About this Security Engineer role at Voltus
Company Description
Voltus is the leading platform connecting distributed energy resources to electricity markets, delivering less expensive, more reliable, and more sustainable electricity. Our commercial and industrial customers and grid services partners generate cash by allowing Voltus to maximize the value of their flexible load, distributed generation, energy storage, energy efficiency, and electric vehicle resources in these markets.
Job Description
Operating as a virtual power plant, our platform delivers the grid of the future today. Our software coordinates and dispatches actual megawatts across thousands of grid-connected sites within regulated wholesale energy markets, managing real financial settlements for the customers behind them. In this position, you will secure real-time energy dispatches, thousands of integrations, and live telemetry for critical infrastructure where system availability and data integrity directly affect physical power distribution and real people.
In this role, you will manage security holistically and make critical, actionable decisions daily, with the independence to shape the program's evolution. You will design and secure software to safeguard virtual critical energy infrastructure, directly enabling the climate energy transition. Your responsibilities will cover a wide range of challenges: establishing our detection and response capabilities from their foundations, leading end-to-end incident response, transforming vulnerability noise in a large monorepo into actionable insights for engineering teams, and operating on both sides of the AI frontier, utilizing agentic tools to amplify your output while establishing the guardrails the company will adopt.
Requirements
-
3+ years of security engineering or a security-focused infrastructure or software engineering role ideally at a SaaS remote-first company. security
-
Comfortable with programming in at least language. Proficiency programming (Go or Python preferred) to solve real problems, and reading unfamiliar code. You should have shipped some automation, services, or detection-as-code that others relied on.
-
Hands-on experience identifying and analyzing software vulnerabilities. Triaging dependency and code-level findings, judging exploitability and reachability, and working with engineers to ship fixes.
-
Incident Management. Run security investigations, execute containment and scoping protocols, develop incident playbooks, and coordinate tabletop simulation exercises.
-
SIEM Experience. Authoring, tuning, and maintaining custom detection rules across a centralized SIEM or analytics platform (such as Datadog, Splunk, Panther, or Elastic) to analyze aggregated logs from cloud infrastructure, endpoints, and identity systems.
-
Hands-on EDR operation experience with SentinelOne, CrowdStrike, or similar, including policy design, response actions, and tuning.
-
Strong written communication and enjoy working autonomously.
Preferred Skills and Attributes
-
Strong grasp of cloud, networking, and security concepts. AWS-native security services (CloudTrail, GuardDuty, Security Hub). IAM, RBAC and least privilege, role assumption and federation, network boundaries (VPCs, security groups), encryption and key management (KMS)
-
Tools & Tech Experience with Infrastructure as Code tools (Terraform), containerization (Docker), and monitoring/observability platforms (Datadog, Prometheus, OTEL). Container orchestration tooling Hashicorp Nomad, Vault Kubernetes.
-
Background in static application security testing (SAST) and code-level security reviews, including overseeing AI-assisted analysis across large codebases.
-
Proficiency producing and maintaining SBOMs within build pipelines, or designing a vulnerability management program utilizing software composition analysis (SCA) tooling on a monorepo.
-
Compliance & Framework Experience: Experience of managing and owning technical security controls within SOC 2, ISO 27001, or comparable regulatory frameworks. This includes implementing automated evidence collection processes and representing your work through audit cycles.
-
Comfort with AI and agentic engineering tools. (AI coding agents and assistants such as Claude Code, Copilot, or Cursor) as part of a working method, with judgment about where they help and where they do not.
-
Threat Modeling & Architecture: Hands-on experience mapping out attack surfaces and trust boundaries for software infrastructure, integrations, and advanced AI technologies. Ability to effectively translate foundational models like STRIDE or MITRE MITRE ATT&CK into robust, deployable controls and real-time alerts.
Bonus Qualifications
-
Regulatory & Risk Frameworks: Operational understanding of NIST CSF, ISO 27001, HIPAA, or GDPR. Ability to translate technical security controls into specific audit requirements and compliance evidence.
-
Professional Certifications: Industry-recognized credentials such as CISSP, GIAC, AWS Certified Security Specialty, or CompTIA Security+.
-
Vendor & Supply Chain Risk: Evaluating third-party risk posture, auditing complex OAuth integration scopes, and assessing AI service providers for secure data retention and robust operational security configurations.
-
AI Automation & Threat Landscapes: Developing LLM-powered security workflows via API and maintaining awareness of specialized vulnerabilities like prompt injection or those outlined in the OWASP Top 10 for LLMs.
-
Enterprise AI Governance: Implementing the control plane for safe AI use, including model allow-lists, data boundary enforcement, and AI gateway management.