Information Security Engineer

Atomic Machines is ushering in a new era of micromanufacturing with its Matter Compiler™ technology platform. This platform enables new classes of micromachines to be designed and built by providing manufacturing processes and a materials library that are inaccessible to semiconductor manufacturing methods. It unlocks MEMS manufacturing not only for device classes that could never be produced by semiconductor methods, but also for entirely new categories. Furthermore, this digital platform is fully programmable in the way 3D printing is digital—but whereas 3D printing produces parts of a single material using a single process, the Matter Compiler™ technology platform is a multi-process, multi-material system: bits and raw materials go in, and complete, functional micromachines come out. The Atomic Machines team has also created an exciting first device—made possible only through the Matter Compiler™ technology platform—that we will be unveiling to the world soon.

Our offices are in Emeryville and Santa Clara, California.

About The Role:

This is a broad-responsibility, high-judgment technical leadership role managing the cyber security function and implementing the security and IT infrastructure of a rapidly growing startup company with engineering offices in Emeryville and Santa Clara. As a Cyber Security Engineer, you will lead and oversee the design, implementation, and maintenance of robust security solutions within platform, data, engineering, and office environments. The ideal candidate will possess strong leadership skills, deep technical expertise, and a strategic mindset to safeguard the organization's digital assets. This is a full-time, onsite position in either our Emeryville or Santa Clara office, with a need to work from the other office occasionally.

What You’ll Do:

• Build and manage cyber security at Atomic Machines.


• Develop and implement a strategic vision for securing Atomic Machines’ assets, including IP, financial records, personal data, and physical infrastructure, while designing scalable security architectures for both cloud-native and on-prem systems.


• Conduct security risk assessments, threat modeling, and incident response, identifying vulnerabilities, implementing mitigations, and managing escalations as needed.


• Lead IT risk and compliance initiatives, implementing cybersecurity best practices (e.g., ISO 27001, NIST), conducting internal audits, assessing vendor security certifications, and reviewing contractual security requirements.


• Integrate security into CI/CD pipelines and Git-driven Infrastructure-as-Code (IaC) workflows to support secure software releases.


• Manage security across networking and infrastructure across engineering teams, including physical access control, on-prem servers, cloud services, CI/CD pipelines, and embedded systems, ensuring scalability and reliability.


• Develop and deliver formal and informal security training sessions to educate the engineering organization on best practices, risk mitigation strategies, and secure development principles.


• Partner with and manage external agencies and vendors when additional security coverage and support are needed.

What You’ll Need:

• 8+ years of experience in Information Security, including at least 3 years in a management role.


• Experience managing all aspects of Information Security for a company, including Cyber Security, risk assessment, and incident response (startup experience preferred).


• Previous industry experience as a System Administrator, with hands-on knowledge of infrastructure management, user access controls, and system security best practices.


• Expertise in cloud security for modern AWS architectures, including IAM, security monitoring, logging, security configuration, and Infrastructure-as-Code (IaC).


• Proficiency in Infrastructure-as-Code (IaC) workflows (e.g., Terraform, Ansible, Git).


• Ability to enable secure cloud environments for production software releases using AWS services (e.g., EC2, Redshift, S3) and hybrid security solutions (e.g., Tailscale, WireGuard).


• Strong networking expertise across physical and virtual environments, including VLANs, firewalls, DNS, and secure access solutions.


• Experience balancing infrastructure automation, security, scalability, and developer productivity.


• Extensive hands-on experience with security tools and technologies, including SIEM, MDR, IDS/IPS, WAF, DLP, and vulnerability scanners.


• High-level proficiency in SAML/SSO solutions and using hardware MFA keys.


• Experience developing and presenting cybersecurity training programs for employees.


• Knowledge of IT processes, risk, and control frameworks, including CoBIT, ISO 27001, NIST, ITIL, and PCI.


• Familiarity with security regulatory requirements and standards (e.g., SOC 1/2/3, SANS Top 20, NIST 800-53).


• Security certifications preferred (e.g., CISSP, CCSP, CISM, CSSP).


• Ability to explain complex security issues to both technical and non-technical audiences.


• Proven ability to work in fast-paced environments with minimal guidance.


• Flexibility to work daily in the Emeryville office and commute to Santa Clara as needed.


• BS in Computer Science, Cybersecurity, Information Security, or a related field preferred.

The compensation for this position also includes equity and benefits.

Salary Range

$175,000 - $235,000 USD