Security Operations Engineer

About Critical Loop

Critical Loop is shaping the next generation of energy systems by building the integrated edge grid of the future. Specializing in advanced energy management and battery control systems, Critical Loop empowers businesses and communities to seamlessly unite distributed energy resources for faster, more reliable, and affordable grid access. With deep expertise in grid modernization and a passion for creating resilient, responsive energy solutions, Critical Loop drives innovation at the intersection of technology and energy.

About the Role

At Critical Loop, we're on a mission to make power more accessible and efficient. As we grow, we're encountering new security risks and customer and compliance requirements - and we're looking for an engineer who can help us not just meet them, but build systems that are secure, scalable, and easy to maintain.

We're seeking a Security Operations Engineer who thrives at the intersection of infrastructure, security, and code. Someone who loves digging into security needs, thinking through edge cases, and implementing practical, elegant solutions. You'll play a key role in translating requirements into real-world systems: from infrastructure as code and authentication systems to build pipelines and secure services.

Responsibilities:

• Develop secure, repeatable systems in both cloud and edge environments, using modern infrastructure as code.
• Implement security controls including network segmentation, secrets management, and audit logging.
• Lead the triage and resolution of security-related issues and collaborate with engineers on secure software libraries.
• Interpret and implement security requirements (e.g., contractual cybersecurity plans, internal policies, compliance obligations) across our infrastructure and systems.
• Own the security posture of edge nodes (full Linux systems inside battery storage and switchgear), including hardened baselines, identity and access controls, secure provisioning, and remote update mechanisms.
• Ensure reliable monitoring, telemetry, and auditability across geographically distributed field deployments, integrating edge data into centralized detection and compliance workflows.
• Partner with hardware, firmware, and platform teams to maintain secure device lifecycles—covering configuration drift, vulnerability management, and safe operational workflows for manufacturing, deployment, and field maintenance.
• Document decisions and architectures clearly, and help establish documentation standards across the team.
• Assist with IT Security work until we're ready to hire dedicated staff (SaaS configuration and integration, laptop postures and MDM, etc).

Requirements:

• Background in Linux-based systems, both cloud and on-premise/edge/IoT
• Strong experience with infrastructure-as-code practices and tools (Terraform, CloudFormation, etc.).
• Experience documenting and providing evidence for security and compliance frameworks (e.g., ISO 27001, SOC 2, etc.).
• Willingness to learn new tools as needed - our stack includes Python, Terraform, Ansible, AWS, and C++.
• A pragmatic mindset - security that enables progress, not prevents it.

Preferred Requirements:

• Hands-on experience with our stack: AWS, Python, Terraform, Ansible.
• Understanding of authentication protocols (OAuth, SAML, OIDC) and authorization patterns.
• Proficiency in at least one programming language (Python preferred, but others welcome).

Critical Loop is an equal opportunity employer. We're committed to building a diverse team and creating an inclusive workplace where everyone can thrive. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected characteristic under applicable law.

Compensation Range: $150K - $200K