227abeeb27cf47b80a36837e0a7da8be76892d78cbc0fbf814db5b38e5f092",
"last_changed_at": "2026-06-06T09:47:28.654Z",
"active_status": "deleted"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "SLC, UT 84115; 2800 S West Temple Suite 2, SLC, UT, 84115, USA",
"city": "SLC",
"region": "UT",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-03T09:59:48.356Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "SLC, UT 84115; 2800 S West Temple Suite 2, SLC, UT, 84115, USA",
"city": "SLC",
"region": "UT",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"countries": [
"United States"
]
},
"remote_policy": "remote",
"salary_period": null,
"workplace_type": "remote",
"salary_currency": null
}Extensions
{}Native Structured
{
"detail": {
"city": "SLC",
"jobId": 313427,
"level": "",
"endDate": "",
"legalId": 107,
"isHotJob": false,
"jobShift": "",
"jobTitle": "Platform Security Engineer",
"location": "SLC, UT 84115",
"startDate": "",
"clientCode": "0YV04",
"remoteType": "",
"description": "<h2 style=\"margin-top:8px; margin-bottom:4px; text-indent:-.1pt\"><strong><span style=\"font-size:14pt\"><span style=\"font-family:Arial,sans-serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-style:italic\"><span style=\"font-size:11.0pt\"><span style=\"font-style:normal\">Position Summary</span></span></span></span></span></span></span></strong></h2>\r\n\r\n<div align=\"center\" style=\"margin-top:8px; text-align:center; text-indent:-.1pt\">\r\n<hr align=\"center\" size=\"2\" width=\"100%\" /></div>\r\n\r\n<p style=\"text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"font-family:"Arial",sans-serif\">Teal Drones is seeking an experienced Platform Security Engineer to own and mature our end-to-end software security posture across embedded Linux drone platforms, CI/CD infrastructure, and government cloud environments. </span></span></span></span></span></span></p>\r\n\r\n<p style=\"text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"font-family:"Arial",sans-serif\">This role is the primary security authority responsible for threat modeling, vulnerability management, hardened firmware builds, secrets governance, and compliance assessments including Blue List / DoD evaluations. </span></span></span></span></span></span></p>\r\n\r\n<p style=\"text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"font-family:"Arial",sans-serif\">You will collaborate directly with embedded firmware engineers, DevOps, various customers and platform teams to embed security into every layer of the software development lifecycle. This role also includes many hands-on engineering duties.</span></span></span></span></span></span></p>\r\n\r\n<div align=\"center\" style=\"text-align:center; text-indent:0in\">\r\n<hr align=\"center\" size=\"2\" width=\"100%\" /></div>\r\n\r\n<h2 style=\"margin-top:8px; margin-bottom:4px; text-indent:-.1pt\"><strong><span style=\"font-size:14pt\"><span style=\"font-family:Arial,sans-serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-style:italic\"><span style=\"font-size:11.0pt\"><span style=\"font-style:normal\">Essential Duties and Responsibilities</span></span></span></span></span></span></span></strong></h2>\r\n\r\n<div align=\"center\" style=\"margin-top:8px; text-align:center; text-indent:-.1pt\">\r\n<hr align=\"center\" size=\"2\" width=\"100%\" /></div>\r\n\r\n<p style=\"margin-top:16px; margin-bottom:11px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><b><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Embedded Linux Platform & Firmware Security</span></span></span></span></span></b></span></span></span></span></span></span></span></p>\r\n\r\n<ul style=\"margin-top:16px; margin-bottom:11px\">\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Design, implement and enforce hardening standards for Ubuntu-based embedded Linux firmware running on Qualcomm QRB5165/8550 and similar SoC platforms.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Own the process and conduct hands-on activities of auditing, patching, and validating OS-level security updates (e.g., Ubuntu ESM, CVE triage) for offline-deployable drone firmware images.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Identify and eliminate unnecessary services and open from production firmware builds to reduce attack surface during compliance assessments.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Develop, author and maintain BitBake/Yocto security recipes and patches for Qualcomm BSP layers, ensuring build-time application of security hardening.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-top:16px; margin-bottom:11px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><b><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Software Build Pipeline Security</span></span></span></span></span></b></span></span></span></span></span></span></span></p>\r\n\r\n<ul style=\"margin-top:16px; margin-bottom:11px\">\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Secure CI/CD pipelines, including build isolation, artifact integrity, and protection against race conditions and cross-job artifact contamination.