Security Operations Engineer at Astranis

<div class="content-intro"><p>Astranis builds advanced satellites for high orbits, expanding humanity’s reach into the solar system. Today, Astranis satellites provide dedicated, secure networks to highly-sophisticated customers across the globe— large enterprises, sovereign governments, and the US military. With five satellites on orbit and many more set to launch soon, the company is servicing a backlog of more than $1 billion of commercial contracts.<br><br>Astranis is the preferred satellite communications partner for buyers with stringent requirements for uptime, data security, network visibility, and customization. Astranis has raised over $750 million from some of the world’s best investors, from Andreessen Horowitz to Blackrock and Fidelity, and employs a team of 450 engineers and entrepreneurs. Astranis designs, builds, and operates its satellites out of its 153,000 sq. ft. headquarters in Northern California, USA.</p></div><p><strong>Security Operations Engineer</strong></p> <p>Astranis is looking for a&nbsp;Security Operations Engineer who isn’t afraid to dive headfirst into the digital abyss. Our ideal candidate is a seasoned defender with the technical depth to not only triage complex threats but to oversee the very systems that keep us secure. As a Tier 2/3 escalation point, you will be the backbone of our defense, untangling advanced malware, neutralizing sophisticated phishing schemes, and leading high-stakes incident response operations.<br>In an environment where threats evolve at breakneck speed, we need a resourceful engineer who can engineer resilience, mentor junior analysts, and protect our digital frontier with precision.<br><br><strong>Role</strong></p> <ul> <li><strong>Advanced Incident Triage:</strong> Act as the Tier 2/3 escalation point for complex security events. Investigate and resolve high-severity incidents escalated from initial monitoring tiers.</li> <li><strong>System Oversight:</strong> Oversee and optimize security infrastructure, ensuring that Google SecOps (Chronicle) and other SIEM/SOAR tools are tuned for maximum visibility and efficiency.</li> <li><strong>Incident Leadership:</strong> Lead the charge during active incident response operations, coordinating across teams to contain threats and performing deep-dive post-incident forensics.</li> <li><strong>Malware &amp; Threat Analysis:</strong> Perform deep-tissue analysis of malware to understand behavior and origins, using that intelligence to build proactive technical controls.</li> <li><strong>Detection Engineering:</strong> Create, integrate, and maintain custom security tools and automated playbooks to streamline the "detect-to-remediate" lifecycle.</li> <li><strong>Strategic Defense:</strong> Investigate advanced phishing vectors and implement systemic preventive measures; assist in high-level purple team exercises to validate our posture.</li> <li><strong>Operational Excellence:</strong> Maintain and mature security documentation, including technical procedures, complex runbooks, and internal security policies.</li> </ul> <p><strong>Requirements</strong></p> <ul> <li><strong>3–5 years of experience</strong> in a dedicated security operations or engineering role.</li> <li><strong>Tier 2/3 Expertise:</strong> Proven track record of handling complex escalations and leading incident response efforts.</li> <li><strong>Technical Depth:</strong> Advanced experience in malware analysis, digital forensics, and neutralizing sophisticated phishing campaigns.</li> <li><strong>Systems Mastery:</strong> Strong understanding of security standards, hardening principles, and the ability to oversee enterprise-grade security platforms.</li> <li><strong>Problem Solving:</strong> Exceptional analytical skills with the ability to think like an attacker to better defend the system.</li> <li><strong>Communication:</strong> Excellent written and oral communication skills, with the ability to translate technical findings into actionable leadership briefings.</li> <li><strong>Education/Experience:</strong> While we value experience, a degree in CS, Cybersecurity, or a related field is a plus.</li> </ul> <p><strong>Bonus</strong></p> <ul> <li><strong>Certifications:</strong> Advanced certifications such as CISSP, GCIA, GCIH, or OSCP.</li> <li><strong>Platform Experience:</strong> Hands-on experience managing and tuning Google SecOps (Chronicle).</li> <li><strong>Automation:</strong> Experience with SOAR platforms or scripting (Python, Go) to automate response workflows.</li> </ul><div class="content-pay-transparency"><div class="pay-input"><div class="description"><div><strong>What we offer:&nbsp;</strong></div> <div>&nbsp;</div> <div>All our positions offer a compensation package that includes equity and robust benefits.</div> <div>&nbsp;</div> <div> <p data-path-to-node="3">Base pay is just one component of Astranis’s total rewards package. Your compensation also includes a significant equity package via incentive stock options, high-quality company-subsidized healthcare, disability and life insurance, 401(k) retirement planning, flexible PTO, and free on-site catered meals.</p> </div> <div>Astranis pay ranges are informed and defined through professional-grade salary surveys and compensation data sources. The actual base salary offered to a successful candidate will additionally be influenced by a variety of factors including experience, credentials &amp; certifications, educational attainment, skill level requirements, and the level and scope of the position.</div></div><div class="title">Base Salary</div><div class="pay-range"><span>$150,000</span><span class="divider">&mdash;</span><span>$205,000 USD</span></div></div></div><div class="content-conclusion"><div><strong>U.S. Citizenship, Lawful Permanent Residency, or Refugee/Asylee Status Required</strong></div> <div>(To comply with U.S. Government space technology export regulations, applicant must be a U.S. citizen, lawful permanent resident of the United States, or other protected individual as defined by 8 U.S.C. 1324b(a)(3))</div> <div>&nbsp;</div> <div>Our mission and our products are meant to connect the world and everyone in it, regardless of gender, race, creed, or any other distinction. We believe in a diverse and inclusive workplace, and we encourage all people to join our team and bring their unique perspective to help make us stronger.</div></div>