Senior Application Security Engineer

Senior Application Security Engineer

About Satellogic

Satellogic is a vertically integrated Earth Observation company that designs, manufactures, and operates satellite systems, delivering decision-grade insights at scale to government and commercial customers.

We build space systems end-to-end, from satellite design and manufacturing to launch and on-orbit operations, giving us the ability to deploy quickly, operate reliably, and support persistent monitoring across regions and priority areas. Our approach moves customers beyond one-off imagery toward continuous awareness and alert-driven decision-making, with flexible pathways that can evolve from managed monitoring to full satellite ownership and sovereign control.

Our technology supports a wide range  of use cases across climate monitoring, agriculture, energy, infrastructure, defense and intelligence, helping organizations detect change, manage risk, and plan with confidence.

With a team distributed across five countries, Satellogic brings together expertise in satellite engineering, software development, data science, manufacturing, operations, and go-to-market. We’re a group of purpose-driven builders who value ownership, curiosity, and execution—and who work with humility, honesty, and empathy.

About the Team

The Information Security Team is in charge of identifying, evaluating, reporting and mitigating risks to acceptable levels that meet compliance and regulatory requirements. From corporate systems and users’ security, creating security awareness programs, working with development teams to securely design features to enable new markets and products, to incident detection and remediation, the team maintains the corporate wide information security program to ensure that information assets are adequately protected, aligned with the company vision, mission, culture and business objectives. 

About the Position

For this role in the Information Security Team we are looking for someone who is passionate about adding security controls to our software development life cycles. This person will be responsible for assessing that the technology we develop is up to date with industry standards for maintaining confidentiality, integrity and availability. 

The ideal candidate is looking to show and technically explain the security weaknesses identified when developing technology, how attackers could take advantage of them and provide security education to teams to mitigate these risks.

Location 

Remote work from anywhere between UTC-5 and UTC+3 time zones. Office locations include Buenos Aires, Cordoba, Montevideo, Barcelona.

Responsibilities

As a Senior Application Security Engineer, you will be responsible for: 

• Integrating security knowledge and expertise into the current technology development lifecycles. This includes performing threat modeling, code reviews and vulnerability assessment.
• Assisting each stakeholder as to the best approaches to mitigate the identified risks.
• Defining and following a software security initiative maturity model, constantly improving the processes associated with developing technology securely.
• Design, build and maintain, in collaboration with the Platforms and Infrastructure team, solutions that add support into our SDLC processes, constantly automating repetitive tasks identified throughout the different initiatives. This includes Static and Dynamic Code Analysis, among others.
• Document and share internally security best practices for technology development.
• Being the main point of contact (and subject matter expert) between application and hardware development and the Information Security teams.

About you

Experience

• At least 10 years of experience doing application pentesting, source code audits, architectural reviews, or similar security services. Although we appreciate and value security scanners, we will require scanner-less experience performing assessments.  

Skills

• Strong familiarity with SSDLC processes, source control and CI/DI pipelines. Experience with maturity models (eg. BSIMM) is a plus.
• Advanced familiarity with AI Driven SDLC processes, aiming at automating detection, triaging and fixing identified problems.
• Advanced programming skills: high level languages like Python, Ruby, Go.
• Intermediate skills: low level languages like C, C++, ASM.
• Strong knowledge of cryptography, secure protocols and vulnerabilities introduced by misusing this technology.
• Strong knowledge of Identity Access Management protocols (e.g. SAML, OAuth, OIDC, etc.) and products, and how to implement authentication and authorization securely. 
• Solid understanding of networking protocols, security architectures and products. 
• Knowledge of cloud infrastructure (AWS, GCP) from an attacker’s perspective.
• Advanced use and administration of Windows and Unix operating systems.

What we value

• Demonstrated mindset of thinking like an attacker. 
• Solid communication skills and the ability to clearly articulate complex ideas and plans. 
• Advanced English proficiency.
• Purpose-driven, resourceful and able to deliver results autonomously.
• Respect and support for all employees. 
• Ability to understand and manage differences and discrepancies by making decisions and proposing alternative solutions.

Diversity Commitment 

Satellogic values diversity and inclusion and is an equal opportunity employer. We are convinced that hiring and developing top talent from around the world for any given discipline will drive innovation, generate new solutions, and deliver a superior product to our global customer base. We work to build an equitable and inclusive environment in which all people, regardless of gender, race, religion, or background, can come together to do their best work.

Please feel free to specify your pronouns following your name on the application.

Learn more about Satellogic

To learn more about us please visit satellogic.com and follow us on twitter (@Satellogic) and LinkedIn

Applicant Data Privacy Statement

As part of your application you will be required to confirm Satellogic's Applicant Data Privacy Policy which is available for your review here.  

By applying to this position you express, affirmative consent to our collection of your name, address, email address, phone number and relevant application information and the processing of that information. It is important to understand that Satellogic will store your data for the purpose of processing your application for the position, and possibly other compatible positions.  You also understand that you have rights to access your Personal Data, as well as rights to request their rectification, completion, update or erasure. You may exercise your rights by sending an email to compliance@satellogic.com.

Consenting to our Applicant Data Privacy Policy is required in order for Satellogic to process your employment application.