Security Platform Lead (CI/CD + Supply Chain Security + Devsecops)

Security Platform Lead (CI/CD + Supply Chain Security + Devsecops)

Logos Space is a Low Earth Orbit (LEO) satellite system purpose-built to serve the connectivity needs of the commercial enterprise users and government users. We will help fill an important gap in the market, providing resilient, high-performance satellite-based connectivity services to enterprise and government customers worldwide. Business customers have contracts with agreed-upon performance standards for their broadband, and Logos will build these capabilities into the system from the beginning. Speed and reliability are the foundation of the system. Logos is designed to extend cloud and data center network connectivity anywhere in the world to fixed, seaborne, and airborne terminals.

Logos is led by a team of highly experienced engineers with proven track records in the networking and satellite industries.

About Logos Space Engineering

The Product and Data Link Security team at Logos Space engineering is responsible for ensuring the success of our network by providing unique levels of security and authentication in space communications. The framework for this is inherent in the concept of a Layer 2, 2.5, and 3 service that can support isolated flows and end-to-end encryption. This position is a critical driver of the architecture, overseeing extensive development efforts specific to the security architecture, as well as working with other teams like the ground segment and spacecraft systems.

We are seeking engineers who can thrive in a fast-moving environment, comfortable taking vague design ideas and turning them into concrete, testable architecture and secure solutions.

The Role

The Security Platform Lead will lead the design and implementation of a secure software supply chain. You will be responsible for building a high-assurance CI/CD system supporting artifact signing, provenance tracking, and reproducible builds. This role ensures all software delivered meets strong integrity and traceability guarantees.

Key Responsibilities

• Software Supply Chain Security: Lead the design and implementation of a secure software supply chain.

• CI/CD System: Build and manage a high-assurance Continuous Integration/Continuous Delivery (CI/CD) system, securing tools like GitHub Actions, GitLab, and Jenkins.

• Pipeline and Infrastructure Security: Define and implement security hardening standards for the software build and deployment environments, including securing container images, container runtime (Docker/Podman), and container orchestration platforms (Kubernetes).

• AI Security Integration:

  • Design and integrate the AI Wrapper Layer into the CI/CD pipeline to enforce governance, logging, and policy for AI usage, preventing unsafe usage and data leakage.

  • Embed AI as an advisory capability within the CI/CD pipeline to augment traditional security tools (like Snyk and Semgrep) for use cases such as risk identification, vulnerability explanation, prioritization, and remediation suggestions.

  • Design and secure the Agentic Architecture, including the Agentic Layer and Model Context Protocol (MCP) servers, to provide controlled, auditable access to internal systems for AI security workflows.

• Artifact Integrity: Implement controls for artifact signing and provenance tracking, ensuring all software delivered meets strong integrity and traceability guarantees.

• Compliance: Develop the platform architecture and controls necessary to achieve SLSA Level 3/4 targets and ensure NIST SSDF (800-218) compliance.

• Build Environment: Implement controlled build environments to support reproducible builds.

• SBOM: Drive the generation and tracking of Software Bill of Materials (SBOM) to meet emerging DoD mandates.

• Team Growth and Leadership: Actively grow the Logos security team by recruiting top-tier talent and providing technical guidance and mentorship to contribute to the overall security organization growth.

Must-Have Skills

• CI/CD security (GitHub Actions, GitLab, Jenkins)

• Software supply chain security

• Container and orchestration security (Docker, Kubernetes)

• Provenance, SBOM, artifact signing

• Familiarity with Supply-chain Levels for Software Artifacts (SLSA)

• Reproducible builds, build systems

Logos Space Services is an equal opportunity employer committed to fostering creativity, curiosity and diverse perspectives among employees. We seek to create an environment where everyone can reach their full potential and drive outstanding results. All qualified applicants will receive consideration for employment without regard to race, national origin, age, sex, religion, disability, sexual orientation, marital status, veteran status, gender identity or expression, or any other basis protected by local, state, or federal law. This policy applies with regard to all aspects of one's employment, including hiring, transfer, promotion, compensation, eligibility for benefits, and termination. Offers will be contingent on the candidate's ability to access export-controlled information under U.S. law.