A Cybersecurity Framework for Safeguarding US Space Tech SMEs in the Commercial Launch and Satellite Supply Chain: Defending against Nation-State Espionage and Infrastructure Compromise

As the commercial space sector expands in the United States, small and medium enterprises (SMEs) have become vital contributors to satellite design, manufacturing, and launch operations. Despite their technical importance, these firms often lack adequate cybersecurity measures, making them vulnerable to nation-state cyber actors. This paper proposes a cybersecurity framework specifically designed for US space tech SMEs, emphasizing scalable controls, threat detection, and supply chain integrity. The framework integrates principles from zero-trust architecture, NIST guidelines, and defense sector compliance requirements. A pilot deployment in three SMEs demonstrated a 60% reduction in threat detection time, a 45% increase in cybersecurity awareness among staff, and a 52% improvement in compliance readiness scores. By offering targeted strategies that are resource-conscious, this framework aims to improve national security resilience within the space innovation ecosystem.