[Remote] Security Engineer
Note: The job is a remote job and is open to candidates in USA. Voltus is the leading platform connecting distributed energy resources to electricity markets, delivering sustainable electricity. The Security Engineer will help build the technical foundation for clean energy transition by identifying infrastructure gaps from a security perspective and working with teams to enhance platform security.ResponsibilitiesBuild detections and security signal pipelines in DatadogServe as the subject matter expert on AWS Cloud and on-prem infrastructure securityDefine and set up AWS and on-prem Security Monitoring/Best Practices StrategyAct as the technical lead during security incidents, including investigation and remediationImprove Terraform Modules and Infrastructure as Code (IaC) to follow security best practicesDevelop and implement a vulnerability monitoring strategy and integrate it into CI/CD pipelinesBuild security automation using Python, scripting, and APIsPartner with Infrastructure on AWS security engineering, including IAM, KMS, and network segmentationOperate SOC 2 Type 2 evidence collection and audit responseDrive ISO 27001 implementation work, including risk assessments and control mappingEnsure infrastructure compliance with regulatory requirementsRun vendor and subprocessor risk reviewsRespond to customer security questionnaires and external inquiriesMentor and enable other team members to improve their security postureSkillsBuild detections and security signal pipelines in DatadogServe as the subject matter expert on AWS Cloud and on-prem infrastructure securityDefine and set up AWS and on-prem Security Monitoring/Best Practices StrategyAct as the technical lead during security incidents, including investigation and remediationImprove Terraform Modules and Infrastructure as Code (IaC) to follow security best practicesDevelop and implement a vulnerability monitoring strategy and integrate it into CI/CD pipelinesBuild security automation using Python, scripting, and APIsPartner with Infrastructure on AWS security engineering, including IAM, KMS, and network segmentationOperate SOC 2 Type 2 evidence collection and audit responseDrive ISO 27001 implementation work, including risk assessments and control mappingEnsure infrastructure compliance with regulatory requirementsRun vendor and subprocessor risk reviewsRespond to customer security questionnaires and external inquiriesMentor and enable other team members to improve their security posture4–7 years of security engineering experience, ideally at a SaaS or remote-first companySoftware development experience with Go or PythonProven AWS Security Experience (IAM, KMS, VPC, CloudTrail, GuardDuty)Direct experience supporting a SOC 2 Type 2 audit cycleFamiliarity with compliance requirements such as ISO 27001, HIPAA, and GDPRExperience with IaC tools like Terraform and containers such as DockerProficiency with monitoring and observability tools like Datadog or PrometheusStrong focus on risk awareness and knowing when to make fast versus slow decisionsSecurity certifications such as CISSP, AWS Security Specialty, or GIAC are a plusBenefitsVoltus is an all-remote workplaceWe expect that Voltans are working primarily from their home countryWorking while traveling to other countries must be approved as per our Global Remote Travel PolicyCompany OverviewVoltus provides cash-generating energy products to commercial, institutional, and industrial customers. It was founded in 2016, and is headquartered in San Francisco, California, USA, with a workforce of 201-500 employees. Its website is https://www.voltus.co.