We are looking for team members who embody the spirit of innovation to help us create the products others said could not be done.

Atom Power is disrupting an industry by digitizing power technologies to enable smart communication between electrical sources and end use equipment which is essential to our country’s clean energy transition.  We are growing fast and procuring the best talent in the electrical and electronic manufacturing industry specific to work on ground-breaking electrical vehicle charging and residential energy automation. 

Our Core Values:

  • Believe in the individual
  • Market driven, customer focused
  • Treat all stakeholders as partners
  • Begin with the end in mind, move with urgency
  • Challenge the conventional, verify with the physics
  • Trust, transparency, integrity

We are seeking a Lead Security Engineer to join our skilled cross functional team. If you are a security, privacy, and compliance leader with a track record of developing security strategies and delivering results then we would love to hear from you!

This is your opportunity to apply your experience as you lead Atom Power forward.  

 

Department: Engineering

Reports To:  CTO

FLSA Status:  Exempt

Job Type:  Full-Time

Job Location:  Based in Huntersville, NC

 

Responsibilities:

  • Responsible for establishing Atom Power’s security program, while providing technical and professional leadership and oversight to business operations and product development activities
  • Champion definition and implementation of business security strategy; ensuring consideration, consistency and compatibility of design principles and patterns across all business organizations
  • Define the security strategy and framework using industry-recognized security architecture frameworks (e.g. OWASP SAMM, BSIMM, NIST SSDF), standards, and best practices to protect the company’s platforms, applications and IoT products 
  • Establish a common security architecture through deep understanding of the product, evaluation of the technology stack, and a holistic review of threats, risks and control objectives to optimize security by design and minimize platform and application security vulnerabilities.
  • Breadth and depth in the areas of application/product/enterprise security, compliance, security operations, incident response, software engineering, physical security, threat and vulnerability management, security architecture, governance, risk management and compliance.
  • Promote a shift-left approach and mindset to building security in to the development process
  • Ensure all security disciplines align to deliver industry-best practice security principles, effectively mitigating risks and conforming to all requirements including legal, regulatory and business objectives
  • Promote and maintain awareness of latest security principles, techniques and protocols and create awareness of security posture using a data-driven approach

Qualifications: 

To perform this job successfully, an individual must be able to perform each  essential duty satisfactorily. The requirements listed below are representative of the knowledge,  skill, and/or ability required. Reasonable accommodations may be made to enable individuals  with disabilities to perform the essential functions.

Minimum Qualifications:

  • 7+ years information and product security experience
  • Strong cryptography knowledge and implementation expertise 
  • Excellent understanding of SDLC and modern development methodologies 
  • Working knowledge of at least one programming language
  • Deep technical background, with a firm understanding of embedded firmware and software, communications protocols, data encryption, enterprise systems and cloud environments
  • Strong knowledge in securing consumer and commercial IoT devices
  • Excellent knowledge of enterprise software development ecosystem, application vulnerabilities, application security controls, and secure development frameworks and best practices
  • Strong and current understanding of application security threats, attack patterns, common and emerging security vulnerabilities and how they manifest themselves in different types of environments and applications
  • Extensive threat modeling experience 
  • Strong communication and influencing skills, with ability to effectively advise leadership and influence senior stakeholders
  • Good knowledge of common security standards and frameworks (e.g. OWASP Top 10, NIST/ CSC, CIS, SANS Top 25, TOGAF,  SABSA, OSA, etc.) 
  • Good level of knowledge of information security risk management methodologies and best practices

Preferred Qualifications:

  • Graduate / post graduate study in computing / security related field 
  • ISO 27001 and SOC2 implementation experience
  • Relevant security architecture professional qualification, such as GIAC or other
  • Understanding of the legal and regulatory environment within which the business operates and knowledge of relevant security-related legal and regulatory requirements 
  • Active membership in a relevant professional body or industry group
  • Strong commercial awareness to enable business growth through effective security 
  • Demonstrated ability to scale up and out the application security program through developer empowerment, training, automation, crowdsourcing, and other initiatives 
  • Extensive previous experience in building and running security programs in a fast-paced, startup (ground-up) environment 

 

Physical Demands:

The physical demands described here are representative of those that must be met by an  employee to successfully perform the essential functions of this job. Reasonable  accommodations may be made to enable individuals with disabilities to perform the essential  functions. While performing the duties of this job, the employee is regularly required to sit and use hands  to finger, handle, or feel. The employee is frequently required to talk or hear. The employee is  occasionally required to stand; walk; reach with hands and arms and stoop, kneel, crouch, or  crawl. The employee must occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision.

ATOM Power provides equal employment opportunities to all employees and applicants in all company facilities without regard to race, color, religious creed, sex, national origin, ancestry, citizenship status, pregnancy, childbirth, physical disability, mental and/or intellectual disability, age, military status, veteran status, marital status, registered domestic partner or civil union status, familial status, gender (including sex stereotyping and gender identity or expression), medical conditions, genetic information, or sexual orientation in accordance with applicable federal, state and local laws.  This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Apply for this Job

* Required

  
  
When autocomplete results are available use up and down arrows to review
+ Add Another Education


Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in Atom Power’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.


Form CC-305

OMB Control Number 1250-0005

Expires 05/31/2023

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

1Section 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.