Security Engineer
Quick Summary
establishing our detection and response capabilities from their foundations, leading end-to-end incident response,
Industry-recognized credentials such as CISSP, GIAC, AWS Certified Security Specialty, or CompTIA Security+. Vendor & Supply Chain Risk: Evaluating third-party risk posture,
Voltus is the leading platform connecting distributed energy resources to electricity markets, delivering less expensive, more reliable, and more sustainable electricity. Our commercial and industrial customers and grid services partners generate cash by allowing Voltus to maximize the value of their flexible load, distributed generation, energy storage, energy efficiency, and electric vehicle resources in these markets.
Operating as a virtual power plant, our platform delivers the grid of the future today. Our software coordinates and dispatches actual megawatts across thousands of grid-connected sites within regulated wholesale energy markets, managing real financial settlements for the customers behind them. In this position, you will secure real-time energy dispatches, thousands of integrations, and live telemetry for critical infrastructure where system availability and data integrity directly affect physical power distribution and real people.
In this role, you will manage security holistically and make critical, actionable decisions daily, with the independence to shape the program's evolution. You will design and secure software to safeguard virtual critical energy infrastructure, directly enabling the climate energy transition. Your responsibilities will cover a wide range of challenges: establishing our detection and response capabilities from their foundations, leading end-to-end incident response, transforming vulnerability noise in a large monorepo into actionable insights for engineering teams, and operating on both sides of the AI frontier, utilizing agentic tools to amplify your output while establishing the guardrails the company will adopt.
Nice to Have
~3 min read-
Strong grasp of cloud, networking, and security concepts. AWS-native security services (CloudTrail, GuardDuty, Security Hub). IAM, RBAC and least privilege, role assumption and federation, network boundaries (VPCs, security groups), encryption and key management (KMS)
-
Tools & Tech Experience with Infrastructure as Code tools (Terraform), containerization (Docker), and monitoring/observability platforms (Datadog, Prometheus, OTEL). Container orchestration tooling (Hashicorp Nomad Vault,) Kubernetes.
-
Background in static application security testing (SAST) and code-level security reviews, including overseeing AI-assisted analysis across large codebases.
-
Proficiency producing and maintaining SBOMs within build pipelines, or designing a vulnerability management program utilizing software composition analysis (SCA) tooling on a monorepo.
-
Compliance & Framework Experience: Experience of managing and owning technical security controls within SOC 2, ISO 27001, or comparable regulatory frameworks. This includes implementing automated evidence collection processes and representing your work through audit cycles.
-
Comfort with AI and agentic engineering tools. (AI coding agents and assistants such as Claude Code, Copilot, or Cursor) as part of a working method, with judgment about where they help and where they do not.
-
Threat Modeling & Architecture. Hands-on experience mapping out attack surfaces and trust boundaries for software infrastructure, integrations, and advanced AI technologies. Ability to effectively translate foundational models like STRIDE or MITRE ATT&CK into robust, deployable controls and real-time alerts.
-
Regulatory & Risk Frameworks: Operational understanding of NIST CSF, ISO 27001, HIPAA, or GDPR. Ability to translate technical security controls into specific audit requirements and compliance evidence.
-
Professional Certifications: Industry-recognized credentials such as CISSP, GIAC, AWS Certified Security Specialty, or CompTIA Security+.
-
Vendor & Supply Chain Risk: Evaluating third-party risk posture, auditing complex OAuth integration scopes, and assessing AI service providers for secure data retention and robust operational security configurations.
-
AI Automation & Threat Landscapes: Developing LLM-powered security workflows via API and maintaining awareness of specialized vulnerabilities like prompt injection or those outlined in the OWASP Top 10 for LLMs.
-
Enterprise AI Governance: Implementing the control plane for safe AI use, including model allow-lists, data boundary enforcement, and AI gateway management.
Location & Eligibility
Listing Details
- Posted
- May 19, 2026
- First seen
- May 21, 2026
- Last seen
- July 14, 2026
Posting Health
- Days active
- 52
- Repost count
- 0
- Trust Level
- 51%
- Scored at
- July 12, 2026
Signal breakdown

Voltus is a leading distributed energy resource (DER) technology platform and virtual power plant operator that connects DERs to electricity markets, aiming to deliver less expensive, more reliable, and sustainable electricity.
View company profilePlease let Voltus know you found this job on Jobera.
4 other jobs at Voltus
View all →Explore open roles at Voltus.
Browse Similar Jobs
Stay ahead of the market
Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.
No spam. Unsubscribe at any time.