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Enforce code signing, reproducible builds, and chain-of-custody controls for firmware artifacts distributed via internal Apache/S3 infrastructure.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Implement and audit role-based access controls across SCM and build systems.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Define and enforce branch protection policies, merge request security gates, and automated SAST/SCA scanning in CI pipelines.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-top:16px; margin-bottom:11px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><b><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Secrets Management & Cryptography</span></span></span></span></span></b></span></span></span></span></span></span></span></p>\r\n\r\n<ul style=\"margin-top:16px; margin-bottom:11px\">\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Lead, design and implement a secrets management strategy across build servers, embedded devices, and cloud infrastructure (e.g., HashiCorp Vault, AWS Secrets Manager).</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Govern cryptographic key lifecycle: RSA key generation, rotation, storage, and revocation for firmware signing, device authentication, and secure comms.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Eliminate hardcoded credentials and insecure secret injection patterns across build scripts, Dockerfiles, and configuration files.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Implement challenge-response and hardware-rooted authentication mechanisms for embedded device access control.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-top:16px; margin-bottom:11px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><b><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Government Cloud & Compliance Security</span></span></span></span></span></b></span></span></span></span></span></span></span></p>\r\n\r\n<ul style=\"margin-top:16px; margin-bottom:11px\">\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Guide and build architecture and security controls for GovCloud (AWS GovCloud, Azure Government) deployments, ensuring alignment with FedRAMP, NIST SP 800-171, CMMC, and DoD IL requirements.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Hands-on respond to Nessus/vulnerability scanner findings (e.g., open port documentation, service inventory) from internal security assessments and Blue List evaluations.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Maintain security documentation including system security plans (SSPs), POA&Ms, and network/service inventories for auditable compliance records.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Coordinate with assessors and program security officers during formal security reviews of drone systems and supporting infrastructure.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-top:16px; margin-bottom:11px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><b><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Network & Device Security</span></span></span></span></span></b></span></span></span></span></span></span></span></p>\r\n\r\n<ul style=\"margin-top:16px; margin-bottom:11px\">\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Conduct and review network security assessments of drone fleet infrastructure, including nmap/Nessus scanning, open port auditing, and firewall rule management.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Establish secure remote access patterns for embedded devices (ADB, SSH hardening, udev-based controls) and enforce least-privilege access models.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Oversee radio frequency and communications security for drone platforms, including secure licensing and MAC-based authentication workflows for radio hardware.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Monitor and respond to security events across fleet management infrastructure using Prometheus/Grafana or similar alerting pipelines.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-top:16px; margin-bottom:11px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><b><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Security Program Leadership</span></span></span></span></span></b></span></span></span></span></span></span></span></p>\r\n\r\n<ul style=\"margin-top:16px; margin-bottom:11px\">\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Define and maintain the organization’s platform security roadmap, policies, and standards across hardware, firmware, software, and cloud layers.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Champion a security-first engineering culture through training, threat modeling workshops, and design reviews.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Manage third-party security vendors, penetration testers, and compliance consultants.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Track and report on security KPIs and vulnerability SLA compliance to engineering leadership.