opengreenhousegaingels
Information Security Systems Engineer
STOKE Space
LocationKent, Washington, Kent
Last observed2026-06-13 05:23:09.238028
Job idgaingels-stoke-space-technologies:greenhouse:5555819004
At Stoke, we believe a thriving space economy will enable a vibrant, sustainable, and equitable future here on Earth. That is why we’re building Nova, our fully and rapidly reusable launch vehicle. Designed for daily flight, Nova tackles the core challenges of space transportation by reducing cost, increasing availability, and improving reliability. By radically lowering launch costs and increasing flight cadence, we’re helping create a truly scalable space industry. Our team is mission-driven, collaborative, and empowered to take ownership of their work. If you want to work alongside some of the most dedicated and talented people on Earth, we’d love to have you join us. Description Reusable launch systems depend on secure, resilient, and well-architected information systems. As an Information Security Systems Engineer , you will design, implement, document and continuously improve the technical security controls that protect Stoke’s infrastructure, engineering environments, manufacturing systems, and sensitive aerospace data. This is a hands-on security engineering role with ownership of Stoke’s evolving information security program. You will strengthen, maintain, and mature the technical controls that protect our infrastructure, engineering systems, and manufacturing environments, while driving risk management and framework alignment efforts. You will translate regulatory requirements (including NIST 800-53/171, FedRAMP, ISO 27001, and SOC frameworks) into practical, scalable controls embedded within our systems and maintain the documentation and evidence necessary to support audits and compliance activities. We are a small, highly motivated team. You will work across IT, software engineering, manufacturing, and operations to implement scalable security guardrails that enable teams to move fast without compromising risk posture. You must be ready to stay focused, move quickly, self-direct, and learn on the fly. Responsibilities Lead and facilitate the risk assessment process, including identifying, evaluating, and treating information security risks Define, document, and enforce security policies, standards, and procedures in alignment with regulatory and industry compliance standards, including NIST 800-53/171, SOC1/SOC2, ISO 27001 Design, implement, and continuously improve security controls across cloud and on-premise systems, including identity, endpoint, network, and logging environments Monitor and analyze security systems and alerts to identify suspicious activities and respond to potential threats Conduct regular security audits and vulnerability assessments to identify and mitigate potential risks Collaborate with cross-functional teams to integrate security controls into business processes, IT systems, and engineering development Maintain and improve documentation and evidence required to support audits and compliance activities Assist with hands-on system administration tasks, particularly those related to security configurations Perform additional duties as assigned to support organizational goals and objectives Qualifications Exceptional understanding of IT infrastructure, including applications, networks, servers, storage, and cloud technologies Strong analytical and problem-solving skills to identify, address, and mitigate security risks and issues Bachelor’s degree in Computer Science, Cybersecurity or related field 5+ years of experience in the Information Security field Knowledge of relevant frameworks (e.g., NIST 800-53/171, SOC 2, ISO 27001) Excellent written and verbal communication Preferred Qualifications Professional security certifications such as CISSP, GCED, GCIH, or equivalent (or ability to demonstrate equivalent practical experience) Experience operating in regulated environments subject to NIST 800-171, NIST 800-53, FedRAMP, ISO 27001, SOC 2, CUI handling, or similar control frameworks Experience integrating security into software development lifecycles (SSDLC), including threat modeling, secur
This page is generated from the committed OpenOpps static snapshot. Use the source posting or apply link for the employer's current canonical posting state.