Sr. Cyber Assurance Analyst, Launch

Posted 23 Days Ago
Be an Early Applicant
Cape Canaveral, FL, USA
In-Office
Senior level
Aerospace • Other
The Role
Lead and execute security assurance activities for launch and enterprise systems: perform control testing and technical risk assessments, gather and validate technical evidence, identify and drive remediation of compliance gaps, support audits and third-party risk management, improve assessment efficiency, and mentor teammates.
Summary Generated by Built In

SpaceX was founded under the belief that a future where humanity is out exploring the stars is fundamentally more exciting than one where we are not. Today SpaceX is actively developing the technologies to make this possible, with the ultimate goal of enabling human life on Mars.

SR. CYBER ASSURANCE ANALYST, LAUNCH

Cyber Assurance is the practice of providing confidence that systems, products and processes meet security, regulatory and compliance obligations. It bridges governance with technical execution -- validating that controls are in place, risks are managed, and requirements are met for both internal and customer-facing systems.

As a teammate you will operate within Information Assurance, working closely with engineers to understand systems, how controls are implemented, be hands-on with collecting and reviewing evidence, and driving efficiencies and remediation efforts, along with providing technical support for Enterprise and Launch systems. 

As an ideal candidate, you love living at the intersection of security, compliance, and emerging technology. You thrive on rolling up your sleeves to dig into configs, logs, and making sense of challenging, complex, or ambiguous requirements. You’re comfortable explaining security frameworks and security best practices to non-technical teams as you are at grabbing a hash of a file or identifying an insecure default configuration. You are firm when it matters, but also flexible to consider alternative ways to move the ball forward. You excel at handling concurrent complex efforts and flourish in an environment where learning never ceases, where the breadth of operations ranges from rockets to routing tables, and where teams are laser-focused on mission accomplishment -- excitement guaranteed!

RESPONSIBILITIES:

  • Lead and support security audits and certification (NIST 800-171, NIST 800-53, ISO 27001, etc.) efforts.
  • Partner with engineers to gather and validate technical evidence (configs, code snippets, logs, system designs, etc).
  • Perform technical security and risk assessments of systems and networks within our environment and identify where they deviate from security policy, standards or regulations.
  • Identify security control and compliance gaps, advise on remediation, and drive timely resolution with engineers.
  • Maintain necessary documentation of controls, processes and audits.
  • Identify and drive assessments and audit efficiency through system integration, data utilization, and process improvement.
  • Support third-party risk management efforts including supplier onboarding and periodic cyber assessments.
  • Identify and propose business enabling actions by maintaining an up-to-date understanding of emerging trends in information security risks, changes in standards, and new compliance/assurance techniques and trends.
  • Mentor fellow teammates and take an active role in their development.

BASIC QUALIFICATIONS:

  • High school diploma or equivalency certificate.
  • 5+ years of experience in cybersecurity compliance, audit or technical security roles with strong knowledge in security compliance frameworks.
  • 5+ years of experience with control testing, security standards/policy development, security audits, or security risk management.

PREFERRED SKILLS AND EXPERIENCE:

  • Ability to interpret code/configurations and analyze system/network designs for compliance implications.
  • Experience with security tooling such as vulnerability scanners, SIEMS, container security, system configuration baseline checks (e.g. CIS Benchmarks, STIGs, etc.).
  • Demonstrated experience partnering with and preparing information system owners for internal assessments, facilitating and leading external audits, and driving gaps and findings to closure in a collaborative manner.
  • Strong understanding of security program and control frameworks, assessment methodologies, and practices, i.e. NIST RMF, NIST CSF, ISO-27001, 800-53(a), 800-171(a), CMMC, CNSSI 1253, 800-137, PCI, HIPAA, GDPR, etc.
  • Experience evaluating third-party risk, communicating with external stakeholders, and supporting appropriate mitigations.
  • Strong communication skills across all organizational levels and ability to build cross-organizational coalitions.
  • Direct experience with external audits, regulatory compliance reviews and examinations. 
  • Project and program management experience, tooling integration, and delivery in highly fluid environments.
  • Processional certifications such as CISA, CISM, CISSP, GSNA, ISO 27001 auditor, PCI ISA or QSA, or equivalent certifications.

ADDITIONAL REQUIREMENTS:

  • Must be willing to travel (<25%) domestically and internationally in support of audit and other assurance activities.
  • Must be willing to work extended hours and/or weekends as needed.
  • This role requires you to be onsite, remote/hybrid work will not be considered.

ITAR REQUIREMENTS:

  • To conform to U.S. Government export regulations, applicant must be a (i) U.S. citizen or national, (ii) U.S. lawful, permanent resident (aka green card holder), (iii) Refugee under 8 U.S.C. § 1157, or (iv) Asylee under 8 U.S.C. § 1158, or be eligible to obtain the required authorizations from the U.S. Department of State. Learn more about the ITAR here.  

