Sr. Systems Engineer na FDH Aero

Who Are We?

FDH Aero is a trusted global supply chain solutions partner for aerospace and defense companies, helping to shape the industry by simplifying the supply chain. With over 60 years serving as a leading independent industry partner, FDH specializes in hardware, electrical, consumables and expendables, licensed products, and value-added services for global OEM and aftermarket customers. FDH is headquartered in Commerce, California, and has operations across the Americas, EMEA and APAC. FDH Aero – named a Best Places to Work in Aviation in 2024 – has locations in 14 countries across the globe, with more than 1,500 best-in-industry employees and over 650,000 square feet of inventory space. 

FDH is headquartered in Commerce, California, and has operations across the Americas, EMEA and APAC. FDH Aero – named a Best Places to Work in Aviation in 2024 – has locations in 14 countries across the globe, with more than 1,500 best-in-industry employees and over 650,000 square feet of inventory space. 

Why Work Here?

At FDH Aero, we understand that the strength of our brand comes from our people.

We invest in driven, diverse and experienced professionals who are naturally curious, courageous and motivated towards action. We value tempering confidence with humility, and a mission that always starts with service-first.

Our values guide everything we do: 

We Are Service First - We act with agility and intelligence to solve our partner’s most pressing needs. We safeguard our trusted relationships by communicating with clarity and unmatched follow through. 

We Are Respectful - We behave with dignity, fairness, and acceptance. We thrive by prioritizing empathy, humility, and connection to our collective community. 

We are Amplifiers - We invest in driven, diverse and experienced professionals, businesses and partners. We fuel the entrepreneurial spirit by providing autonomy, authority and a clear mission.

We Are Open-Minded - We communicate with intention, curiosity, and diversity of thought. By actively contributing with courage and candor, we challenge the status quo and innovate together.

We Are Accountable - We own responsibility for our outcomes. We set expectations, embrace critique, and empower every employee to take immediate actions on challenges they encounter. 

We Value Our People - That’s why we offer competitive benefits, including medical, dental, vision, Flexible Spending Accounts (FSA), 401k matching, and wellness programs. We invest in training, mentorship, and career development to empower our employees to reach their full potential. Our commitment to culture and excellence has earned us recognition as one of Aviation Business News' Best Places to Work in Aviation. 

As a team member at FDH Aero you are trusted to deliver, to innovate, and to drive next-generation solutions for tomorrow’s supply chain demands. Ready to make an impact? We proudly pursue top talent with a diverse and global set of experiences and backgrounds. 

We Are Looking For 

The Senior Security Engineer to design, implement, and maintain robust security solutions that protect our organization's critical systems and data. As a key member of our security team, you will play a pivotal role in ensuring the confidentiality, integrity, and availability of our IT infrastructure. This is a critical role in our organization, and the successful candidate will be responsible for ensuring the security and resilience of our IT infrastructure. The ideal candidate will have a strong technical background, excellent problem-solving skills, and a passion for staying ahead of the curve in the ever-evolving world of cybersecurity.

What You'll Do (Responsibilities)

• Implement and monitor security tools, ensuring optimal configuration and performance 
• Manage and monitor security tools and solutions, such as SIEM, SOAR, vulnerability scanners, and penetration testing tools 
• Evaluate and recommend new security tools to enhance the organization's security posture 
• Address detected vulnerabilities promptly and devise strategic remediation plans 
• Conduct regular vulnerability scans using tools like Nessus, Qualys, or Rapid7 to identify and mitigate risks 
• Analyze vulnerability scan results and prioritize remediation efforts based on risk 
• Lead incident response efforts and coordinate organizational response strategies using tools like Splunk, ELK, or Sumo Logic 
• Conduct thorough investigations into security incidents and events using forensic tools and techniques 
• Analyze logs, network traffic, and other data to identify the root cause of incidents 
• Implement and configure SIEM tools like Splunk, QRadar, or ArcSight to monitor security events and generate alerts 
• Tune SIEM rules and correlation engines to minimize false positives and ensure effective detection of threats 
• Collaborate with the Engineering and Ops teams to respond to security alerts and investigate potential incidents 
• Conduct regular penetration tests using tools like Metasploit, Kali Linux, or Cobalt Strike to identify vulnerabilities and assess the effectiveness of security controls 
• Perform red team exercises to simulate real-world attack scenarios and test the organization's ability to detect and respond to threats 
• Analyze the results of penetration tests and red team exercises to identify areas for improvement and develop remediation plans 
• Develop scripts and automation tools using languages like Python, Bash, or PowerShell to streamline security tasks and processes 
• Automate vulnerability scanning, patch management, and configuration management using tools like Ansible, Puppet, or Chef 
• Develop custom scripts and tools to enhance the functionality of security solutions and integrate them with other systems 
• Performs other duties as needed 

What You Bring (Qualifications & Skills):

• Bachelor's degree in information technology, computer science, or a related field 
• Preferred certifications: SSCP, CompTIA Security+, CISSP, GIAC 
• At least 10 years of experience in information security and technology 
• Experience in firewall administration, including setup, administration, and management of IDS/IPS and VPNs 
• Experience with Azure Government Cloud Community (GCC) High and FedRAMP is a plus 
• Familiarity with security frameworks and standards (CMMC, CIS, NIST) 
• Experience with SIEM and SOAR technologies 
• Proficiency with cloud security in SaaS/IaaS/PaaS environments, particularly Azure 
• Expertise in endpoint security, secure web gateways, and application firewalls 
• Strong foundation in IT operations and continuous improvement practices 
• Advanced knowledge of network security and protocol analysis 
• Strong understanding of IDS/IPS, penetration, and vulnerability testing 
• Strong programming and scripting skills (e.g., Python, Bash, PowerShell) for automating security tasks and developing custom solutions. 
• Comfortable with some of the most widely used open-source security tools like Nmap, Wireshark, OWASP ZAP, Metasploit, Burp Suite, OpenSCAP, sqlmap, Scapy CrackStation, Aircrack-ng, Jok3r, etc. 
• Familiarity with Antivirus and Endpoint Detection and Response (EDR) solutions, with experience in Crowdstrike being a plus 
• Proficiency in Microsoft 365 (Office 365) administration, including user management, license provisioning, and security configuration 
• Familiarity with Microsoft Endpoint (Intune) administration for managing endpoints and enforcing security policies 
• Excellent problem-solving skills with the ability to analyze complex technical issues and implement effective solutions 
• Strong communication and interpersonal skills with the ability to collaborate effectively with cross-functional teams 

Special Requirements:

• U.S. Citizen, U.S. Permanent Resident (Green Card holder) or asylee/refugee status as defined by 8 U.S.C. 1324b(a)(3) required. 
• ITAR requirement
• 120.15. Some positions will require current U.S. Citizenship due to contract requirements.

This position requires access to information that is subject to compliance with the International Traffic Arms Regulations (“ITAR”) and/or the Export Administration Regulations (“EAR”). In order to comply with the requirements of the ITAR and/or the EAR, applicants will be asked to provide specific documentation to verify U.S. person status under the ITAR and the EAR. A “U.S. person” according to their definition is a U.S. citizen, U.S. lawful permanent resident (green card holder), or protected individual such as a refugee, or asylee. See 22 CFR  

FDH Aero is an Equal Opportunity Employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability status, protected veteran status, or any other characteristic protected by law.