Staff Offensive Security Engineer

Vast is looking for a Staff Offensive Security Engineer, reporting to the Information Security Manager, to support the development of the systems that will be required for the design and build of artificial-gravity human-rated space stations. This person will build out the team’s offensive security capabilities and support various teams to build cyber resilient applications and systems.

This will be a full-time, exempt position located in our Long Beach location.

Responsibilities:

• Stand up and scale Vast’s red team capability from inception, defining strategy, engagement models, tradecraft, and operational processes while executing adversary emulation across mission and corporate environments.
• Lead security research and assess the cyber resilience of Vast’s systems, applications, and mission-critical products, identifying systemic risks before adversaries do.
• Architect and develop advanced adversary simulation tooling and methodologies to challenge security architecture, design decisions, and implementation controls.
• Partner closely with engineering, infrastructure, and security teams to drive remediation, influence secure design decisions, and strengthen long-term defensive maturity.

Minimum Qualifications:

• 5+ years of hands-on experience in security research, penetration testing, or adversarial security engineering.
• Deep understanding of various operating systems, identity systems, and network protocols, with demonstrated experience identifying and exploiting weaknesses in complex enterprise or mission-critical infrastructure.
• Proficiency in one or more programming languages (e.g., Python, Golang, Rust, C/C++).
• Experience with security research tools and frameworks (e.g., Kali Linux, Burp Suite, Metasploit, etc.).
• Experience assessing and exploiting AWS environments and cloud-native architectures.
• Demonstrated ability to apply AI or machine learning concepts to augment red team capabilities in complex systems.

Preferred Skills & Experience:

• Advanced technical certifications such as OSCP, OSEP, CRTO, CPTS, or equivalent demonstrable offensive security expertise.
• Experience designing agentic security automation or applied AI to enhance adversary simulation.
• Prior experience conducting offensive security assessments against space, aerospace, satellite, avionics, or other safety-critical systems.
• Working knowledge of compliance frameworks such as NIST 800-171, CMMC 2.0, DFARS 252.204-7012, ITAR, and EAR, and the ability to operate effectively within regulated environments.
• Experience building or maturing offensive security capabilities within a fast-paced startup or high-growth environment.

Additional Requirements:

• Ability to travel up to 10% of the time
• Willingness to work overtime, or weekends to support critical mission milestones

Pay Range:

• Senior Offensive Security Engineer: $143,500 - $203,700
• Staff Offensive Security Engineer: $158,100 - $226,900