Cybersecurity Lead -IT

El Segundo, CAFull-TimeLeadOther

You will be redirected to the company career page

Our mission at Skyryse is nothing less than a new era in flight, where fatalities are nearly zero, piloting any aircraft is simple and safe, and the sky is accessible to all. SkyOS, our industry-first universal operating system for flight, provides any airplane or helicopter with a fly-by-wire flight management solution that significantly reduces the complexity of flying. Skyryse One, our first production aircraft powered by SkyOS, was unveiled in 2024 and features the simplest, safest, and most intuitive flight controls in general aviation.

Collaborate with the Head of IT and serve as the primary responsible owner of theorganization’s cybersecurity program, strategy, and roadmap.
Ensure alignment with industry best practices and regulatory requirements under FAAoversight and related federal guidance.
Collaborate with the Head of IT to author, review, revise, and enforcecybersecurity-related policies, standards, and procedures.
Lead efforts to mature and scale cybersecurity capabilities, resources, and bestpractices for current and future IT team members.

Drive organizational preparedness for assessments and certifications including:○ CIS Top 18 Controls○ NIST 800-171 & NIST 800-53○ SOC 2 Type 1 and Type 2○ ISO/IEC 27001○ DFARS○ CMMC○ FedRAMP (as applicable to cloud systems and services)
Develop evidence packages, system security plans (SSPs), Plan of Action andMilestones (POA&Ms), and gap remediation plans for each framework.
Establish metrics to demonstrate control effectiveness and certification progress.

Plan, lead, participate, and oversee quarterly and annual access control reviews & auditsof all software systems.Produce formal findings reports of access control audits.
Lead monthly security reporting meetings and present incident trends, risk posture, andremediation updates.
Lead all third-party audits, jointly with the Head of IT and act as the controlsubject-matter expert

Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, orrelated field (or equivalent experience).
5+ years of hands-on cybersecurity experience in a regulatory-compliant industry(aviation, aerospace, defense, healthcare, transportation, or critical infrastructure).
Demonstrated experience preparing organizations for:○ CIS Top 18○ NIST 800-171 / 800-53○ SOC 2 Type 1/2○ ISO/IEC 27001○ DFARS○ CMMC○ FedRAMP
Strong knowledge of incident response lifecycle and forensic investigation.
Experience administering cybersecurity tools (EDR, SEG, DLP, FW, VPN,SIEM/monitoring).
Experience leading access control audits and third-party assessments.
Excellent technical writing skills for policies, procedures, SSPs, and audit artifacts.
Ability to communicate risks to executive, FAA, and government stakeholders.

Professional certifications such as CISSP, CISM, CEH, GSEC, ISO 27001 LeadImplementer/Auditor, or FedRAMP-related certifications.
Experience with FAA, TSA Security Directives, or federal cloud compliance programs.
Cloud security experience (Azure/AWS/GCP) in FedRAMP-aligned or regulatedenvironments.
Knowledge of networking, virtualization, and enterprise system administration.

The opportunity to change the world through improving aviation safety and accessibility
Salary: $120,000 - $150,000
Valuable stock option plan
Heavily subsidized medical, dental and vision plans
Full-time employees are eligible for 20 days of paid time off (PTO) and 5 sick days annually. PTO and sick days must be used in accordance with Company policy.
A company with an ambitious vision, a dynamic work environment, and a team of smart, motivated, and fun to work-with colleagues!
The posted salary range reflects the potential base pay for this role, adjusted to account for varying geographic markets. Final compensation will be based on factors such as your location, job-related skills, experience, and internal alignment, including equity and benefits.