Information Systems Security Manager
Indexed description
Summary
As the Information System Security Manager at Firefly Aerospace, you will play a critical role in ensuring all mission-critical systems and enterprise networks maintain rigorous compliance with national security and corporate mandates. This role operates at the critical intersection of cybersecurity policy and system engineering, focusing heavily on translating CNSSP-12 requirements into actionable engineering architectures. You will lead the information assurance strategy, manage the Risk Management Framework (RMF) life cycle per NIST SP 800-37 Rev. 2, and drive continuous compliance for corporate standards including CMMC and NIST SP 800-171. This position offers the opportunity to architect security compliance for advanced space systems and corporate infrastructure. You will report directly to Director of Cybersecurity and collaborate closely with security leaderships, systems engineers, and operations teams to embed security into the development life cycle and ensure our systems achieve and maintain full authorization.
Responsibilities
Space Systems Engineering: CNSSP-12 Compliance
Translate complex CNSSP 12 (National Information Assurance Policy for Space Systems) mandates into measurable system engineering requirements and architectural constraints.
- Coordinate directly with system owners, space vehicle engineers, and DevOps teams to
- Lead the design and oversee the implementation of secure network architectures for
- Conduct security impact assessments, threat modeling, and risk assessments on
Risk Management Framework (RMF) Accreditation
- Manage the full system life cycle accreditation processes under NIST SP 800-37 Rev. 2,
- Develop and maintain critical accreditation documentation, including System Security
- Provide regular status reports, continuous monitoring metrics, and compliance
- Ensure system configurations continuously comply with DISA STIGs and DoD Security
Corporate Compliance; Security Operations
- Lead and manage the corporate-wide cybersecurity compliance initiatives, ensuring
- Manage a diverse, multi-location Information Assurance team, setting goals, driving
- Support incident response activities, ensure timely reporting to government
functional readiness.
- Oversee red-teaming and penetration testing activities to uncover vulnerabilities and
Qualifications
Required:
- BS or MS degree in Computer Science, Cybersecurity, Information Technology, or a
- Proven ability to translate high-level policies (such as CNSSP-12) into technical engineering requirements.
- At least 10 years of experience in information assurance, cybersecurity compliance, or
- Demonstrated expertise in applying NIST SP 800-37 Rev. 2 (RMF), Space Policy Directive 5 (SPD – 5), NIST SP 800-171, NIST SP 800-53, and FISMA standards.
- Hands-on experience with DoD security tools (e.g., eMASS, ACAS, HBSS, SPRS).
- Exceptional leadership and communication skills to effectively interface with technical
Desired
- Direct experience acting as an ISSM or Security Control Assessor (SCA) for space-based systems.
- Familiarity with satellite telemetry, tracking, and commanding (TT&C) encryption and security requirements.
- Hands-on experience executing a CMMC Level 2 implementation.
- Active clearance or ability to obtain and maintain clearance.
- Experience with requirements management platforms (e.g., Jama, DOORS) used in systems engineering.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search