ISO Compliance Consultant

A New Paradigm For Space Operations. Who We Are: Space Kinetic is a cleared, venture-backed startup focused on addressing urgent national security priorities. Our goal is to deliver a suite of asymmetric capabilities for space superiority and missile defense leveraging our proprietary electromechanical deployment system, which enables the rapid deployment of low-arenaflex payloads through space without firing a thruster. Space Kinetic is currently assembling its TRL-5 prototype. Our goal is to leverage this platform to provide the United States with a new tool for securing the space domain & catalyzing the emerging space economy. What You'll Do: The ISO/Compliance Consultant (Governance, Security, & CMMC Support) will guide Space Kinetic through security governance, compliance readiness, and structured implementation of NIST 800-171 and CMMC requirements. This individual provides the oversight and expertise needed to validate technical and administrative controls, maintain compliance documentation, and ensure the organization progresses on a clear, accurate path—not "the blind leading the blind." During the initial engagement, this consultant will work more hours to build/edit out policies, controls, and evidence. Afterward, they transition into a security monitoring and oversight role requiring ~5–10 hours per week. Governance & Compliance • Develop, update, and maintain all compliance documentation, including: • * System Security Plan (SSP) • Plan of Actions & Milestones (POA&M) • Policies and procedures • Validate that implemented security controls meet NIST 800-171/CMMC requirements. • Provide expert guidance on compliance strategy, prioritization, and remediation. • Conduct internal risk assessments, gap assessments, and readiness checks. • Ensure continuous compliance and timely updates as regulations evolve. Security Operations Oversight • Monitor firewall alerts, SIEM/log alerts, and system security events. • Review internal logs (server, endpoint, network) on a recurring basis. • Track newly released CVEs and advise on remediation or risk acceptance. • Provide high-level oversight of the organization's security posture. • Coordinate with the IT team regarding control implementation and evidence gathering. Engagement Structure • Phase 1 (Build-out): Higher level of involvement establishing controls, documentation, and security architecture. • Phase 2 (Steady State): 5–10 hours/week of ongoing security monitoring, documentation updates, and compliance governance. What It Takes: • Strong knowledge of NIST 800-171, CMMC, ISO 27001, or equivalent frameworks. • Experience preparing SSPs, POA&Ms, policies, and security governance documentation. • Understanding of IT environments (servers, cloud, networking, authentication). • Experience conducting audits, gap assessments, or compliance readiness reviews. • Ability to communicate clearly with both executives and technical staff. • Ability to prioritize tasks, work independently, and adapt to changing needs • Ability to work with minimal direction or support and to learn quickly; strong analytical skills; creative and innovative thinking; detail-oriented; calm under pressure; commitment to follow-through; enthusiastic with a talent for motivating others; receptive to criticism and open to others' ideas; and effective in written communication. • To conform to U.S. Government export regulations, applicant must be a (i) U.S. citizen or national, (ii) U.S. lawful, permanent resident (aka green card holder). What We'd Love: • Experience working with defense contractors or environments handling CUI. • Prior work with SIEM tools, logging systems, or vulnerability scanners. • Certifications such as CISA, CISSP, CISM, or ISO 27001 Lead Implementer/Auditor. Where You'll Be: • The position can be remote or on site at our headquarters in El Segundo, CA. If remote, you will need to travel for assessment and audit readiness. ITAR Requirements: To conform to U.S. Government export regulations, applicant must be a (i) U.S. citizen or national, (ii) U.S. lawful, permanent resident (aka green card holder), (iii) Refugee under 8 U.S.C. § 1157, or (iv) Asylee under 8 U.S.C. § 1158, or be eligible to obtain the required authorizations from the U.S. Department of State. Learn more about ITAR here Equal Employment Opportunity: Space Kinetic provides equal employment opportunities to all employees and applicants without regard to race, color, religion, age, sex, gender identity, sexual orientation, national origin, veteran status, disability or any other legally protected status. Apply tot his job Apply tot his job