Cybersecurity Manager chez SkyGrid

Performance Objectives:

• Build and scale a security program from the ground up in a startup environment. 
• Lead SkyGrid through ISO 27001 and SOC 2 Type II certification efforts. 
• Implement and maintain security controls aligned with DO-326A, aviation cybersecurity frameworks, and industry best practices. 
• Support cybersecurity requirements for Entry Into Service (EIS), including readiness, documentation, and compliance alignment. 
• Strengthen the organization’s security posture through strategic planning and hands-on execution. 
• Deliver a clear security roadmap covering risk management, incident response, and continuous improvement. 

Responsibilities:

• Develop and maintain company-wide security policies, standards, and procedures. 
• Build and manage core security operations (incident response, IAM, vulnerability management, secure SDLC, vendor/security risk management). 
• Partner with Engineering, Product, and IT to embed security into daily operations and across the development lifecycle. 
• Manage external audits, customer security reviews, and regulatory/security requirements. 
• Support EIS-related cybersecurity work, ensuring security deliverables, documentation, and compliance artifacts meet aviation and regulatory expectations. 
• Select, deploy, and operate security tools for SaaS and cloud-native environments. 
• Communicate risk, posture, and key metrics to executive leadership. 

Qualifications:

• B.S. degree in Computer Science, Engineering, IT, Cybersecurity, or related field. 
• 10+ years of cybersecurity experience, including leadership or management roles. 
• Experience building a security program in a startup or high-growth company. 
• Strong background in SaaS security, cloud platforms, and DevSecOps practices. 
• Proven success leading ISO 27001 and SOC 2 Type II certification efforts. 
• Familiarity with DO-326A and aviation cybersecurity frameworks. 
• Experience applying NIST CSF/800-53, 800-171, OWASP, CIS Controls, or similar security frameworks. 
• Ability to support cybersecurity deliverables for EIS processes. 
• Hands-on expertise with IAM, incident response, vulnerability management, and secure SDLC. 
• Strong communication and cross-functional collaboration skills. 

Preferred Experience:

• Master’s degree in a relevant field. 
• Professional certifications such as CISSP, CISM, CCSP, or ISO Lead Implementer/Auditor. 
• Experience in commercial/government SaaS, aviation, aerospace, mobility, or other regulated industries. 
• Background managing enterprise customer security assessments and RFPs. 

Join Our Team and Enjoy Exceptional Benefits:

• Comprehensive Health Coverage from Day One: Enjoy immediate access to medical, dental, and vision insurance, including HSA and FSA options.
• Generous Retirement Contributions: Benefit from an automatic company 401k contribution program, with no match required, plus an additional company matching program to boost your retirement savings.
• Calm Annual Membership: Prioritize your mental health with complimentary access to mindfulness and meditation resources.
• Discounted ClassPass Membership: Stay active and healthy with access to thousands of fitness studios and gyms nationwide.
• Investment in Your Growth: Receive an annual stipend for learning and development to support your continuous education and skill development
• Engaging Team Activities: Participate in quarterly team-building events and celebrations organized by our dedicated culture committee.
• Fully Stocked Kitchen: Enjoy a variety of snacks and beverages to keep you fueled throughout the day.