Senior Security Engineer H/F Loft Orbital Solutions

Loft Orbital is revolutionizing access to space by building reliable, shareable satellites that drastically reduce the time and complexity traditionally required to get to orbit. We operate satellites, fly customer payloads, and handle entire missions from end-to-end. We're a close-knit team of space enthusiasts, software experts, and cutting-edge technologists, all working together to make space simple for our customers.
As a Senior Security Engineer on our Security and Compliance Team, your mission will be to ensure that our highly automated, containerized, and globally distributed infrastructure remains secure throughout its lifecycle, from architecture to incident response. You'll be at the heart of our DevSecOps efforts, collaborating directly with infrastructure, software, product, and solution teams to scale Loft's security maturity while embracing our startup agility and culture.
This is a hands-on, deeply collaborative role, offering broad scope, rapid growth opportunities, and yes, a chance to contribute to space missions
About the Role:

- Champion DevSecOps best practices by designing and implementing security controls directly into our CI/CD pipelines (e.g., GitLab CI).
- Lead and automate application and infrastructure security assessments, including threat modeling and code review.
- Partner with developers and SREs to identify, remediate, and prevent vulnerabilities through secure design and practical guidance.
- Design, build, and maintain secure architecture patterns for containerized, cloud-native, and distributed workloads.
- Develop and maintain automated security tooling, such as container image scanning, IaC validation, and policy-as-code.
- Collaborate on automated security tooling for container image scanning, IaC validation, and RBAC compliance.
- Support incident response workflows, including detection, forensics, root cause analysis, and post-mortems.
- Provide technical mentorship and real-time enablement to help teams adopt a secure-by-default mindset.
- Contribute to internal security tools and automation using Python, Go, or other modern languages.
- Continuously improve how we measure and scale security across our SRE and infrastructure platforms.

Must Haves:

- Deep experience with cloud security in AWS, Azure, or GCP environments.
- Strong knowledge of container and Kubernetes security in production environments.
- Proficiency in at least one modern programming language (e.g., Python, Go, C++).
- Hands-on experience with zero-trust architecture, service mesh, and software-defined networking.
- Solid understanding of DevSecOps pipelines, IaC tools, and secure build processes.
- Hands-on experience with vulnerability scanning, SAST/DAST tools, and automated security testing.

- Proven success in fast-paced, highly collaborative environments, ideally at a startup or scale-up.
- Comfortable working closely with developers and SREs in an enablement-first security culture.
- Clear, concise communication and documentation skills.
- Ability to thrive in a multicultural, globally distributed engineering team.
- Master's degreein Computer Science or a similar field

Nice to Haves:

- Practical experience with policy-as-code (OPA, Sentinel, etc.).
- Understanding of software-defined networking and security policy enforcement in mesh environments.
- Familiarity with modern SRE practices, observability, and resilience engineering.
- Contributions to open-source security tools or frameworks.
- Interest or experience in space operations or aerospace systems.

Some of Our Awesome Benefits:

- Equity, we want you to have an active role in our success
- Up to 35 days of Paid Time Off (vacations & RTT ) and flexible working hours, we want you to be at your best
- Health and life insurance, we care about your health
- Lunch Vouchers, because let's be honest, we love food! (we even have a slack channel about it )
- Cross-office travel opportunities between San Francisco, Colorado, and Toulouse to learn from our differences
- Company and team off-sites and many other events to work & celebrate together
- Relocation assistance to Toulouse when applicable

*Research shows that while men apply to jobs where they meet an average of 60% of the criteria, women and other underrepresented people tend to only apply when they meet 100% of the qualifications. At Loft, we value respectful debate and people who aren't afraid to challenge assumptions. We strongly encourage you to apply, even if you don't check all the boxes.
Who We Are
Loft: Space Made Simple.
Founded in 2017, Loft provides governments, companies, and research institutions with a fast, reliable, and simple way to deploy missions in orbit.
We integrate, launch, and operate spacecraft, offering end-to-end missions as a service across Earth observation, IoT connectivity, on-orbit AI, national security missions, and more. Leveraging our existing space infrastructure and an extensive inventory of satellite buses, Loft is reducing years-long integration and launch timelines to months. With more than 30 missions flown, Loft's flight heritage and proven technologies enable customers to focus on their mission objectives.
With a growing fleet on track to reach 30 satellites by 2027, we are scaling up quickly across our offices in San Francisco, CA Golden, CO and Toulouse, France to meet accelerating demand for space infrastructure.
As an international company your resume will be reviewed by people across our offices so please attach a copy in English.