Principal Systems Engineer, Cyber for Edge Systems (R3683)
Shield AI
Key Responsibilities:
- Define and evolve the security architecture across embedded, edge, and cloud components of Shield AI’s autonomy stack
- Drive adoption of secure software development practices, including threat modeling, secure code review standards, and automated static/dynamic analysis tooling
- Lead the design of cryptographic protocols, identity and access management systems, secure communication layers, and key management infrastructure
- Conduct architecture risk assessments and influence design decisions to minimize attack surfaces and improve defense-in-depth
- Collaborate with infrastructure, autonomy, and mission software teams to define policies for software update security, telemetry handling, and secure provisioning
- Partner with compliance and certification teams to align systems with NIST, FedRAMP, and/or DoD cybersecurity frameworks
- Serve as a technical point of contact for external security assessments, penetration testing, and red team exercises
Key Outcomes:
- System-wide Security Architecture: well-defined, modular security architecture adopted across autonomy, developer tools, and fielded systems
- Integrated Secure SDLC Practices: security design and validation embedded into the software development lifecycle and CI/CD pipelines
- Resilient Identity & Access Control: robust IAM, authentication, and secure communication protocols implemented across cloud, edge, and vehicle systems
- Attack Surface Reduction: system-level threat models maintained; critical vulnerabilities proactively mitigated
- Deployment Readiness: platforms hardened for operational use in contested and adversarial environments; Hivemind software products deployed into secure environments (e.g. FedRAMP, IL3/IL5/etc)
- Cross-Team Security Alignment: security requirements clearly communicated and tracked across product and engineering teams
Required qualifications:
- 10+ years in cybersecurity engineering or architecture
- Strong knowledge of modern cryptography, secure systems design, and authentication protocols
- Experience designing secure architectures for distributed, embedded, or autonomy-related systems
- Familiarity with CI/CD pipelines, static analysis, container security, and SBOM practices
- Proven ability to lead security initiatives across software and infrastructure teams
- Experience with risk assessment methodologies and adversarial modeling
Preferred qualifications:
- Strong programming and review skills in C++, Python, Go, and Typescript
- Experience in defense, aerospace, or critical infrastructure environments
- Knowledge of security certification processes (e.g., RMF, FedRAMP, NIST 800-53, DoD STIGs)
- Familiarity with secure boot, TPMs, hardware root of trust, and embedded device hardening
- Hands-on experience with secure telemetry, remote attestation, and anti-tamper design
- Background in red teaming, incident response, or forensic readiness
- Active security certifications such as CISSP, GSE, OSCP, or equivalent