Your space-enabled career begins here

Job Summary
A Corporate Cybersecurity Manager is responsible for overseeing and implementing robust security measures to protect an organization's digital assets. They lead and coordinate cybersecurity projects, manage a team of security professionals, and ensure compliance with industry standards and regulations. This role involves identifying potential security risks, developing mitigation strategies, and continuously monitoring the organization's cybersecurity posture. Excellent communication and leadership skills are essential to collaborate with various departments and effectively respond to security incidents.

The selected candidate will lead implementation and sustainment of DFARS/NIST SP 800-171 and Cybersecurity Maturity Model Certification (CMMC) controls for systems handling Controlled Unclassified Information (CUI), ensuring continuous compliance, risk management, and overall program management of our corporate network. The Corporate Cybersecurity Manager will develop and maintain security documentation (including System Security Plan and POA&Ms), coordinate audits and remediation with key stakeholders and assessors, and drive ongoing monitoring to protect CUI in accordance with DFARS 252.204-7012 and CMMC requirements.

This position's internal job code is Info Sec & Governance Spec. Our team is currently hiring for a Level K.

Responsibilities

• Continuous Monitoring: Oversee continuous monitoring activities to detect and respond to security threats in real-time, enabling the business to operate securely and efficiently
• Policy Development and Implementation: Develop and implement cybersecurity policies and procedures tailored to the organization's needs, ensuring compliance with relevant laws, regulations, and standards
• Incident Response Management: Develop and implement incident response plans to handle security breaches and cyber incidents, coordinating response efforts and conducting post-incident reviews
• Team Leadership and Training: Lead and mentor cybersecurity teams, promoting a culture of cybersecurity awareness within the organization through regular training and awareness programs
• Regulatory Compliance & Governance: Ensure adherence to aerospace and defense cybersecurity requirements (NIST 800-171, CMMC 2.0, NIST 800-53/171, DFARS), maintain system security documentation (SSPs, POA&Ms), and oversee cybersecurity governance frameworks, standards, and audit readiness
• Risk Management & Incident Oversight: Lead enterprise cybersecurity risk assessments, supplier evaluations, audits, and authorization processes; oversee incident investigations, root-cause analysis, corrective actions, and security reporting
• Secure Architecture, Integration & Operations: Partner with engineering, IT, and manufacturing teams to embed cybersecurity into system design, cloud architectures, and other organizational processes; support vulnerability management, remediation planning, and technical risk mitigation
• Stakeholder Communication & Strategic Planning: Serve as a cybersecurity liaison to government customers, leadership, and suppliers; develop cybersecurity maturity roadmaps, support resource and budget planning, and deliver meaningful performance metrics and executive reports

Minimum Qualifications

• IAM Certification: At least an Information Assurance Manager (IAM) Level 3 certification as required by DoD 8140
• Experience: A minimum of 10 years of experience in cybersecurity management, risk management, or a related field
• Education: A bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field

• Demonstrated experience with U.S. Government cybersecurity compliance frameworks (NIST 800-171, CMMC 2.0, NIST 800-53/171, RMF, CSF, DFARS).
• Hands-on experience with SOC operations, threat intelligence, vulnerability management, and incident response.
• Strong understanding of enterprise IT, cloud security, and network architecture.
• Excellent communication skills and experience presenting to leadership and external partners. Working knowledge and experience with completing and submitting accreditation or assessment and authorization packages
• Ability to audit and verify security controls as part of industry standard system hardening or in accordance with customer or government requirements
• Ability to communicate complex concepts with senior management, technical personnel, and external entities including senior representatives of the US Government and teammates
• Ability to audit, scan for vulnerabilities, and continuously monitor mixed computer system environments using vulnerability scanners, SIEMs, and various scripting languages
• This position requires the ability to obtain a U.S. Security Clearance for which the U.S. Government requires U.S. Citizenship. An interim and/or final U.S. Security Clearance Post-Start is required.

Preferred Qualifications

• IAM Certification: CISSP preferred
• Experience: 15 years of experience in cybersecurity management, risk management, or a related field
• Education: A Master’s degree in computer science, Information Technology, Cybersecurity, or a related field
• Knowledge: Proficiency in cybersecurity frameworks, such as NIST RMF, and experience with CMMC.
• Compliance: Familiarity with industry standards and regulations, including those specific to Unclassified environments that process CUI such as DFARS 252.204-7012 and CMMC 2.0 requirements

Summary Pay-Range
Please note that the salary information shown below is a general guideline only of what is reasonably expected to be paid for the position. Salaries are based upon candidate experience and qualifications, as well as market and business considerations.

• Level K: $128,350 - $188,750