Information Systems Security Manager (ISSM)

Information Systems Security Manager (ISSM) Spacecraft represent the most pressing unmet need across the entire aerospace industry. As more launch vehicles come online and the cost to orbit decreases, more companies launching payloads to space continue to emerge. For the first time in history, this influx of payload companies combined with reduced launch costs has resulted in a massive increase in need for commercial spacecraft platforms, known as satellite buses. These buses hold the payloads of our customers and are flown on launch vehicles. Apex manufactures these satellite buses at scale using a combination of software, vertical integration, and hardware that is designed for manufacturing. Our spacecraft enable the future of society: ranging from earth observation to communications and more. We’d love for you to join us on our mission of providing humankind access to the galaxy beyond our planet. ABOUT THE ROLE Apex is seeking an experienced Project Manager to lead initiatives focused on Communications Security (ComSec) and Authority to Operate (ATO) processes. This role is critical in ensuring secure communication systems and compliance with regulatory standards for operational authorization. The ideal candidate will oversee cross-functional teams, manage timelines, and mitigate risks in high-stakes environments, such as government, defense, or enterprise security projects. This position requires a blend of technical knowledge, leadership skills, and expertise in cybersecurity frameworks. RESPONSIBILITIES: - Lead the planning, execution, and closure of projects related to ComSec implementation and ATO certification, ensuring alignment with organizational goals and regulatory requirements. • Develop and maintain project plans, including scope, schedules, budgets, and resource allocation, using tools like Microsoft Project or Jira. • Coordinate with stakeholders, including IT security teams, engineers, compliance officers, and external auditors, to gather requirements and facilitate ATO assessments. • Oversee the Risk Management Framework (RMF) process, including system categorization, control selection, implementation, assessment, authorization, and continuous monitoring. • Manage ComSec activities such as cryptographic key management, secure communication protocols (e.g., IPsec, TLS), and protection of classified information. • Conduct regular status meetings, risk assessments, and progress reporting to senior leadership, identifying potential issues and recommending corrective actions. • Ensure all project documentation, including security plans, test reports, and authorization packages, is accurate, complete, and submitted on time. • Monitor & assist in compliance with standards such as NIST SP 800-53/171, FISMA, DoD directives, or equivalent frameworks such as ISO 27001, and drive remediation efforts for any identified vulnerabilities. • Foster a collaborative team environment, providing guidance and mentorship to junior staff on ComSec and ATO best practices. • Evaluate project outcomes through post-implementation reviews, capturing lessons learned to improve future processes. • Assist in managing or collaborating on other IT & Cybersecurity projects. Requirements: - Bachelor's degree in Information Technology, Cybersecurity, Project Management, or a related field; Master’s degree preferred; Certification is a plus. • Minimum of 5 years of experience in project management, with at least 3 years focused on cybersecurity, ComSec, or ATO processes in regulated industries (e.g., government, defense, or finance). • Strong understanding of cybersecurity frameworks, including NIST RMF, FedRAMP, DISA, and DoD Instruction 8510.01. • Proficiency in project management methodologies (e.g., Agile, Waterfall) and tools for tracking progress and risks. • Knowledge of ComSec principles, including encryption standards, secure hardware (e.g., TEMPEST), and communication security policies. • Excellent communicat ... (truncated, view full listing at source)