- Company Name
- SkyGrid
- Job Title
- Cybersecurity Manager
- Job Description
-
**Job Title**
Cybersecurity Manager
**Role Summary**
Lead the design, launch, and continuous improvement of a comprehensive cybersecurity program for a high‑growth aerospace technology company. Oversee policy development, risk management, incident response, and security program certification (ISO 27001, SOC 2 Type II). Drive integration of security into product and service lifecycles, and ensure compliance with aviation‑specific standards such as DO‑326A and EIS requirements.
**Expectations**
- Build a security program from scratch in a dynamic, high‑growth environment.
- Successfully lead ISO 27001 and SOC 2 Type II certification efforts.
- Implement controls aligned with DO‑326A, NIST CSF/800‑53/800‑171, OWASP, CIS Controls, and similar frameworks.
- Deliver a strategic security roadmap covering risk management, incident response, and continuous improvement.
- Communicate security posture and metrics to executive leadership.
**Key Responsibilities**
1. Develop and maintain organization‑wide security policies, standards, and procedures.
2. Build and manage core security operations: incident response, identity & access management (IAM), vulnerability management, secure software development life cycle (SDLC), and vendor/security risk management.
3. Partner with Engineering, Product, and IT to embed security throughout development and operations.
4. Manage external audits, customer security reviews, and regulatory or security requirements.
5. Support EIS‑related cybersecurity work, ensuring deliverables, documentation, and compliance artifacts meet aviation and regulatory expectations.
6. Select, deploy, and operate security tools for SaaS and cloud‑native environments.
7. Communicate risk, posture, and key metrics to executive leadership.
**Required Skills**
- Leadership experience in cybersecurity program development in a startup or high‑growth company.
- Proven expertise with SaaS security, cloud platforms, and DevSecOps practices.
- Hands‑on experience with IAM, incident response, vulnerability management, and secure SDLC.
- Strong communication and cross‑functional collaboration skills.
**Required Education & Certifications**
- Bachelor’s degree in Computer Science, Engineering, IT, Cybersecurity, or a related field.
- 10+ years of cybersecurity experience, including leadership or management roles.
- Proven success leading ISO 27001 and SOC 2 Type II certification efforts.
- Familiarity with DO‑326A, aviation cybersecurity frameworks, and NIST CSF/800‑53/800‑171, OWASP, CIS Controls.
- Professional certifications (preferred but not mandatory): CISSP, CISM, CCSP, ISO Lead Implementer/Auditor.
---