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n</ul>\r\n\r\n<div align=\"center\" style=\"text-align:center; text-indent:0in\">\r\n<hr align=\"center\" size=\"2\" width=\"100%\" /></div>\r\n\r\n<h2 style=\"margin-top:8px; margin-bottom:4px; text-indent:-.1pt\"><strong><span style=\"font-size:14pt\"><span style=\"font-family:Arial,sans-serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-style:italic\"><span style=\"font-size:11.0pt\"><span style=\"font-style:normal\">Required Qualifications</span></span></span></span></span></span></span></strong></h2>\r\n\r\n<div align=\"center\" style=\"margin-top:8px; text-align:center; text-indent:-.1pt\">\r\n<hr align=\"center\" size=\"2\" width=\"100%\" /></div>\r\n\r\n<ul style=\"margin-top:16px; margin-bottom:11px\">\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Bachelor's or master's degree in computer science, Computer Engineering, or a related field.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">5+ years hands-on experience in application security engineering, product security, or a closely related security engineering role.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Deep experience with embedded Linux systems (Yocto/BitBake, systemd, OverlayFS, device bring-up).</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Strong proficiency in Linux OS hardening: service minimization, Ubuntu security patching (ESM), CVE management, and secure boot.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Experience securing CI/CD pipelines (Jenkins, GitLab CI) including artifact signing, secret scanning, and build isolation.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Proficiency with container technologies, primarily Docker.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Solid understanding of cryptography fundamentals: RSA, TLS, symmetric encryption, PKI, key management best practices.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Familiarity with government cloud security frameworks: FedRAMP, NIST 800-171, CMMC Level 2/3, or DoD IL2/IL4.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Experience with vulnerability management tooling: Nessus, OpenVAS, nmap, or equivalent.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Strong proficiency in scripting (Bash, Python) for security automation and tooling.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Strong written communication skills for producing compliance documentation and security assessments.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Proficiency with secrets management platforms (HashiCorp Vault, AWS Secrets Manager, SOPS).</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n</ul>\r\n\r\n<div align=\"center\" style=\"text-align:center; text-indent:0in\">\r\n<hr align=\"center\" size=\"2\" width=\"100%\" /></div>\r\n\r\n<h2 style=\"margin-top:8px; margin-bottom:4px; text-indent:-.1pt\"><strong><span style=\"font-size:14pt\"><span style=\"font-family:Arial,sans-serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-style:italic\"><span style=\"font-size:11.0pt\"><span style=\"font-style:normal\">Additional Desired Qualifications</span></span></span></span></span></span></span></strong></h2>\r\n\r\n<div align=\"center\" style=\"margin-top:8px; text-align:center; text-indent:-.1pt\">\r\n<hr align=\"center\" size=\"2\" width=\"100%\" /></div>\r\n\r\n<ul style=\"margin-top:16px; margin-bottom:11px\">\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Active DoD security clearance or eligibility preferred.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Background in drone, robotics, or aviation ssystems security.edge of radio communications security and RF licensing compliance.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Relevant certifications: CISSP, OSCP, CSSLP, GREM, or equivalent.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Experience with Qualcomm SoC platforms (QRB5165 or similar) and Android Debug Bridge (ADB) workflows.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n</ul>\r\n\r\n<div align=\"center\" style=\"text-align:center; text-indent:0in\">\r\n<hr align=\"center\" size=\"2\" width=\"100%\" /></div>\r\n\r\n<h2 style=\"margin-top:8px; margin-bottom:4px; text-indent:-.1pt\"><strong><span style=\"font-size:14pt\"><span style=\"font-family:Arial,sans-serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-style:italic\"><span style=\"font-size:11.0pt\"><span style=\"font-style:normal\">Physical Requirements and Working Conditions</span></span></span></span></span></span></span></strong></h2>\r\n\r\n<div align=\"center\" style=\"margin-top:8px; text-align:center; text-indent:-.1pt\">\r\n<hr align=\"center\" size=\"2\" width=\"100%\" /></div>\r\n\r\n<ul style=\"margin-top:16px; margin-bottom:11px\">\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Must be able to walk, stand, and navigate large indoor and outdoor facilities for extended periods of time.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Ability to lift, carry, and move materials and equipment weighing up to 25 lbs on a regular basis.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Use of personal protective equipment (PPE) may be required in designated areas or when performing specific tasks, in accordance with safety protocols and company policy.