Security Engineer

About the Company

General Matter is enriching uranium in America.

Our goal is to design, build, and operate the world’s lowest-cost enrichment services in the United States. 

Our mission is to restore America’s ability to produce nuclear fuel—fuel that will power AI, advanced manufacturing, critical industries, and the next generation of nuclear reactors.

Ultimately, our work will help power national ambitions and enable a high-energy society.

We were incubated by Founders Fund, like Anduril and Palantir before us, and are backed by top-tier investors. Our lean, world-class team of engineers and operators is applying a first-principles approach to solving the problem of nuclear fuel production. 

We are a mission-driven company with a culture of urgency, accountability, and transparency.

Help us build a high-energy society by making the cleanest, safest form of baseload energy the most affordable.

About This Role

As a General Matter Security Engineer, you will play a critical role in protecting the systems, infrastructure, and information that enable our mission. You will design, implement, and continuously improve security controls across corporate, product, and regulated environments, helping ensure the confidentiality, integrity, and availability of our technology and operations.

This role spans cloud, on-premises, air-gapped, and highly restricted environments, requiring a practical, hands-on approach to cybersecurity in support of both business and engineering objectives. You will work closely with software engineers, IT, infrastructure, manufacturing, nuclear, and operations teams to embed security throughout the organization, from product development and infrastructure design to compliance, incident response, and operational readiness.

If you thrive in high-impact environments, enjoy solving complex security challenges, and are excited to help build secure systems from the ground up in a fast-paced, Skunkworks-style organization, we encourage you to join our team.

Responsibilities

• Design, implement, and maintain security controls across product, infrastructure, corporate, and regulated environments.
• Secure cloud, on-prem, air-gapped, and classified systems in alignment with NRC, federal, and internal security requirements.
• Support security operations, including monitoring, detection engineering, incident response, vulnerability management, and remediation tracking.
• Implement and improve identity and access management controls across workforce systems, production environments, and privileged access workflows.
• Partner with engineering teams to embed application security and secure SDLC practices across hardware, firmware, and software development.
• Contribute to GRC efforts, including policy implementation, risk assessments, audit readiness, NRC licensing support, and classified facility accreditation preparation.

Basic Qualifications

• 5+ years of hands-on cybersecurity experience across infrastructure, product, cloud, or security operations domains.
• Practical experience implementing security controls in production or high-stakes environments.
• Experience working in regulated environments such as federal, defense, nuclear, classified, ITAR, or similarly controlled settings.
• Strong technical knowledge of cloud security, network security, endpoint security, IAM, and security monitoring.
• Experience supporting incident response, vulnerability management, or security event investigation in operational environments.
• Ability to work cross-functionally with engineering, IT, compliance, and operations teams to drive security improvements.

Preferred Skills and Experience

• Experience supporting NRC licensing, classified facility buildouts, or federal frameworks such as NIST 800-53, NIST 800-171, RMF, or STIGs.
• Familiarity with hardware security, embedded systems, industrial control systems, or operational technology environments.
• Experience designing or operating secure architectures for hybrid cloud, air-gapped, or highly restricted systems.
• Fluency with modern DevSecOps tooling, detection engineering, infrastructure-as-code security, and automation.
• Experience contributing to security policies, control documentation, audits, or compliance evidence collection.
• Strong written and verbal communication skills, with the ability to explain security risks and tradeoffs to technical and non-technical stakeholders.

Additional Requirements

• Ability to work extended hours and weekends as necessary.

Equal Opportunity Employer

General Matter is an Equal Opportunity Employer; employment with General Matter is governed on the basis of merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability or any other legally protected status.

Compensation and Benefits

The base salary range for this role is $100,000–$180,000 annually. 

Compensation bands are determined by role, level, location, and alignment with market data. Individual level and base pay is determined on a case-by-case basis and may vary based on job-related skills, education, experience, technical capabilities and internal equity. Please note that the stated salary range is an estimate and may be adjusted based on market conditions, business needs, or other factors. In addition to base salary, for full-time hires, you may also be eligible for long-term incentives, in the form of stock options, and access to medical, vision & dental coverage as well as access to a 401(k) retirement plan.