Information System Security Manager

Department: Business Development

Location: Redondo Beach

Compensation: $130,000 - $180,000 / year

Description

Impulse Space is seeking an experienced Information System Security Manager (ISSM) to join our IT organization and lead the security and compliance of our information systems. The ISSM will be responsible for ensuring system security and compliance with various frameworks and directives regarding the security of both classified and controlled unclassified information systems.

This is a hybrid role: part compliance authority, part hands-on security engineer, and part government-facing representative. The right candidate will thrive at the intersection of technical IT operations and regulatory frameworks, ensuring both audit readiness and practical, secure implementations.



Responsibilities

Security Program Ownership

• Serve as the company’s named ISSM and primary point of contact for system security with government agencies.
• Establish, maintain, and enforce the cybersecurity program in alignment with cybersecurity and risk management requirements such as CNSSI 1253, DODI 8500.01, CMMC, and export control requirements such as ITAR and EAR.
• Develop and maintain required documentation including System Security Plans (SSPs), POA&Ms, and other audit deliverables.
• Ensure information systems are categorized, accredited, and authorized per federal and DoD requirements.

IT Integration & Hands-On Security

• Work directly with IT staff to implement and validate technical controls across Windows, Linux, VMware, M365, AWS, and network infrastructure.
• Partner with Infrastructure and Service Desk to integrate compliance into patching, hardening, access control, monitoring, and backups.
• Support identity governance, onboarding/offboarding, and endpoint management (Intune, GPO, MFA policies).
• Deploy, configure, and manage security technologies (SIEM, vulnerability scanning, EDR, firewall logging).

Governance, Risk & Compliance

• Conduct periodic self-inspections, risk assessments, and vulnerability analysis to drive continuous compliance.
• Map regulatory requirements into actionable IT tasks for audit readiness.
• Ensure secure handling, storage, and transmission of classified, Controlled Unclassified Information (CUI), and export regulated information.

Incident Response & Monitoring

• Lead incident response activities: detection, investigation, containment, reporting, and remediation.
• Oversee continuous monitoring of systems, ensuring logs and alerts are effectively triaged and acted upon.
• Collaborate with IT admins to remediate findings and strengthen defense posture.

Leadership & Collaboration

• Report to the Director of IT, partnering with Infrastructure, Service Desk, the InfoSec Manager, Facility Security Officer, and Security/Compliance Engineers.
• Act as a bridge between compliance frameworks and practical IT implementations.
• Mentor IT staff on secure practices and compliance-minded administration.
• Provide executive leadership with risk briefings, compliance status, and program maturity reports.
• Help shape the roadmap for the eventual standalone security/compliance function within the organization.
  
  

Minimum Qualifications

• Active TS/SCI with CI Polygraph eligibility.
• Bachelor’s degree in Information Security, Computer Science, IT, or related field (or equivalent experience).
• 10+ years of experience in information system security, with at least 5 years in regulated environments (DoD, aerospace, or defense).
• Demonstrated experience working with NIST Risk Management Framework, NIST SP 800-53, and other applicable frameworks to ensure the protection of National Security Systems.
• Experience with enterprise IT systems (Active Directory, M365, VMware, AWS, networking, firewalls).
• Experience leading system hardening, vulnerability management, incident response, and audits.
  
  
  

Preferred Skills and Experience

• Strong communication skills to engage with IT teams, government inspectors, and executive leadership.
• Security certifications: CISSP, CISM, CAP, or CMMC-AB credentials.
• Demonstrated experience as an ISSM or ISSO at a cleared defense contractor.
• Familiarity with security tooling such as SIEMs, EDR platforms, vulnerability scanners, and PKI.
• Proven success representing organizations during DCSA or DoD audits.
  
  

Additional Information:

Compensation bands are determined by role, level, location, and alignment with market data. Individual level and base pay is determined on a case-by-case basis and may vary based on job-related skills, education, experience, technical capabilities and internal equity. In addition to base salary, for full-time hires, you may also be eligible for long-term incentives, in the form of stock options, and access to medical, vision & dental coverage as well as access to a 401(k) retirement plan.

Impulse Space’s spacecraft manufacturing business is subject to U.S. export regulations including the International Traffic in Arms Regulations (ITAR) and Export Administration Regulations (EAR). This position requires applicants to be either U.S. Persons (i.e., U.S. citizen, U.S. national, lawful permanent U.S. resident (green card holder), an individual granted asylum in the U.S., or an individual admitted in U.S. refugee status) or persons eligible to obtain an export license from the U.S. Departments of State, Commerce, or other applicable U.S. government agencies. Learn more about the ITAR here.

Impulse Space is an Equal Opportunity Employer; employment with Impulse Space is governed on the basis of merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability or any other legally protected status.