This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

Astrolab is looking for a Cybersecurity Engineer I to support the protection of the organization’s systems, networks, and cloud services by assisting with the implementation, monitoring, and improvement of cybersecurity controls. This role helps maintain the organization’s security posture across on-premises infrastructure and cloud platforms while supporting compliance with aerospace regulatory requirements including Export Administration Regulations (EAR) and International Traffic in Arms Regulations (ITAR).

The ideal candidate has 1–3 years of cybersecurity or network security experience, with exposure to enterprise-grade firewalls, Zero Trust / ZTNA security principles, and Microsoft cloud security platforms such as Azure and Microsoft 365. The role also includes cybersecurity analyst responsibilities such as monitoring security alerts, analyzing events, and assisting with incident response activities.

This position works closely with IT infrastructure, engineering, and compliance teams to support secure operations and continuous security improvement.

Responsibilities

• Security Monitoring & Analysis
  • Monitor and analyze security alerts, logs, and threat intelligence from multiple security platforms
  • Investigate suspicious activity and potential security incidents across network, endpoint, and cloud environments
  • Assist with incident response including investigation, containment, documentation, and remediation activities
  • Perform basic threat analysis and escalate incidents when necessary
  • Contribute to security reporting and analysis of trends, vulnerabilities, and potential risks
• Azure & Microsoft 365 Security Oversight
  • Assist with security monitoring and configuration of Microsoft Azure and Microsoft 365 security controls
  • Review alerts and security recommendations from platforms such as Microsoft Defender, Entra ID, and Microsoft 365 Security Center
  • Support implementation of identity protection, multi-factor authentication, and conditional access policies
  • Monitor access activity and investigate suspicious login or identity events
  • Assist with securing cloud workloads and services according to best practices
• Firewall & Network Security
  • Assist with administration and monitoring of enterprise-grade firewall platforms used to secure the organization’s network infrastructure
  • Support configuration and review of firewall policies, NAT rules, and network security zones
  • Help maintain network segmentation and secure communication between systems and environments
  • Assist in analyzing firewall logs to detect unusual network activity
• Zero Trust & Access Security
  • Support the implementation of Zero Trust Architecture and ZTNA (Zero Trust Network Access) principles
  • Assist with identity-based access controls and least-privilege security models
  • Work with infrastructure teams to implement secure remote access and authentication mechanisms
• Compliance & Regulatory Support
  • Support cybersecurity controls required for ITAR and EAR compliance
  • Assist with proper handling and protection of export-controlled technical data and sensitive engineering information
  • Help maintain documentation and evidence needed for security audits and compliance programs
• IT Service Management (ITSM)
  • Track security incidents, service requests, and change activities through the organization’s ITSM platform
  • Participate in incident, change, and problem management processes
  • Maintain documentation, procedures, and security knowledge base articles
• Security Improvement & Risk Reduction
  • Assist with vulnerability remediation efforts across systems and applications
  • Support security assessments, system hardening initiatives, and configuration reviews
  • Participate in security reviews of new technologies and infrastructure changes
  • Contribute to continuous improvement of the organization’s cybersecurity posture

Qualifications

• 1–3 years of experience in cybersecurity, network security, information security role/project
• Experience working with enterprise-grade firewalls and network security controls
• Familiarity with Microsoft Azure and Microsoft 365 security environments
• Understanding of Zero Trust Architecture and ZTNA security principles
• Experience working within IT Service Management (ITSM) processes
• Awareness of ITAR and EAR regulatory requirements
• Strong analytical, troubleshooting, and problem-solving skills

Preferred Qualifications

• Experience with Microsoft Defender security tools (Defender for Endpoint, Defender for Cloud, etc.)
• Familiarity with SIEM platforms or security log analysis
• Exposure to NIST security frameworks (NIST 800-171 / 800-53)
• Experience supporting regulated aerospace or defense environments
• Knowledge of identity and access management concepts

Core Competencies

• Security monitoring and threat analysis
• Network security and firewall management
• Azure and Microsoft 365 security oversight
• Zero Trust / ZTNA architecture principles
• Regulatory compliance awareness (ITAR/EAR)
• Incident response and security investigation
• ITSM operational discipline

Benefits

• Join a team of best-in-class engineers building the foundation of planetary surface exploration
• Equity ownership in the company
• Comprehensive health benefits, including medical, dental, vision, and mental health support
• 401(k) plan with company match
• Flexible PTO and parental leave
• Home office set up reimbursement
• Fully flexible and remote friendly work environment
• Weekly lunch stipend, plus complimentary snacks and beverages on-site
• Once a month social hour on-site with food and drinks