Security Engineer

Company Description Voltus is the leading platform connecting distributed energy resources to electricity markets, delivering less expensive, more reliable, and more sustainable electricity. Our commercial and industrial customers and grid services partners generate cash by allowing Voltus to maximize the value of their flexible load, distributed generation, energy storage, energy efficiency, and electric vehicle resources in these markets. Job Description Are you interested in building the technical foundation of the worldwide transition to clean energy? Do you enjoy working with a highly motivated and talented team to deliver mission-critical software? Voltus is growing our Security Team to help deploy, manage, troubleshoot, and enhance our Platform and tools for its internal and external customers. You’ll help us identify our infrastructure gaps from a security perspective, create a roadmap, and work with the infrastructure/IT team(s) to close our gaps. This role splits time roughly 60% technical engineering and 40% governance, risk, and compliance (GRC). **Please include a link to your GitHub account in your application (in the “links” section). Applications without a GitHub account will not be considered** Please note that at this time, we do not sponsor visas or transfers for new hires. Voltus teammates need to be authorized to work from their home location (in the US or Canada, unless otherwise indicated on the role description). Additionally, while Voltus is an all-remote workplace, we have limitations on where employees are able to work for regulatory and security reasons. We expect that Voltans are working primarily from their home country. Working while traveling to other countries must be approved as per our Global Remote Travel Policy. At Voltus, we are proud to be an equal opportunity employer because we recognize that a diverse organization begins with a diverse candidate pool. This means we do not tolerate discrimination of any kind and are committed to providing equal employment opportunities regardless of your gender identity, race, nationality, religion, age, sexual orientation, veteran status, disability status, or marital status. Responsibilities Engineering and Operations Build detections and security signal pipelines in Datadog. Serve as the subject matter expert on AWS Cloud and on-prem infrastructure security. Define and set up AWS and on-prem Security Monitoring/Best Practices Strategy. Act as the technical lead during security incidents, including investigation and remediation. Improve Terraform Modules and Infrastructure as Code (IaC) to follow security best practices. Develop and implement a vulnerability monitoring strategy and integrate it into CI/CD pipelines. Build security automation using Python, scripting, and APIs. Partner with Infrastructure on AWS security engineering, including IAM, KMS, and network segmentation. Governance, Risk, and Compliance Operate SOC 2 Type 2 evidence collection and audit response. Drive ISO 27001 implementation work, including risk assessments and control mapping. Ensure infrastructure compliance with regulatory requirements. Run vendor and subprocessor risk reviews. Respond to customer security questionnaires and external inquiries. Mentor and enable other team members to improve their security posture. Preferred Skills and Attributes 4–7 years of security engineering experience, ideally at a SaaS or remote-first company. Software development experience with Go or Python. Proven AWS Security Experience (IAM, KMS, VPC, CloudTrail, GuardDuty). Direct experience supporting a SOC 2 Type 2 audit cycle. Familiarity with compliance requirements such as ISO 27001, HIPAA, and GDPR. Experience with IaC tools like Terraform and containers such as Docker. Proficiency with monitoring and observability tools like Datadog or Prometheus. Strong focus on risk awareness and knowing when to make fast versus slow decisions. Security certifications such as CISSP, AWS Security Specialty, or GIAC are a plus.

{
  "content_hash": "84fd74f44bd2f66917823b095ea854dfa3f031833116d61baa5dcb96f4cb6264",
  "source_hash": "66d160d7a7b09fc19d2ce6ee77476ffec2bac54334d80ece0837a6db73394ecb",
  "last_changed_at": "2026-05-29T07:01:10.167Z",
  "active_status": "active"
}