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">May be required to climb ladders, stoop, kneel, or crouch during inspections, maintenance walk-throughs, or emergency response situations.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Regular exposure to facility operations including noise, dust, temperature fluctuations, and industrial equipment.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Occasional off-hours or weekend work required for emergency facility responses or projects as needed</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n\t<li style=\"margin-top:16px; margin-bottom:11px; margin-left:8px\"><span style=\"font-size:12pt\"><span style=\"line-height:115%\"><span style=\"tab-stops:list .5in\"><span style=\"punctuation-wrap:hanging\"><span style=\"text-autospace:ideograph-numeric ideograph-other\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:115%\"><span style=\"font-family:"Arial",sans-serif\"><span style=\"position:relative\"><span style=\"top:0pt\">Requires frequent use of a computer and other standard office equipment for documentation, communication, and coordination tasks.</span></span></span></span></span></span></span></span></span></span></span></span></span></li>\r\n</ul>\r\n\r\n<div align=\"center\" style=\"margin-top:13px; margin-bottom:13px; text-align:center; text-indent:0in\">\r\n<hr align=\"center\" size=\"2\" width=\"100%\" /></div>\r\n\r\n<p style=\"margin-top:13px; margin-bottom:13px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:120%\"><span style=\"tab-stops:538.4pt\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><b><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\">Background</span></span></span></b> <b><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\">Check</span></span></span></b></span></span></span></span></span></span></p>\r\n\r\n<p style=\"margin-top:13px; margin-bottom:13px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:120%\"><span style=\"tab-stops:538.4pt\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\">This position will require successfully completing a post-offer background check. Qualified candidates with a criminal history will be considered and are not automatically disqualified, consistent with federal and state law.</span></span></span></span></span></span></span></span></span></p>\r\n\r\n<p style=\"margin-top:13px; margin-bottom:13px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:120%\"><span style=\"tab-stops:538.4pt\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><b><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\">EEO and ITAR/EAR Work Authorization Disclosure</span></span></span></b></span></span></span></span></span></span></p>\r\n\r\n<p style=\"margin-top:13px; margin-bottom:13px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:120%\"><span style=\"tab-stops:538.4pt\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\">Red Cat Holdings provides equal employment opportunities (EEO) to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This position requires direct or indirect access to hardware, software, technology or technical data controlled under the International Traffic in Arms Regulations (ITAR) and the Export Administration Regulations (EAR). Successful candidates for positions subject to ITAR/EAR restrictions must provide proof of U.S. Citizenship or Permanent Residence and must not require sponsorship for export-restricted work authorization.</span></span></span></span></span></span></span></span></span></p>\r\n\r\n<p style=\"margin-top:13px; margin-bottom:13px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:120%\"><span style=\"tab-stops:538.4pt\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><b><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\">E-Verify</span></span></span></b></span></span></span></span></span></span></p>\r\n\r\n<p style=\"margin-top:13px; margin-bottom:13px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:120%\"><span style=\"tab-stops:538.4pt\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\">The company participates </span></span></span><a href=\"https://www.e-verify.gov/sites/default/files/everify/posters/EVerifyParticipationPoster.pdf\" style=\"color:blue; text-decoration:underline\"><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\">E-Verify</span></span></span></a><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\"> ensure eligibility for employment and compliance with </span></span></span><a href=\"https://www.e-verify.gov/sites/default/files/everify/posters/IER_RightToWorkPoster%20Eng_Es.pdf\" style=\"color:blue; text-decoration:underline\"><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\">Right to Work</span></span></span></a><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\"> rules.</span></span></span></span></span></span></span></span></span></p>\r\n\r\n<p style=\"margin-top:13px; margin-bottom:13px; text-indent:0in\"><span style=\"font-size:12pt\"><span style=\"line-height:120%\"><span style=\"tab-stops:538.4pt\"><span style=\"font-family:"Times New Roman",serif\"><span style=\"position:relative\"><span style=\"top:0.5pt\"><span style=\"font-size:11.0pt\"><span style=\"line-height:120%\"><span style=\"font-family:"Arial",sans-serif\">Compensation: Salary plus generous annual equity package and potential bonuses.</span></span></span></span></span></span></span></span></span></p>\r\n",
