HEO is the world’s first commercial non-Earth imaging (NEI) and insights services company. NEI involves capturing resolved imagery of space objects using cameras mounted on other satellites, and deriving information and intelligence from the captured imagery. Our technology helps governments and commercial companies to visually monitor their spacecraft and other space objects they care about. Our vision is to image anything in the solar system on-demand. Read more about NEI here.

We are building out a high performing interdisciplinary team capable of pushing the boundaries of space technology. We are growing fast and looking for talented, passionate people that value collaboration, growth and learning to join our team.

HEO is a post Series-A company backed by high profile venture funds including Airtree, Y Combinator and In-Q-Tel. We are headquartered in Sydney, Australia with offices in London, Tokyo, UK and Washington DC, USA.

‍

About the role:

As our Application Security Engineer, you will be the guardian of the software that powers our non-Earth imaging insights. You’ll bridge the gap between pure code and secure infrastructure, ensuring that as we scale HEO Inspect, our applications remain resilient against evolving threats. Your goal is to bake security into the software development lifecycle (SDLC) so that "secure by design" is our default velocity, not a bottleneck.

‍

Your key responsibilities:

• Integrate automated security scanning like SAST and DAST directly into our CI/CD pipelines to catch vulnerabilities before production.
• Conduct security design reviews and threat modeling for new features as we scale HEO Inspect across global regions.
• Triage and prioritize vulnerabilities across the application stack in coordination with the DevSecOps Lead.
• Create and maintain reusable security patterns and guidelines that allow product engineers to write secure code by default.
• Maintain high standards for API security and data integrity, specifically regarding sensitive satellite imagery and customer data.
• Act as the technical point of contact for application-level security incidents and lead the subsequent root-cause analysis.
• Build internal tools that empower developers to self-serve security checks and reduce manual bottlenecks.

We are looking for someone with:

• At least 3 years of experience in Application Security or a dedicated DevSecOps role within a fast-paced tech environment.
• A degree in Computer Science, Cyber Security, or equivalent practical industry experience.
• Excellent communication skills for explaining complex technical risks to various stakeholders.
• Strong technical knowledge of AWS, Git (We use GitLab), security services and experience securing containerized workloads in Docker and hardening Operating Systems.
• Proficiency in modern languages like Python, Rust, or Go, with the ability to perform deep-dive code reviews.
• Hands-on experience with modern security tooling such as Snyk, Burp Suite, or similar.
• A systems-thinking approach that accounts for how application code interacts with cloud infrastructure and site reliability.
• The pragmatism to balance high security standards with the delivery speed of a startup.

‍

HEO’s Company Values:

We value good space citizenship. We are passionate about responsible space custodianship, sustainability and trust. We believe that space should be easy and transparent. Our values help us to tackle some of the most complex issues in space for the benefit of all of humanity.

‍
Perks & benefits:

HEO is one of Australia’s fastest-growing space technology companies. At HEO, we’re committed to creating the best working environment where everyone thrives, values collaboration, encourages innovation and shares the common goal of making space transparent.

• Employee Share Option Plan (Own a piece of HEO!)
• Central location in Sydney’s Tech Central
• Flexible leave options so you can recharge and relax when best suits you – no forced leave during office shutdowns
• Equal paid parental leave for everyone, regardless of gender
• End of trip facilities - bicycle parking and showers

‍

Our commitment to Diversity and Inclusion:

We make hiring decisions based on your experience, skills and passion, as well as how you can enhance HEO and our culture. Research shows that women and underrepresented groups are less likely to apply to jobs unless they meet every single competency or experience. If you are excited about this role, but your past experience doesn't align perfectly, we encourage you to apply anyway. You could be just the right person for this role and HEO. If you have any support or access requirements, we encourage you to advise us at time of application and throughout the interview process.

The successful candidate must be an Australian citizen or Permanent Resident and will be required to undergo a background check.

‍