Staff Software Security Engineer

Muon seeks a Staff Software Security Engineer to join our Security Engineering Team. The ideal candidate is a highly skilled and experienced Software Engineer with expertise in developing secure software for hardware systems, particularly within U.S. Government and ITAR-controlled environments. The ideal candidate will have a strong background in the full software development lifecycle for hardware systems, a deep understanding of cybersecurity principles, and proven experience working with ITAR regulations, including the handling of ITAR-controlled technical data and payloads. Responsibilities include implementing and championing secure coding practices and software development security methodologies throughout the development lifecycle; collaborating closely with software engineers to define software requirements, ensure seamless hardware/software integration, and troubleshoot complex system-level issues; reviewing and advising on the development of software for ITAR-controlled payloads, ensuring strict adherence to all applicable export control laws and company policies; ensuring all software development activities and deliverables comply with U.S. Government standards and ITAR regulations; working extensively with ITAR systems, including managing access to controlled technical data, ensuring compliance with applicable controls and regulations; conducting threat modeling, vulnerability analysis, and security code reviews to identify and mitigate potential security risks in software and systems; developing and maintaining comprehensive software documentation necessary for U.S. Government contracts and ITAR compliance; supporting the integration, testing, and deployment of software solutions in laboratory and operational environments; contributing to the continuous improvement of software development processes, security protocols, and compliance procedures; and advising the organization on CMMC compliance. Qualifications include a minimum of 10 years of professional experience in software development; proven experience in software development security, including secure SDLC practices, threat modeling, and vulnerability assessment; demonstrable experience writing, testing, and debugging software for hardware platforms; experience with U.S. Government contracts and familiarity with government standards and procurement processes; in-depth knowledge and hands-on experience with International Traffic in Arms Regulations (ITAR); experience with software version control systems, CI/CD pipelines, and automated testing frameworks; strong analytical and problem-solving skills; and excellent written and verbal communication skills. Nice-to-have skills include experience with industry standards relevant to government or aerospace/defense projects (NIST 800-series), familiarity with encryption technologies and secure data handling practices, experience working in Agile development environments, knowledge of systems engineering principles, experience implementing CMMC, and direct experience working in an organization that contracts with the US Government. The position requires access to export controlled information and compliance with U.S. Government export regulations.