{
  "language": "en",
  "location": {
    "raw": "Remote",
    "city": null,
    "region": null,
    "country": "United States",
    "is_remote": true,
    "confidence": 0.9
  },
  "salary_max": 160000,
  "salary_min": 140000,
  "inferred_at": "2026-06-18T07:56:30.795Z",
  "launch_scope": {
    "reason": "english_us_canada",
    "included": true,
    "language": "en",
    "location": {
      "raw": "Remote",
      "city": null,
      "region": null,
      "country": "United States",
      "is_remote": true,
      "confidence": 0.9
    },
    "countries": [
      "United States"
    ]
  },
  "remote_policy": "remote",
  "salary_period": "year",
  "workplace_type": "remote",
  "salary_currency": "USD"
}

{}

{
  "lists": [
    {
      "text": "Responsibilities",
      "content": "<h4>Engineering and Operations</h4>\n\n<li>\n<p>Build detections and security signal pipelines in Datadog.</p>\n</li>\n<li>\n<p>Serve as the subject matter expert on AWS Cloud and on-prem infrastructure security.</p>\n</li>\n<li>\n<p>Define and set up AWS and on-prem Security Monitoring/Best Practices Strategy.</p>\n</li>\n<li>\n<p>Act as the technical lead during security incidents, including investigation and remediation.</p>\n</li>\n<li>\n<p>Improve Terraform Modules and Infrastructure as Code (IaC) to follow security best practices.</p>\n</li>\n<li>\n<p>Develop and implement a vulnerability monitoring strategy and integrate it into CI/CD pipelines.</p>\n</li>\n<li>\n<p>Build security automation using Python, scripting, and APIs.</p>\n</li>\n<li>\n<p>Partner with Infrastructure on AWS security engineering, including IAM, KMS, and network segmentation.</p>\n</li>\n\n<h4><strong>Governance, Risk, and Compliance</strong></h4>\n\n<li>\n<p>Operate SOC 2 Type 2 evidence collection and audit response.</p>\n</li>\n<li>\n<p>Drive ISO 27001 implementation work, including risk assessments and control mapping.</p>\n</li>\n<li>\n<p>Ensure infrastructure compliance with regulatory requirements.</p>\n</li>\n<li>\n<p>Run vendor and subprocessor risk reviews.</p>\n</li>\n<li>\n<p>Respond to customer security questionnaires and external inquiries.</p>\n</li>\n<li>\n<p>Mentor and enable other team members to improve their security posture.</p>\n</li>\n\n<div>\n<h4><strong>Preferred Skills and Attributes</strong></h4>\n</div>\n<div>\n\n<li>\n<p>4–7 years of security engineering experience, ideally at a SaaS or remote-first company.</p>\n</li>\n<li>\n<p>Software development experience with Go or Python.</p>\n</li>\n<li>\n<p>Proven AWS Security Experience (IAM, KMS, VPC, CloudTrail, GuardDuty).</p>\n</li>\n<li>\n<p>Direct experience supporting a SOC 2 Type 2 audit cycle.</p>\n</li>\n<li>\n<p>Familiarity with compliance requirements such as ISO 27001, HIPAA, and GDPR.</p>\n</li>\n<li>\n<p>Experience with IaC tools like Terraform and containers such as Docker.</p>\n</li>\n<li>\n<p>Proficiency with monitoring and observability tools like Datadog or Prometheus.</p>\n</li>\n<li>\n<p>Strong focus on risk awareness and knowing when to make fast versus slow decisions.</p>\n</li>\n<li>\n<p>Security certifications such as CISSP, AWS Security Specialty, or GIAC are a plus.</p>\n</li>\n\n</div>"
    }
  ],
  "country": "US",
  "createdAt": 1779216360380,
  "updatedAt": null,
  "categories": {
    "team": "Security & IT",
    "location": "Remote",
    "commitment": "Full-Time",
    "department": "Engineering",
    "allLocations": [
      "Remote"
    ]
  },
  "salaryRange": {
    "max": 160000,
    "min": 140000,
    "currency": "USD",
    "interval": "per-year-salary"
  },
  "workplaceType": "remote"
}