Software Security Engineer

Castelion Corporation•Torrance, CA

About The Position

Castelion is bringing a new approach to defense development and production: one that focuses on short, iterative design cycles, rapid testing in development, and modern commercial manufacturing strategies for production at scale. Were designing, building, and testing next generation long range strike weapon systems to give America and its Allies a definitive edge and deter future conflicts. As a Software Security Engineer at Castelion, you will architect and implement the cryptographic foundations that secure our flight systems. You will own encryption, code signing, secure boot, and key management across embedded platforms, ensuring the integrity, authenticity, and confidentiality of mission-critical systems. You will work closely with embedded, avionics, and infrastructure engineers to integrate security directly into the full software and hardware stack from manufacturing provisioning through flight operations. We seek engineers who think in systems, understand threat models deeply, and can translate cryptographic principles into practical, resilient implementations in constrained environments.

Requirements

Bachelors degree in Computer Science, Computer Engineering, Electrical Engineering, or related STEM field
3+ years of professional experience in software engineering with exposure to applied cryptography or security engineering
Experience implementing encryption, authentication, or digital signature systems in C, C++, Rust, or similar systems languages
Strong understanding of cryptographic fundamentals (PKI, TLS, key exchange, hashing, signatures)
Experience working in Linux-based or embedded environments

Nice To Haves

Experience implementing secure boot or hardware root-of-trust mechanisms
Experience with code signing pipelines and artifact verification
Familiarity with TPMs, HSMs, or secure elements
Experience in embedded, aerospace, defense, or other safety-critical systems
Experience designing secure provisioning workflows in manufacturing environments
Understanding of real-time systems and resource-constrained devices
Experience with mTLS, certificate lifecycle management, and replay protection mechanisms

Responsibilities

Secure Boot & Root of Trust: Design and implement secure boot chains, hardware-backed root of trust mechanisms, and firmware verification processes for embedded flight systems.
Cryptography & Encryption: Develop and integrate cryptographic protocols and libraries (e.g., symmetric/asymmetric encryption, key exchange, digital signatures) for embedded and distributed systems.
Code Signing & Update Security: Own software signing infrastructure and verification workflows to ensure authenticity and integrity of firmware, flight software, and field updates.
Key Management & Provisioning: Design secure key generation, storage, rotation, and provisioning systems across development, manufacturing, and deployed environments.
Secure Communications: Implement and review authenticated and encrypted communication channels between vehicle, ground systems, and internal subsystems.
Threat Modeling & Hardening: Conduct threat modeling and security reviews across the software stack. Identify vulnerabilities and implement practical mitigations aligned with mission constraints.
Cross-Functional Integration: Partner with embedded, avionics, hardware, and infrastructure teams to embed security principles into system architecture from initial design through deployment.

Benefits

All employees are granted long-term stock incentives as part of their employment at Castelion.
All employees receive access to comprehensive medical, vision, and dental insurance, and the company offers four weeks of paid time off per year.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume