Skip to content
← Back to job listings

Security Engineer

Voltus · Remote

CybersecurityRemoteQuick applyfull-time3 days ago

About The Role

Voltus is the leading platform connecting distributed energy resources to electricity markets, delivering less expensive, more reliable, and more sustainable electricity. Our commercial and industrial customers and grid services partners generate cash by allowing Voltus to maximize the value of their flexible load, distributed generation, energy storage, energy efficiency, and electric vehicle resources in these markets.

Job Description

Operating as a virtual power plant, our platform delivers the grid of the future today. Our software coordinates and dispatches actual megawatts across thousands of grid-connected sites within regulated wholesale energy markets, managing real financial settlements for the customers behind them. In this position, you will secure real-time energy dispatches, thousands of integrations, and live telemetry for critical infrastructure where system availability and data integrity directly affect physical power distribution and real people.

In this role, you will manage security holistically and make critical, actionable decisions daily, with the independence to shape the program's evolution. You will design and secure software to safeguard virtual critical energy infrastructure, directly enabling the climate energy transition. Your responsibilities will cover a wide range of challenges: establishing our detection and response capabilities from their foundations, leading end-to-end incident response, transforming vulnerability noise in a large monorepo into actionable insights for engineering teams, and operating on both sides of the AI frontier, utilizing agentic tools to amplify your output while establishing the guardrails the company will adopt.

Requirements

-

3+ years of security engineering or a security-focused infrastructure or software engineering role ideally at a SaaS remote-first company. security

-

Comfortable with programming in at least language. Proficiency programming (Go or Python preferred) to solve real problems, and reading unfamiliar code. You should have shipped some automation, services, or detection-as-code that others relied on.

-

Incident Management. Run security investigations, execute containment and scoping protocols, develop incident playbooks, and coordinate tabletop simulation exercises.

-

Hands-on experience identifying and analyzing software vulnerabilities . Triaging dependency and code-level findings, judging exploitability and reachability, and working with engineers to ship fixes.

-

Strong written communication and enjoy working autonomously.

Preferred Skills and Attribute

-

Strong grasp of cloud, networking, and security concepts. AWS -native security services (CloudTrail, GuardDuty, Security Hub). IAM, RBAC and least privilege, role assumption and federation, network boundaries (VPCs, security groups), encryption and key management (KMS)

-

Background in static application security testing (SAST) and code-level security reviews, including overseeing AI-assisted analysis across large codebases.

-

Proficiency producing and maintaining SBOMs within build pipelines, or designing a vulnerability management program utilizing software composition analysis (SCA) tooling on a monorepo.

-

SIEM Experience. Authoring, tuning, and maintaining custom detection rules across a centralized SIEM or analytics platform (such as Datadog , Splunk, Panther, or Elastic) to analyze aggregated logs from cloud infrastructure, endpoints, and identity systems.

-

Hands-on EDR operation experience with SentinelOne, CrowdStrike, or similar, including policy design, response actions, and tuning.

-

Tools & Tech Experience with Infrastructure as Code tools (Terraform), containerization (Docker), and monitoring/observability platforms (Datadog or Prometheus, OTEL).

  • Comfort with AI and agentic engineering tools. (AI coding agents and assistants such as Claude Code, Copilot, or Cursor) as part of a working method, with judgment about where they help and where they do not.

Bonus Qualifications

  • Security certifications such as CISSP, GIAC, AWS Security Specialty, COMP TIA Security+
  • -
  • Experience building agentic or LLM-powered security automation against an API, or familiarity with LLM-specific threat classes (prompt injection, OWASP LLM Top 10).
  • -
  • Familiarity with the control layer for enterprise AI adoption, including AI gateways, model allow-lists, and data boundary rules.

This listing was posted by a verified recruiter at Voltus. Report this listing