"jobCategory": "",
"salaryRange": "",
"socialMedia": {
"xLink": null,
"emailLink": null,
"facebookLink": null,
"linkedInLink": null
},
"isQuickApply": false,
"positionType": "",
"countryPaidIn": "",
"googleJobJson": "{\"@context\":\"https://schema.org/\",\"@type\":\"JobPosting\",\"title\":\"Platform Security Engineer\",\"identifier\":\"J0YV04313427\",\"url\":\"https://www.paycomonline.net/v4/ats/web.php/portal/6AAE2F0452165153E7191BF3F850732E/jobs/313427\",\"image\":\"https://www.paycomonline.net/v4/ats/web.php/application/style/logo?clientkey=6AAE2F0452165153E7191BF3F850732E\",\"datePosted\":\"2026-03-19\",\"description\":\"Job DetailsJob Location: SLC, UT 84115Position Summary\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nTeal Drones is seeking an experienced Platform Security Engineer to own and mature our end-to-end software security posture across embedded Linux drone platforms, CI/CD infrastructure, and government cloud environments. \\r\\n\\r\\nThis role is the primary security authority responsible for threat modeling, vulnerability management, hardened firmware builds, secrets governance, and compliance assessments including Blue List / DoD evaluations. \\r\\n\\r\\nYou will collaborate directly with embedded firmware engineers, DevOps, various customers and platform teams to embed security into every layer of the software development lifecycle. This role also includes many hands-on engineering duties.\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nEssential Duties and Responsibilities\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nEmbedded Linux Platform & Firmware Security\\r\\n\\r\\n\\r\\n\\tDesign, implement and enforce hardening standards for Ubuntu-based embedded Linux firmware running on Qualcomm QRB5165/8550 and similar SoC platforms.\\r\\n\\tOwn the process and conduct hands-on activities of auditing, patching, and validating OS-level security updates (e.g., Ubuntu ESM, CVE triage) for offline-deployable drone firmware images.\\r\\n\\tIdentify and eliminate unnecessary services and open from production firmware builds to reduce attack surface during compliance assessments.\\r\\n\\tDevelop, author and maintain BitBake/Yocto security recipes and patches for Qualcomm BSP layers, ensuring build-time application of security hardening.\\r\\n\\r\\n\\r\\nSoftware Build Pipeline Security\\r\\n\\r\\n\\r\\n\\tSecure CI/CD pipelines, including build isolation, artifact integrity, and protection against race conditions and cross-job artifact contamination.\\r\\n\\tEnforce code signing, reproducible builds, and chain-of-custody controls for firmware artifacts distributed via internal Apache/S3 infrastructure.\\r\\n\\tImplement and audit role-based access controls across SCM and build systems.\\r\\n\\tDefine and enforce branch protection policies, merge request security gates, and automated SAST/SCA scanning in CI pipelines.\\r\\n\\r\\n\\r\\nSecrets Management & Cryptography\\r\\n\\r\\n\\r\\n\\tLead, design and implement a secrets management strategy across build servers, embedded devices, and cloud infrastructure (e.g., HashiCorp Vault, AWS Secrets Manager).\\r\\n\\tGovern cryptographic key lifecycle: RSA key generation, rotation, storage, and revocation for firmware signing, device authentication, and secure comms.\\r\\n\\tEliminate hardcoded credentials and insecure secret injection patterns across build scripts, Dockerfiles, and configuration files.\\r\\n\\tImplement challenge-response and hardware-rooted authentication mechanisms for embedded device access control.\\r\\n\\r\\n\\r\\nGovernment Cloud & Compliance Security\\r\\n\\r\\n\\r\\n\\tGuide and build architecture and security controls for GovCloud (AWS GovCloud, Azure Government) deployments, ensuring alignment with FedRAMP, NIST SP 800-171, CMMC, and DoD IL requirements.\\r\\n\\tHands-on respond to Nessus/vulnerability scanner findings (e.g., open port documentation, service inventory) from internal security assessments and Blue List evaluations.\\r\\n\\tMaintain security documentation including system security plans (SSPs), POA&Ms, and network/service inventories for auditable compliance records.\\r\\n\\tCoordinate with assessors and program security officers during formal security reviews of drone systems and supporting infrastructure.\\r\\n\\r\\n\\r\\nNetwork & Device Security\\r\\n\\r\\n\\r\\n\\tConduct and review network security assessments of drone fleet infrastructure, including nmap/Nessus scanning, open port auditing, and firewall rule management.\\r\\n\\tEstablish secure remote access patterns for embedded devices (ADB, SSH hardening, udev-based controls) and enforce least-privilege access models.\\r\\n\\tOversee radio frequency and communications security for drone platforms, including secure licensing and MAC-based authentication workflows for radio hardware.\\r\\n\\tMonitor and respond to security events across fleet management infrastructure using Prometheus/Grafana or similar alerting pipelines.