Commonwealth Fusion Systems

Cybersecurity Engineer

Commonwealth Fusion Systems

full-time

Posted on:

Origin:  • 🇺🇸 United States • Massachusetts

Visit company website
AI Apply
Manual Apply

Salary

💰 $90,000 - $145,000 per year

Job Level

Mid-LevelSenior

Tech Stack

AWSAzureCloudCyber SecurityLinux

About the role

  • Primary driver for internal cybersecurity compliance and privacy at Commonwealth Fusion Systems
  • Shape and uphold security and data privacy standards for cutting-edge fusion energy solutions
  • Mature and maintain compliance posture across standards including ISO 27001
  • Integrate security requirements into IT systems and collaborate with architects
  • Develop cloud infrastructure security standards and perform security assessments of cloud platforms
  • Deploy tools to monitor compliance of cloud infrastructure and conduct ongoing vulnerability assessments and penetration testing
  • Implement remediation strategies, system hardening, secure baselines, and integrate static/dynamic code analysis tools
  • Research and evaluate cybersecurity tools and methodologies; define secure-by-default software engineering practices
  • Ensure compliance documents (policies, procedures, controls, data maps, customer documentation) remain up-to-date and support subject matter experts

Requirements

  • Bachelor's degree in Computer Science, Cybersecurity, Engineering, or a related field; additional experience, certifications or training may be considered in lieu of degree
  • 3-5 years of relevant IT/ DevOps/Security Engineering experience
  • Self-starting individual with the right attitude, aptitude to identify, take ownership of and solve challenging problems
  • Interest in continual learning and development of the team and themselves
  • Ability to work collaboratively and independently to develop creative solutions
  • Passion for securing and maintaining IT and OT systems critical to national and international security
  • Project management skills
  • Great numerical and analytical skills
  • Excellent problem-solving skills
  • Attention to detail and excellent communication skills, both written and verbal
  • Agile mindset to provide solutions quickly with an incremental value to customers
  • Beginner to intermediate Windows, Linux and Networking skills (bonus)
  • Familiarity with tools like Rapid7/Metasploit, CrowdStrike, Snyk and KnowBe4 (bonus)
  • Experience in hardening modern operating systems and implementing security engineering best practices (bonus)
  • Familiarity with cloud security platforms such as AWS, Azure, or Google Cloud (bonus)
  • Experience with NIST Cybersecurity Framework, ISO 27001, NIST 800-171 (CMMC), or Risk Management Framework (RMF) (bonus)
  • Ability to occasionally lift up to 50 lbs
  • Perform activities such as typing, standing, or sitting for extended periods of time
  • Willingness to occasionally travel or work required nights/weekends/on-call
  • Work in a facility that contains industrial hazards including heat, cold, noise, fumes, strong magnets, lead (Pb), high voltage, high current, pressure systems, and cryogenics