Join us in our mission to commercialize fusion energy ⚡️
About Type One Energy
Type One Energy Group is mission-driven to provide sustainable, affordable fusion power to the world. Established in 2019 and venture-backed in 2023, the company is led by a team of globally recognized fusion scientists with a strong track record of building state-of-the-art stellarator fusion machines, together with veteran business leaders experienced in scaling companies and commercializing energy technologies
If you are searching for the best new ideas and share our vision, join us as a “Senior Cyber Security Engineer”. This is what you need to know:
Location:Knoxville, TN or Madison WI
Salary:Highly Competitive Plus Benefits
Contract: Permanent, full time
Reporting to:Director of IT
Your role in the mission:
The Cyber Security Engineer will be the primary hands-on security operator, responsible for day-to-day cyber security operations and the implementation and operation of core security platforms. This role partners closely with the Director of IT, who sets security strategy, priorities, and risk tolerance, while the Cyber Security Engineer executes, operates, and continuously improves the technical security program.
The Cyber Security Engineer is responsible for coordinating closely with the MSP on these services, ensuring they are correctly configured, monitored, and aligned with internal security objectives. While certain operational tasks are delegated, accountability for security outcomes remains internal.
This role will play a central part in establishing durable, auditable, and defensible cyber security operations.
Cyber Security Operations
Own day-to-day internal cyber security operations and outcomes.
Monitor, triage, and investigate security alerts and incidents.
Act as the primary internal technical responder for security events.
Coordinate closely with the MSP on managed security services (including SentinelOne), retaining internal accountability.
Security Platform Ownership
Implement, configure, and operate core security platforms, including Zscaler and Aurascape.
Design and enforce security policies; integrate with identity, endpoint, and network systems.
Serve as technical owner for MSP-managed platforms by defining standards, reviewing findings, and validating response actions.
Lead implementation and operation of a SIEM platform, including logging standards, alerting, and workflows.
Incident Response and Risk Management
Lead technical investigation, containment, and remediation of security incidents.
Conduct post-incident reviews and recommend control improvements.
Operate vulnerability scanning and configuration assessment tools.
Prioritize and track remediation based on risk and business impact.
Compliance and Audit Readiness
Implement and operate technical controls supporting CMMC Level 2 and NIST 800-171.
Maintain defensible documentation of security controls and operations.
Support audits, investor due diligence, and third-party security assessments.
Partner with leadership to identify and remediate gaps.
Collaboration and Advisory
Work closely with the Director of IT on priorities, risk acceptance, and escalation decisions.
Advise IT, engineering, and research teams on secure system design and operational trade-offs.
What you’ll need:
Core Technical Skills
Strong hands-on understanding of modern security principles and threat models.
Practical experience securing Linux and Windows systems.
Solid networking fundamentals (firewalls, segmentation, VPNs, DNS).
Experience operating security platforms such as SSE/CASB, EDR, vulnerability scanners, and SIEMs.
Ability to automate and script security tasks using Python, Bash, or PowerShell.
Cloud and Infrastructure
Experience securing cloud environments (AWS, Azure, or GCP).
Familiarity with IAM, logging, monitoring, and cloud network security.
Experience with containerized workloads, CI/CD pipelines, or HPC environments is a plus.
Incident Response and Operations
Demonstrated experience investigating and responding to security incidents.
Ability to analyze logs and alerts to distinguish real risk from noise.
Calm, methodical approach to incident handling under pressure.
Professional Experience
Typically 3–7 years of experience in cybersecurity, systems engineering, or a closely related field.
Experience operating security controls in production environments with real accountability.
Experience working with Managed Service Providers while retaining internal ownership of outcomes.
Prior experience in regulated or high-scrutiny environments preferred.
Communication and Judgment
Ability to communicate security risks clearly to non-security stakeholders.
Sound judgment balancing security requirements with business and research needs.
Comfort operating in an environment where execution is shared, but accountability is not.
Preferred but Not Required
Direct experience with CMMC, NIST 800-171, SOC 2, or IPO readiness.
Relevant certifications (e.g., CISSP, GCIH, GCED, CCSP).
We offer:
In addition to a basic salary and yearly bonus, you will also get…
Stock and share options 📈
Relocation allowance 💰
Insurance plans 🩺
401k retirement options 💸
And many more great voluntary benefits 👀
Type One Energy applies proven advanced manufacturing methods, modern computational physics and high-field superconducting magnets to develop its optimized stellarator fusion energy system. Its FusionDirect development program pursues the lowest-risk, shortest-schedule path to a fusion power plant over the coming decade, using a partner-intensive and capital-efficient strategy.
Type One Energy is committed to community engagement in the development and deployment of its clean energy technology. For more information, visit www.typeoneenergy.com or follow us on LinkedIn.
Equal Opportunity Statement
Type One Energy is an equal opportunity employer. We value diversity, searching for the best new ideas and remaining open to unique perspectives. Therefore, all qualified applicants will receive consideration for employment independent of race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other characteristics protected by applicable federal, state, or local laws. All qualified individuals are encouraged to apply.