\\r\\n\\r\\n\\r\\nSecurity Program Leadership\\r\\n\\r\\n\\r\\n\\tDefine and maintain the organization’s platform security roadmap, policies, and standards across hardware, firmware, software, and cloud layers.\\r\\n\\tChampion a security-first engineering culture through training, threat modeling workshops, and design reviews.\\r\\n\\tManage third-party security vendors, penetration testers, and compliance consultants.\\r\\n\\tTrack and report on security KPIs and vulnerability SLA compliance to engineering leadership.\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nRequired Qualifications\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\tBachelor's or master's degree in computer science, Computer Engineering, or a related field.\\r\\n\\t5+ years hands-on experience in application security engineering, product security, or a closely related security engineering role.\\r\\n\\tDeep experience with embedded Linux systems (Yocto/BitBake, systemd, OverlayFS, device bring-up).\\r\\n\\tStrong proficiency in Linux OS hardening: service minimization, Ubuntu security patching (ESM), CVE management, and secure boot.\\r\\n\\tExperience securing CI/CD pipelines (Jenkins, GitLab CI) including artifact signing, secret scanning, and build isolation.\\r\\n\\tProficiency with container technologies, primarily Docker.\\r\\n\\tSolid understanding of cryptography fundamentals: RSA, TLS, symmetric encryption, PKI, key management best practices.\\r\\n\\tFamiliarity with government cloud security frameworks: FedRAMP, NIST 800-171, CMMC Level 2/3, or DoD IL2/IL4.\\r\\n\\tExperience with vulnerability management tooling: Nessus, OpenVAS, nmap, or equivalent.\\r\\n\\tStrong proficiency in scripting (Bash, Python) for security automation and tooling.\\r\\n\\tStrong written communication skills for producing compliance documentation and security assessments.\\r\\n\\tProficiency with secrets management platforms (HashiCorp Vault, AWS Secrets Manager, SOPS).\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nAdditional Desired Qualifications\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\tActive DoD security clearance or eligibility preferred.\\r\\n\\tBackground in drone, robotics, or aviation ssystems security.edge of radio communications security and RF licensing compliance.\\r\\n\\tRelevant certifications: CISSP, OSCP, CSSLP, GREM, or equivalent.\\r\\n\\tExperience with Qualcomm SoC platforms (QRB5165 or similar) and Android Debug Bridge (ADB) workflows.\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nPhysical Requirements and Working Conditions\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\tMust be able to walk, stand, and navigate large indoor and outdoor facilities for extended periods of time.\\r\\n\\tAbility to lift, carry, and move materials and equipment weighing up to 25 lbs on a regular basis.\\r\\n\\tUse of personal protective equipment (PPE) may be required in designated areas or when performing specific tasks, in accordance with safety protocols and company policy.\\r\\n\\tMay be required to climb ladders, stoop, kneel, or crouch during inspections, maintenance walk-throughs, or emergency response situations.\\r\\n\\tRegular exposure to facility operations including noise, dust, temperature fluctuations, and industrial equipment.\\r\\n\\tOccasional off-hours or weekend work required for emergency facility responses or projects as needed\\r\\n\\tRequires frequent use of a computer and other standard office equipment for documentation, communication, and coordination tasks.\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nBackground Check\\r\\n\\r\\nThis position will require successfully completing a post-offer background check. Qualified candidates with a criminal history will be considered and are not automatically disqualified, consistent with federal and state law.\\r\\n\\r\\nEEO and ITAR/EAR Work Authorization Disclosure\\r\\n\\r\\nRed Cat Holdings provides equal employment opportunities (EEO) to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This position requires direct or indirect access to hardware, software, technology or technical data controlled under the International Traffic in Arms Regulations (ITAR) and the Export Administration Regulations (EAR). Successful candidates for positions subject to ITAR/EAR restrictions must provide proof of U.S. Citizenship or Permanent Residence and must not require sponsorship for export-restricted work authorization.\\r\\n\\r\\nE-Verify\\r\\n\\r\\nThe company participates E-Verify ensure eligibility for employment and compliance with Right to Work rules.\\r\\n\\r\\nCompensation: Salary plus generous annual equity package and potential bonuses.\\r\\nQualifications\",\"responsibilities\":\"Position Summary\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nTeal Drones is seeking an experienced Platform Security Engineer to own and mature our end-to-end software security posture across embedded Linux drone platforms, CI/CD infrastructure, and government cloud environments. \\r\\n\\r\\nThis role is the primary security authority responsible for threat modeling, vulnerability management, hardened firmware builds, secrets governance, and compliance assessments including Blue List / DoD evaluations. \\r\\n\\r\\nYou will collaborate directly with embedded firmware engineers, DevOps, various customers and platform teams to embed security into every layer of the software development lifecycle. This role also includes many hands-on engineering duties.