Principal Cybersecurity Engineer - Battery Storage

Principal Cybersecurity Engineer – Battery Storage

Join to apply for the Principal Cybersecurity Engineer – Battery Storage role at Plus Power.

About Plus Power

Plus Power is an energy storage market leader with a 10+ GW portfolio across more than 25 states. We transform North American electric grids into cleaner, more versatile critical infrastructure by delivering standalone energy storage solutions. Standalone storage is cheaper than new natural‑gas plants, faster to build, and capable of providing diverse energy services. We partner with utilities, operators, and investors to originate, develop, finance, own and operate projects that supply critical services to the wholesale market. Our data‑driven approach fuels development and operations.

About the Role

We are currently seeking a Principal Cybersecurity Engineer to lead and execute key cybersecurity activities and protections. The ideal candidate has deep expertise in cybersecurity principles and frameworks, and has built or managed InfoSec, AppSec, SecOps, identity & access management, and data privacy programs. Reporting to the Manager of Information Technology, you will work cross‑functionally with IT, Data Engineering, Data Science, Operational Technology, Asset Management, Engineering Procurement & Construction, Legal, External Relations, and HR to create and manage cybersecurity controls and testing for our projects and corporate needs.

Key Responsibilities

• Work day‑to‑day with stakeholders to drive Plus Power's cybersecurity program, aligning with company compliance and security postures.
• Promote secure‑by‑design and secure‑by‑default strategies.
• Baseline, monitor, identify, and assess security vulnerabilities and risks across OT, IT, data science, and data engineering environments.
• Own and drive resolution of security events, control gaps, policy questions, and technical risks.
• Build repeatable, reusable, systematic security processes and frameworks to identify potential security events and quantify their feasibility.
• Manage the company's Compliance & Security Posture Management (CSPM) platforms and advance enterprise cybersecurity framework certifications.
• Provide project management for implementing security controls cross‑functionally.
• Conduct automated evidence collection operations to guarantee control longevity and uniformity.
• Assist with identification and mitigation of cybersecurity risks including compliance concerns (SOX, ISO, NERC‑CIP, NIST CSF 2.0).
• Develop, communicate, and assess the compliance stance of the framework relative to internal and external policies.
• Build and run a Third‑Party Cyber Risk Management (TPRM) program; mitigate systemic risk from vendors and end‑to‑end software supply chain.
• Communicate and maintain cybersecurity and risk metrics for senior executives and business unit leaders.
• Work with External Relations on proposed cybersecurity legislation and regulations.
• Work with Legal and Compliance to establish controls facilitating compliance with applicable laws and regulations.

Skills & Qualifications

• 8+ years of experience identifying security issues and developing mitigation plans.
• Bachelor's or Master's in Information Systems, Computer Science, Software Engineering, or a closely related field.
• Deep hands‑on technical expertise in at least two of: network security, embedded/hardware security, cryptography, web & network protocols, secure BOM, threat modeling, penetration testing, or vulnerability assessments.
• Proficiency in scripting/software development (e.g., Python, Rust) to automate processes.
• Certifications: CISSP, CISM, CRISC, CISA, GIAC, EC‑Council (desired).
• Knowledge of email security, DLP, CSPM, ZTNA, EDR/XDR, and other security technologies.
• Experience implementing KPIs and metrics for security & risk management.
• Proficient at conducting audits, certifications, and control assessments; experienced with SOC2, ISO27001, NIST frameworks and SOX-regulated environments.
• Excellent written and verbal communication skills; able to communicate at all levels.
• Ability to work in a fast‑paced environment, manage multiple priorities, and collaborate cross‑functionally.
• Proficiency with Microsoft Office (Word, Excel, PowerPoint, Outlook).
• Experience with operational technologies (preferred).

Compensation, Location, and Benefits

Highly competitive total compensation. Flexible work options: remote or hybrid from Offices in San Francisco, Houston, Chicago, Seattle, and Palm Beach. Expected salary range begins at $175,000. Eligible for annual bonus program.

Benefits include unlimited vacation, flexible remote work, work‑from‑home stipend, educational assistance, parental leave, and a highly engaging company culture.

Application deadline: 11/14/2025. Plus Power will not sponsor non‑immigrant visas for this position.

EEO Statement

Plus Power is committed to a diverse and inclusive workplace. We are an equal‑opportunity employer and do not discriminate based on race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. This information is provided in accordance with applicable law.