SpaceX is an Equal Opportunity Employer; employment with SpaceX is governed on the basis of merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability or any other legally protected status.

Applicants wishing to view a copy of SpaceX’s Affirmative Action Plan for veterans and individuals with disabilities, or applicants requiring reasonable accommodation to the application/interview process should reach out to [email protected]

Skills Required

  • High school diploma or equivalency certificate
  • 5+ years experience in cybersecurity compliance, audit, or technical security roles with strong knowledge in security compliance frameworks
  • 5+ years experience with control testing, security standards/policy development, security audits, or security risk management
  • Willingness to travel domestically and internationally (< 25%) in support of audit and assurance activities
  • Willingness to work extended hours and/or weekends as needed
  • Role requires onsite work; remote or hybrid work will not be considered
  • Must meet ITAR-related eligibility: U.S. citizen or national, U.S. lawful permanent resident, refugee, asylee, or be eligible to obtain required Department of State authorizations
  • Ability to interpret code/configurations and analyze system/network designs for compliance implications
  • Experience with security tooling such as vulnerability scanners, SIEMs, container security, system configuration baseline checks (e.g., CIS Benchmarks, STIGs)
  • Experience preparing information system owners for internal assessments and facilitating/leading external audits to closure
  • Strong understanding of security program and control frameworks and assessment methodologies (e.g., NIST RMF, NIST CSF, ISO-27001, 800-53(a), 800-171(a), CMMC, PCI, HIPAA, GDPR)
  • Experience evaluating third-party risk and communicating mitigations with external stakeholders
  • Strong communication skills across organizational levels and ability to build cross-organizational coalitions
  • Direct experience with external audits, regulatory compliance reviews and examinations
  • Project and program management experience, tooling integration, and delivery in fluid environments
  • Professional certifications such as CISA, CISM, CISSP, GSNA, ISO 27001 auditor, PCI ISA or QSA, or equivalent

SpaceX Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about SpaceX and has not been reviewed or approved by SpaceX.

  • Equity Value & Accessibility Equity grants are a core part of total compensation, with periodic company-run tender offers that create liquidity before any public listing. These mechanisms can make the equity component feel materially valuable in practice.
  • Healthcare Strength The package includes comprehensive medical, dental, and vision coverage, with on-site clinics and health resources at major sites. This breadth of coverage is presented as a strong element of the offering.
  • Wellbeing & Lifestyle Benefits Major locations feature on-site amenities such as fitness facilities, food/coffee, clinics, and other conveniences. These lifestyle perks enhance day-to-day value alongside cash and equity.

SpaceX Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Hawthorne, CA
8,879 Employees
Year Founded: 2002

What We Do

SpaceX designs, manufactures and launches the world’s most advanced rockets and spacecraft. The company was founded in 2002 by Elon Musk to revolutionize space transportation, with the ultimate goal of making life multiplanetary. SpaceX has gained worldwide attention for a series of historic milestones. It is the only private company ever to return a spacecraft from low-Earth orbit, which it first accomplished in December 2010. The company made history again in May 2012 when its Dragon spacecraft attached to the International Space Station, exchanged cargo payloads, and returned safely to Earth — a technically challenging feat previously accomplished only by governments. Since then Dragon has delivered cargo to and from the space station multiple times, providing regular cargo resupply missions for NASA.

Similar Jobs

Comcast Logo Comcast

Account Executive

Digital Media • Information Technology • News + Entertainment
Hybrid
Miami, FL, USA
115000 Employees
44K-74K Annually

Comcast Logo Comcast

Sales Representative

Digital Media • Information Technology • News + Entertainment
Hybrid
Jacksonville, FL, USA
115000 Employees

Tapestry - Coach and Kate Spade Logo Tapestry - Coach and Kate Spade

Assistant Store Manager I

eCommerce • Fashion • Retail • Sales • Wearables • Design
Hybrid
Sunrise, FL, USA
16000 Employees
19-38 Hourly

PwC Logo PwC

CDP Strategy & Digital Personalization- Director

Artificial Intelligence • Professional Services • Business Intelligence • Consulting • Cybersecurity • Generative AI
Remote or Hybrid
66 Locations
370000 Employees
123K-123K Annually

Similar Companies Hiring

Caliola Engineering Thumbnail
Software • Machine Learning • Hardware • Defense • Data Privacy • App development • Aerospace
Colorado Springs, CO
68 Employees
Red 6 Thumbnail
Aerospace • Hardware • Software • Virtual Reality • Defense
Orlando, Florida
186 Employees
Outpost Space Thumbnail
Aerospace • Defense
US
24 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account