\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nEssential Duties and Responsibilities\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nEmbedded Linux Platform & Firmware Security\\r\\n\\r\\n\\r\\n\\tDesign, implement and enforce hardening standards for Ubuntu-based embedded Linux firmware running on Qualcomm QRB5165/8550 and similar SoC platforms.\\r\\n\\tOwn the process and conduct hands-on activities of auditing, patching, and validating OS-level security updates (e.g., Ubuntu ESM, CVE triage) for offline-deployable drone firmware images.\\r\\n\\tIdentify and eliminate unnecessary services and open from production firmware builds to reduce attack surface during compliance assessments.\\r\\n\\tDevelop, author and maintain BitBake/Yocto security recipes and patches for Qualcomm BSP layers, ensuring build-time application of security hardening.\\r\\n\\r\\n\\r\\nSoftware Build Pipeline Security\\r\\n\\r\\n\\r\\n\\tSecure CI/CD pipelines, including build isolation, artifact integrity, and protection against race conditions and cross-job artifact contamination.\\r\\n\\tEnforce code signing, reproducible builds, and chain-of-custody controls for firmware artifacts distributed via internal Apache/S3 infrastructure.\\r\\n\\tImplement and audit role-based access controls across SCM and build systems.\\r\\n\\tDefine and enforce branch protection policies, merge request security gates, and automated SAST/SCA scanning in CI pipelines.\\r\\n\\r\\n\\r\\nSecrets Management & Cryptography\\r\\n\\r\\n\\r\\n\\tLead, design and implement a secrets management strategy across build servers, embedded devices, and cloud infrastructure (e.g., HashiCorp Vault, AWS Secrets Manager).\\r\\n\\tGovern cryptographic key lifecycle: RSA key generation, rotation, storage, and revocation for firmware signing, device authentication, and secure comms.\\r\\n\\tEliminate hardcoded credentials and insecure secret injection patterns across build scripts, Dockerfiles, and configuration files.\\r\\n\\tImplement challenge-response and hardware-rooted authentication mechanisms for embedded device access control.\\r\\n\\r\\n\\r\\nGovernment Cloud & Compliance Security\\r\\n\\r\\n\\r\\n\\tGuide and build architecture and security controls for GovCloud (AWS GovCloud, Azure Government) deployments, ensuring alignment with FedRAMP, NIST SP 800-171, CMMC, and DoD IL requirements.\\r\\n\\tHands-on respond to Nessus/vulnerability scanner findings (e.g., open port documentation, service inventory) from internal security assessments and Blue List evaluations.\\r\\n\\tMaintain security documentation including system security plans (SSPs), POA&Ms, and network/service inventories for auditable compliance records.\\r\\n\\tCoordinate with assessors and program security officers during formal security reviews of drone systems and supporting infrastructure.\\r\\n\\r\\n\\r\\nNetwork & Device Security\\r\\n\\r\\n\\r\\n\\tConduct and review network security assessments of drone fleet infrastructure, including nmap/Nessus scanning, open port auditing, and firewall rule management.\\r\\n\\tEstablish secure remote access patterns for embedded devices (ADB, SSH hardening, udev-based controls) and enforce least-privilege access models.\\r\\n\\tOversee radio frequency and communications security for drone platforms, including secure licensing and MAC-based authentication workflows for radio hardware.\\r\\n\\tMonitor and respond to security events across fleet management infrastructure using Prometheus/Grafana or similar alerting pipelines.\\r\\n\\r\\n\\r\\nSecurity Program Leadership\\r\\n\\r\\n\\r\\n\\tDefine and maintain the organization’s platform security roadmap, policies, and standards across hardware, firmware, software, and cloud layers.\\r\\n\\tChampion a security-first engineering culture through training, threat modeling workshops, and design reviews.\\r\\n\\tManage third-party security vendors, penetration testers, and compliance consultants.\\r\\n\\tTrack and report on security KPIs and vulnerability SLA compliance to engineering leadership.\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nRequired Qualifications\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\tBachelor's or master's degree in computer science, Computer Engineering, or a related field.\\r\\n\\t5+ years hands-on experience in application security engineering, product security, or a closely related security engineering role.\\r\\n\\tDeep experience with embedded Linux systems (Yocto/BitBake, systemd, OverlayFS, device bring-up).\\r\\n\\tStrong proficiency in Linux OS hardening: service minimization, Ubuntu security patching (ESM), CVE management, and secure boot.\\r\\n\\tExperience securing CI/CD pipelines (Jenkins, GitLab CI) including artifact signing, secret scanning, and build isolation.\\r\\n\\tProficiency with container technologies, primarily Docker.