Firefly Space Systems

Information Systems Security Manager

Firefly Space Systems$120K — $150K *
Aerospace & Defense
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • BS or MS in Computer Science, Cybersecurity, Information Technology, or related field; equivalent experience accepted.
  • Proven ability to convert CNSSP-12 policies into technical requirements.
  • Minimum 10 years in cybersecurity compliance, information assurance, or risk management in aerospace or DoD sectors.
  • Expertise in NIST SP 800-37 Rev. 2, NIST SP 800-171, NIST SP 800-53, and FISMA standards.
  • Experience with DoD security tools (e.g., eMASS, ACAS, HBSS, SPRS).
  • Strong leadership and communication skills to engage with diverse stakeholders.

Responsibilities

  • Translate CNSSP-12 mandates into actionable engineering requirements.
  • Coordinate security integration with system owners and DevOps teams.
  • Lead design and implementation of secure network architectures for space systems.
  • Conduct security impact assessments and threat modeling for system changes.
  • Manage the RMF accreditation processes under NIST SP 800-37 Rev. 2.
  • Develop and maintain essential accreditation documentation.
  • Guide corporate cybersecurity compliance initiatives across multiple NIST frameworks.

Benefits

  • Generous health, dental, and vision plans with low deductibles.
  • Parental leave.
  • Educational reimbursement.
  • Short-term disability coverage.
  • Flexible PTO options.
Full Job Description
SUMMARY

As the Information System Security Manager at Firefly Aerospace, you will play a critical role in ensuring all mission-critical systems and enterprise networks maintain rigorous compliance with national security and corporate mandates. This role operates at the critical intersection of cybersecurity policy and system engineering, focusing heavily on translating CNSSP-12 requirements into actionable engineering architectures. You will lead the information assurance strategy, manage the Risk Management Framework (RMF) life cycle per NIST SP 800-37 Rev. 2, and drive continuous compliance for corporate standards including CMMC and NIST SP 800-171. This position offers the opportunity to architect security compliance for advanced space systems and corporate infrastructure. You will report directly to Director of Cybersecurity and collaborate closely with security leaderships, systems engineers, and operations teams to embed security into the development life cycle and ensure our systems achieve and maintain full authorization.

RESPONSIBILITIES

Space Systems Engineering: CNSSP-12 Compliance

Translate complex CNSSP 12 (National Information Assurance Policy for Space Systems) mandates into measurable system engineering requirements and architectural constraints.
• Coordinate directly with system owners, space vehicle engineers, and DevOps teams to

embed security controls into the system development life cycle (SDLC).
• Lead the design and oversee the implementation of secure network architectures for

ground and space segments.
• Conduct security impact assessments, threat modeling, and risk assessments on

proposed space vehicle architectures and system changes.

Risk Management Framework (RMF) Accreditation
• Manage the full system life cycle accreditation processes under NIST SP 800-37 Rev. 2,

driving systems through the RMF to secure Authorities to Operate (ATO).
• Develop and maintain critical accreditation documentation, including System Security

Plans (SSPs), POAMs, and Security Assessment Reports (SARs).
• Provide regular status reports, continuous monitoring metrics, and compliance

briefings to senior management and government Authorizing Officials (AOs).
• Ensure system configurations continuously comply with DISA STIGs and DoD Security

Technical Implementation Guides.

Corporate Compliance; Security Operations
• Lead and manage the corporate-wide cybersecurity compliance initiatives, ensuring

strict adherence to NIST SP 800-171, NIST SP 800-53 and Space Policy Directive 5 (SPD - 5) across enterprise.
• Manage a diverse, multi-location Information Assurance team, setting goals, driving

accountability, and mentoring security personnel.
• Support incident response activities, ensure timely reporting to government

stakeholders (e.g., DCSA), and lead tabletop exercises to evaluate and improve cross-

functional readiness.
• Oversee red-teaming and penetration testing activities to uncover vulnerabilities and

ensure network resilience.

QUALIFICATIONS

Required:
• BS or MS degree in Computer Science, Cybersecurity, Information Technology, or a

related technical discipline. Equivalent experience may be considered.
  • Proven ability to translate high-level policies (such as CNSSP-12) into technical engineering requirements.

• At least 10 years of experience in information assurance, cybersecurity compliance, or

risk management within the aerospace, federal, or DoD contracting environment.
• Demonstrated expertise in applying NIST SP 800-37 Rev. 2 (RMF), Space Policy Directive 5 (SPD - 5), NIST SP 800-171, NIST SP 800-53, and FISMA standards.
• Hands-on experience with DoD security tools (e.g., eMASS, ACAS, HBSS, SPRS).
• Exceptional leadership and communication skills to effectively interface with technical

and non-technical executive stakeholders.

Desired:
• Direct experience acting as an ISSM or Security Control Assessor (SCA) for space-based systems.
• Familiarity with satellite telemetry, tracking, and commanding (TT&TC) encryption and security requirements.
• Hands-on experience executing a CMMC Level 2 implementation.
• Active clearance or ability to obtain and maintain clearance.
• Experience with requirements management platforms (e.g., Jama, DOORS) used in systems engineering.

Firefly offers outstanding benefits for our employees, including generous health, dental and vision plans with low plan deductibles, parental leave, educational reimbursement, short term disability, and flexible PTO options.

About Firefly Space Systems

Firefly Space Systems was an American aerospace manufacturer based in Cedar Park, Texas. The company was founded in 2013 with the goal of developing low-cost launch vehicles for the small satellite industry. Firefly's Alpha rocket was designed to carry payloads of up to 1,000 kg to low Earth orbit. The company was acquired by EOS Launcher in 2017 and is now known as Firefly Aerospace. Firefly Aerospace is continuing the development of the Alpha rocket and is also working on a larger rocket called Beta, which is designed to carry payloads of up to 8,000 kg to low Earth orbit. Firefly Aerospace is committed to providing affordable access to space for small satellite operators.
Learn more about Firefly Space Systems
Industry
Founded
2013

Similar Jobs

More Jobs at Firefly Space Systems

More Aerospace & Defense Jobs

Find similar Information Systems Security Manager jobs: