Cybersecurity & IT Operations Lead

The Cybersecurity & IT Operations Lead will be responsible for overseeing and managing our day-to-day IT operations, both remote and in-office, while also collaborating with our Information Systems Security Manager and Engineering team to implement and maintain robust cybersecurity and compliance measures. You will handle tasks ranging from laptop configuration, user access management, and Microsoft administration to managing in-person IT hardware in our Denver office, as well as supporting long-term initiatives such as migration to GCC High and ensuring compliance with frameworks such as NIST, CMMC, and FedRAMP.

This is a hands-on, strategic, and leadership role that combines technical expertise with a strong focus on security and regulatory compliance. If you are a self-driven, results-oriented professional with a passion for IT systems and security, this is a great opportunity to make a direct impact on our company’s growth and security posture.

Key Responsibilities:

IT Operations:

1. IT Infrastructure Management: Administer and maintain company-wide IT systems, including laptops, servers, network devices, cloud services, and digital collaboration tools.
2. User Access & Device Management: Configure, deploy, and maintain laptops, software tools, and cloud accounts for remote and hybrid employees, ensuring efficient onboarding and offboarding processes.
3. System Monitoring & Incident Management: Monitor and troubleshoot internal IT systems to ensure availability, security, and performance. Actively respond to issues encountered by the team day-to-day or incidents that may occur.
4. Office Network & Security: Ensure the office network is secure, set up firewalls and VPNs, and manage local backups for business continuity.

Cybersecurity:

1. Compliance Management & Security Controls Implementation: Work with the Information Systems Security Manager to implement and enforce cybersecurity measures in line with NIST controls. Assist in the company’s migration to GCC High and ensure ongoing compliance with federal security standards such as CMMC, FedRAMP, SOC 2, and others as needed.
2. Vulnerability Management: Work with stakeholders to conduct regular vulnerability assessments, penetration tests, and ensure remediation of identified security risks.
3. Endpoint Security: Oversee the deployment and maintenance of endpoint security solutions (e.g., antivirus, EDR, MDM) across the organization’s devices.
4. Security Monitoring: Collaborate with engineering and operations stakeholders to deploy and monitor intrusion detection systems (IDS), security information and event management (SIEM), and other tools to proactively detect and respond to security threats.
5. Risk Management: Help identify, assess, and mitigate IT and cybersecurity risks that could impact company operations or regulatory compliance.
6. COMSEC Equipment Management: Manage COMSEC equipment including inventory control, technical support, security procedures, and user training.

Required Qualifications:

1. 5+ years of experience in IT operations, cybersecurity, and systems administration, with at least 2 years in a leadership or team lead role.
2. Strong knowledge of IT infrastructure management (Mac systems, networking, cloud services).
3. Experience with Microsoft 365 administration (Exchange, Teams, SharePoint, Azure AD).
4. Familiarity with endpoint security solutions (EDR, antivirus, MDM).
5. Experience with firewalls, VPNs, cloud infrastructure (AWS, Azure, etc.), and SIEM tools.
6. Ability to manage physical IT infrastructure, troubleshoot hardware issues, and support in-person systems in an office environment.
7. Excellent troubleshooting skills and the ability to prioritize and resolve complex IT and security issues.
8. Strong written and verbal communication skills, with the ability to clearly explain technical concepts to both technical and non-technical team members.
9. Direct or adjacent COMSEC equipment management experience.
10. Ability to support 3-5 days in-office at our location in Denver.

Preferred Qualifications:

1. Hands-on experience with security frameworks such as NIST, CMMC, SOC 2, and/or FedRAMP.
2. CISSP, CISM, CISA, CompTIA Security+, or similar certifications.
3. Familiarity with GCC High environments and Microsoft Government Cloud tools is a plus.
4. Experience with security tools such as ThreatLocker or other similar platforms.
5. Familiarity with IT automation tools (e.g., Ansible, Puppet, Terraform) to streamline operations.

ITAR REQUIREMENTS:

1. To conform to U.S. Government export regulations, applicant must be a (i) U.S. citizen or national, (ii) U.S. lawful, permanent resident (aka green card holder), (iii) Refugee under 8 U.S.C. § 1157, or (iv) Asylee under 8 U.S.C. § 1158, or be eligible to obtain the required authorizations from the U.S. Department of State. Learn more about the ITAR here.

1. We work in a cutting edge industry and you will get the opportunity to be part of a small team with a large direct impact on the success of our customers’ space missions!
2. We take work life balance very seriously. We require employees to take 15 days off but provide unlimited PTO and follow most US federal government holidays.
3. Mental health is just as important as physical so we provide quarterly health & wellness benefits.
4. Comprehensive health insurance for you and your family with 100% coverage for employees.
5. We encourage employees to save for retirement and provide 4% 401(k) matching.
6. Each quarter we have a 4-day company offsite. Previous locations include San Francisco, Nashville, Denver, Santa Fe, New Orleans, San Diego, Bozeman, and New York City.
7. Our culture and company is evolving. You will be key in creating the next major or minor version!