\\r\\n\\tSolid understanding of cryptography fundamentals: RSA, TLS, symmetric encryption, PKI, key management best practices.\\r\\n\\tFamiliarity with government cloud security frameworks: FedRAMP, NIST 800-171, CMMC Level 2/3, or DoD IL2/IL4.\\r\\n\\tExperience with vulnerability management tooling: Nessus, OpenVAS, nmap, or equivalent.\\r\\n\\tStrong proficiency in scripting (Bash, Python) for security automation and tooling.\\r\\n\\tStrong written communication skills for producing compliance documentation and security assessments.\\r\\n\\tProficiency with secrets management platforms (HashiCorp Vault, AWS Secrets Manager, SOPS).\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nAdditional Desired Qualifications\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\tActive DoD security clearance or eligibility preferred.\\r\\n\\tBackground in drone, robotics, or aviation ssystems security.edge of radio communications security and RF licensing compliance.\\r\\n\\tRelevant certifications: CISSP, OSCP, CSSLP, GREM, or equivalent.\\r\\n\\tExperience with Qualcomm SoC platforms (QRB5165 or similar) and Android Debug Bridge (ADB) workflows.\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nPhysical Requirements and Working Conditions\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\tMust be able to walk, stand, and navigate large indoor and outdoor facilities for extended periods of time.\\r\\n\\tAbility to lift, carry, and move materials and equipment weighing up to 25 lbs on a regular basis.\\r\\n\\tUse of personal protective equipment (PPE) may be required in designated areas or when performing specific tasks, in accordance with safety protocols and company policy.\\r\\n\\tMay be required to climb ladders, stoop, kneel, or crouch during inspections, maintenance walk-throughs, or emergency response situations.\\r\\n\\tRegular exposure to facility operations including noise, dust, temperature fluctuations, and industrial equipment.\\r\\n\\tOccasional off-hours or weekend work required for emergency facility responses or projects as needed\\r\\n\\tRequires frequent use of a computer and other standard office equipment for documentation, communication, and coordination tasks.\\r\\n\\r\\n\\r\\n\\r\\n\\r\\n\\r\\nBackground Check\\r\\n\\r\\nThis position will require successfully completing a post-offer background check. Qualified candidates with a criminal history will be considered and are not automatically disqualified, consistent with federal and state law.\\r\\n\\r\\nEEO and ITAR/EAR Work Authorization Disclosure\\r\\n\\r\\nRed Cat Holdings provides equal employment opportunities (EEO) to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This position requires direct or indirect access to hardware, software, technology or technical data controlled under the International Traffic in Arms Regulations (ITAR) and the Export Administration Regulations (EAR). Successful candidates for positions subject to ITAR/EAR restrictions must provide proof of U.S. Citizenship or Permanent Residence and must not require sponsorship for export-restricted work authorization.\\r\\n\\r\\nE-Verify\\r\\n\\r\\nThe company participates E-Verify ensure eligibility for employment and compliance with Right to Work rules.\\r\\n\\r\\nCompensation: Salary plus generous annual equity package and potential bonuses.\\r\\n\",\"employmentType\":\"OTHER\",\"hiringOrganization\":{\"@type\":\"Organization\",\"name\":\"TEAL DRONES INC\",\"logo\":\"https://www.paycomonline.net/v4/ats/web.php/application/style/logo?clientkey=6AAE2F0452165153E7191BF3F850732E\"},\"jobLocation\":{\"@type\":\"Place\",\"address\":{\"streetAddress\":\"2800 S West Temple Suite 2\",\"addressLocality\":\"SLC\",\"addressRegion\":\"UT\",\"postalCode\":84115,\"addressCountry\":\"USA\"}},\"validThrough\":\"-0001-11-30\"}",
"applyAvailable": true,
"educationLevel": "",
"qualifications": "",
"descriptionTitle": "Description",
"travelPercentage": "",
"jobYoutubeVideoId": "",
"legalRevisionDate": {
"date": "2025-07-11T19:04:21.000Z",
"timezone": "America/Chicago",
"timezone_type": 3
},
"secondaryLocations": [],
"primaryPhoneCountry": "US",
"primaryPhoneEnabled": true,
"qualificationsTitle": "Qualifications",
"primaryPhoneRequired": true,
"primaryPhoneNumberDoesNotExist": false
},
"preview": {
"jobId": 313427,
"isHotJob": false,
"jobTitle": "Platform Security Engineer",
"postedOn": "",
"locations": "",
"remoteType": "",
"description": "Position Summary\r\n\r\n\r\n\r\n\r\nTeal Drones is seeking an experienced Platform Security Engineer to own and mature our end-to-end software security posture ...",
"positionType": ""
},
"detail_meta": {
"url": "https://portal-applicant-tracking.us-cent.paycomonline.net/api/ats/job-postings/313427",
"http_status": 200,
"content_type": "application/json",
"response_bytes": 101242
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/ebbd607e87548d4ab0b4752a02c787f92f7823f0?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/54397c73-abb2-493f-951e-b0f646283c44JSONGET https://api.bluedoor.sh/job-postings/v1/sources/09309bb5-51e0-4885-9a82-2ad93bcc384cJSONGET https://api.bluedoor.sh/job-postings/v1/jobs/ebbd607e87548d4ab0b4752a02c787f92f7823f0/eventsJSON