Cybersecurity Engineer IV

NASA Jet Propulsion Laboratory

17h•Onsite

About The Position

New ideas are all around us, but only a few will change the world. That’s our focus at JPL. We ask the biggest questions, then search the universe for answers—literally. We build upon ideas that have guided generations, then share our discoveries to inspire generations to come. Your mission—your opportunity—is to seek out the answers that bring us one step closer. If you’re driven to discover, create, and inspire something that lasts a lifetime and beyond, you’re ready for JPL. Located in Pasadena, California, JPL has a campus-like environment situated on 177 acres in the foothills of the San Gabriel Mountains and offers a work environment unlike any other: we inspire passion, foster innovation, build collaboration, and reward excellence. As a Cybersecurity Engineer within JPL’s Governance, Risk, and Compliance (GR&C) team, you will develop and maintain the cybersecurity requirements framework for JPL’s missions and business operations. You will support the JPL Privacy Manager and Controlled Unclassified Information (CUI) Liaison, overseeing the lifecycle of sensitive data and ensuring alignment with NASA, federal, and international regulations.

Requirements

Bachelor degree in Cybersecurity, Computer Science, Information Technology, or similar discipline with a minimum of 9 years of cybersecurity experience; Master degree in similar discipline with a minimum of 7 years of cybersecurity experience; or PhD in similar disciplines with a minimum of 5 years cybersecurity experience.
Mastery in two or more of the following areas: NIST RMF, privacy frameworks (GDPR/CCPA), or system development lifecycle (SDLC).
Proficiency with Splunk and DLP tools.
Significant experience in aerospace, ground data systems, or cloud-based mission environments.
Familiarity with Nessus and GR&C platforms (e.g., RSA Archer).

Nice To Haves

Current CISSP, CIPP/US (Certified Information Privacy Professional), CISM, or CGEIT desired.

Responsibilities

Develop and maintain JPL’s cybersecurity requirements framework and policies to support mission-critical functions.
Provide oversight for sensitive data in support of JPL’s designated Privacy Manager and CUI Liaison; guide strategies for Data Loss Prevention (DLP), encryption, and "Privacy by Design."
Conduct comprehensive risk assessments across information and operational technology (IT/OT) systems, supply chains, acquisitions, and external subcontracts.
Ensure institutional alignment with standards such as NIST 800-53, GDPR/CCPA, and CMMC; manage data mapping, classification, and ethical data usage.
Translate complex regulatory requirements into technical architectures by collaborating with legal, information technology, and mission leads.
Lead investigations into data breaches/disclosures and provide subject matter expertise for internal and external audits.