InfoSec Engineer

Job Description

Job Description

Hadrian — Manufacturing the Future

Hadrian is building autonomous factories that help aerospace and defense companies manufacture rockets, satellites, jets, and ships up to 10x faster and up to 2x cheaper. By combining advanced software, robotics, and full-stack manufacturing, we are reinventing how America produces its most critical parts.

We recently raised $260 million dollar Series C to accelerate this mission. We are excited to be launching a new Factory in Mesa, Arizona, a 270,000 square foot facility that will create 350 new jobs immediately. We are opening a new headquarters to support thousands of future hires, launching Hadrian Maritime to serve naval production, and introducing a Factory-as-a-Service model that delivers complete systems instead of individual parts.

Hadrian works with startups, Tier 1 and Tier 2 suppliers, and major defense contractors across space, shipbuilding, and aviation to scale production, reduce costs, and accelerate delivery on mission-critical programs. We are backed by leading investors including Lux Capital, Founders Fund, and Andreessen Horowitz. Our fast-growing team is united by a shared mission to reindustrialize American manufacturing for the 21st century and beyond!

The Role

Every part of our company relies on robust security and effective systems – from day-to-day factory operations to supply chain integrations, resource scheduling, hardware data security, and compliance with industry standards. In this role, you will be a critical member of our security organization, responsible for designing, deploying, and maintaining secure systems, networks, and platforms to protect critical infrastructure and ensure compliance.

You will be challenged to think strategically and solve complex security and compliance challenges. You will work cross-functionally with IT specialists, software engineers, and production teams to develop innovative solutions that safeguard our operations and drive toward secure, fully automated factories.

What You'll Do

Configure, monitor, and manage Security Logging Infrastructure.

Administer and manage IAM systems, including Active Directory, Azure AD, and Okta, ensuring proper implementation of SSO, MFA, and RBAC.

Deploy and manage endpoint protection systems (e.g., EDR / XDR), ensuring secure configuration across factory endpoints, remote devices, and cloud environments.

Conduct vulnerability assessments, implement patch management processes, and monitor for threats using SIEM and vulnerability management tools (e.g., Splunk, Nessus).

Configure, monitor, and maintain PKI infrastructure and certificate management systems (e.g., NDES / SCEP).

Lead security analysis, identifying and mitigating risks in network, software, and SaaS configurations.

Maintain and enforce compliance requirements for NIST 800-171, CMMC, and ITAR, including completing SSPs and POAMs.

Collaborate with IT and DevOps teams to integrate security controls into CI / CD pipelines and Kubernetes environments.

Document security processes, configurations, and incident response procedures, maintaining an up-to-date inventory of security systems.

Provide Tier 3 support for security-related issues, working with vendors to resolve complex security incidents.

Analyze system performance, identify vulnerabilities, and develop solutions to improve resilience and mitigate threats.

Deploy and maintain secure SaaS configurations, ensuring adherence to security best practices and compliance standards.

Educate and train employees on secure practices, policies, and advanced security tools.

Design, deploy, and maintain network security policies across on-premises and cloud environments (e.g., firewalls, VPCs, NAC, and VPN configurations).

What We’re Looking For

Expertise in Zero Trust Architecture design and implementation.

Advanced knowledge of container security for Kubernetes (e.g., Kyverno, OPA, Sysdig Secure).

Experience building automated threat detection and response workflows with SOAR tools.

Strong understanding of cloud-native security principles in AWS and Kubernetes.

Proficiency with advanced forensics tools (e.g., Velociraptor, Autopsy, Volatility).

Deep familiarity with hardware security for embedded systems and IoT devices.

Experience conducting penetration testing and red team exercises.

Strong grasp of secure coding practices and application security fundamentals.

Proven ability to architect scalable, automated compliance monitoring systems.

Strong mentorship capabilities to train and develop security skills across teams.

What Will Set You Apart

Experience managing logging infrastructure.

Proficient in Detection Engineering .

Proficient in managing IAM systems such as Active Directory, Azure AD, and Okta, including SSO, MFA, and RBAC.

Experienced with endpoint protection tools like CrowdStrike, SentinelOne, or Microsoft Defender for Endpoint.

Familiarity with SIEM platforms (e.g., Splunk, Datadog, Microsoft Sentinel) and vulnerability management tools (e.g., Nessus, Qualys).

Have knowledge of network security technologies : IDS / IPS, NAC, and secure network segmentation.

Experienced with compliance frameworks such as NIST 800-171, CMMC, and ITAR, including SSP and POAM development.

Proficient in secrets management and certificate infrastructure (e.g., HashiCorp Vault, NDES, PKI).

Familiar with DevSecOps practices , including integrating security controls into CI / CD pipelines and Kubernetes environments.

Experienced with infrastructure automation using tools like Terraform, Ansible, and GitOps workflows.

Familiar with SaaS security best practices and tools, ensuring proper hardening and secure integration.

Capable of documenting security architectures, incident response plans, and system configurations for team knowledge sharing.

Effective at analyzing complex security issues and proposing scalable, resilient solutions.

Passionate about securing systems that drive real-world outcomes in fast-paced, high-stakes environments.

A highly effective communicator who can convey technical security information to both technical and non-technical stakeholders.

Experienced with firewall administration (PANOS, JUNOS) and VPN configuration in cloud and on-prem environments.

Able to work from our Los Angeles Factory (Torrance) .

Compensation

For this role, the target salary range is $120,000 - $200,000 (actual range may vary based on experience).

This is the lowest to highest salary we reasonably and in good faith believe we would pay for this role at the time of this posting. We may ultimately pay more or less than the posted range, and the range may be modified in the future. An employee's pay position within the salary range will be based on several factors, including, but not limited to, relevant education, qualifications, certifications, experience, skills, geographic location, performance, and business or organizational needs.

Benefits

100% coverage of medical, dental, vision, and life insurance plans for employees

401k

Relocation stipend if you’re moving from outside of LA

Flexible vacation policy

ITAR Requirements

To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State. Learn more about the ITAR here.

Hadrian Is An Equal Opportunity Employer

It is the Company’s policy to provide equal employment opportunity for all applicants and employees. The Company does not unlawfully discriminate on the basis of race inclusive of traits historically associated with race (including, but not limited to, hair texture and protective hairstyles, such as braids, locks and twists), color, religion, sex (including pregnancy, childbirth, or related medical conditions), gender identity, gender expression, transgender status, national origin (including, in California, possession of a drivers license), ancestry, citizenship, age, physical or mental disability, height or weight, medical condition, family care status, military or veteran status, marital status, domestic partner status, sexual orientation, genetic information, exercise of reproductive rights, any other basis protected by local, state, or federal laws, or any combination of the above characteristics. When necessary, the Company also makes reasonable accommodations for disabled candidates and employees, including for candidates or employees who are disabled by pregnancy, childbirth, or related medical conditions.