Auria is looking to hire a Cybersecurity Lead to support a classified mission operations program for the U.S. Space Force. This role owns the Risk Management Framework (RMF) package from program start - including System Security Plan development, boundary definition, control implementation planning, and Supply Chain Risk Management. The selected candidate must have prior ISSO or ISSM-adjacent experience on a classified DoW program.
Primary work location is Colorado Springs, CO (hybrid). Travel to Government and Auria facilities may be required.
WHAT YOU CAN EXPECT TO DO:- Own and lead the RMF package from program start: initiate the System Security Plan (SSP), define boundary assumptions, establish the Authorization Tracking Checklist (ATC), and stand up the Supply Chain Risk Management (SCRM) process.
- Develop and maintain all RMF documentation - SSP, Plan of Action and Milestones (POA&M), Risk Assessment Report (RAR), and CONOPS - to achieve and sustain Authority to Operate (ATO).
- Interface directly with the Government Information System Security Manager (ISSM) and program cybersecurity stakeholders to ensure compliance alignment throughout the authorization process.
- Collaborate with the DevSecOps Lead to integrate RMF control automation into the program pipeline, reducing manual documentation overhead and compressing ATO timelines.
- Lead STIG scanning, vulnerability remediation, and continuous monitoring across operating systems, firmware, network devices, and cloud services.
- Define cybersecurity architecture and control baselines consistent with NIST SP 800-53, DoDI 8510.01, Zero Trust Architecture principles, and applicable DoW STIGs.
- Support Security Test and Evaluation (ST&E) and penetration testing activities; analyze results, document residual risk, and track remediation to closure.
- Lead and mentor the Cybersecurity Engineering team as additional engineers phase in during program execution.
WHAT THE TEAM REQUIRES:- Mission-Driven Professional: Collaborative contributor motivated by the opportunity to develop cutting-edge solutions that protect and serve both the nation and the world.
- U.S. Citizenship and ability to obtain a U.S. Government TopSECRET security clearance.
- Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or related technical discipline.
- 10-15 years of experience in system or network cybersecurity within a DoW, aerospace, or defense environment, with demonstrated ISSO or ISSM-adjacent experience on a classified program.
- Deep understanding of NIST SP 800-53, RMF (DoDI 8510.01), Zero Trust Architecture, and DoW STIGs.
- Hands-on experience with vulnerability assessment tools (ACAS, Nessus, OpenSCAP, SCAP Compliance Checker).
- Knowledge of network protocols (IPSec, TLS, GRE, SNMPv3, SSH) and secure routing configurations.
- Experience producing and maintaining security documentation (SSP, POA&M, SCTM) on classified programs.
WHAT THE TEAM PREFERS: - Current U.S. Government TopSECRET clearance.
- Current DoW 8570.01-M or 8140 IAT Level II or III certification (Security+, CASP+, CISSP).
- Experience supporting DoW programs operating in IL4/IL5/IL6 environments.
- Familiarity with containerized or virtualized environments (Docker, Kubernetes, VMware) and their security implications under RMF.
- Experience with AWS GovCloud and automated compliance pipelines in a classified environment.
PAY TRANSPARENCY: The salary offered will be based on the selected candidate's qualifications - skills, education & experience - and the position level. $151,928 - $205,000
APPLICATION DEADLINE: July 31, 2026THE AURIA TEAM:
