X-energy LLC conducts a thorough recruiting process and will never issue offers without interview to discuss qualifications and responsibilities. All applications will be submitted via our company career page, www.x-energy.com/careers/. We will never ask you to provide payment information as part of the recruiting process. If anyone claiming to represent X-energy directs you in a manner otherwise, please contact us at www.x-energy.com/contact-us.
Job Description
This role is responsible for developing, implementing, and maintaining key cybersecurity technologies across both X-energy corporate and TRISO fuel facility operations, including Endpoint Detection and Response (EDR), Network Detection and Response (NDR), Security Information and Event Management (SIEM), and Security Orchestration, Automation, and Response (SOAR). The position serves as a critical bridge between corporate IT infrastructure and the TRISO fuel facility, conducting software evaluations, performing architecture reviews, and identifying and addressing cybersecurity gaps between the two environments.In addition to the tooling and operations duties, this role leads structured threat modeling and cyber evaluation activities. The analyst applies established methodologies such as STRIDE to identify, categorize, and prioritize threats across systems, data flows, and trust boundaries spanning the corporate and TRISO fuel facility environments. This includes facilitating threat modeling sessions during architecture reviews and software evaluations, translating identified threats into actionable mitigations, and reassessing threat models as architectures evolve to ensure security gaps between environments are documented, tracked, and remediated.
Responsibilities include conducting proactive threat hunts, monitoring endpoint and network data, collecting and analyzing digital forensic artifacts including malware, coordinating with the Xe infrastructure team, and meeting with technology vendors to evaluate solutions that support enterprise-wide security objectives.
Job Profile Tasks/Responsibilities
- EDR, NDR, SIEM, and SOAR Implementation:
- Design, implement, and maintain EDR, NDR, SIEM, and SOAR systems.
- Configure and optimize security tools to improve detection capabilities and response times.
- Threat Hunting:
- Conduct proactive threat hunting activities to identify potential vulnerabilities and threats.
- Utilize advanced analytical techniques to uncover hidden threats within the environment.
- Monitoring and Analysis:
- Monitor endpoint and network data for anomalies and suspicious activities.
- Analyze security alerts and incidents to determine the nature and scope of threats.
- Digital Forensics:
- Collect and analyze digital forensic artifacts from compromised systems.
- Investigate malware and conduct reverse engineering to understand threat behavior.
- Collaboration and Reporting:
- Collaborate with IT and security teams to improve overall security posture.
- Prepare detailed reports on security incidents, findings, and recommendations for management.
- Maintain professional demeanor and behavior at all times in all forms of communication.
- Perform other duties as assigned by manager.
- Lead the execution of the core tasks and responsibilities, listed in the Job Profile Task/Responsibilities section of this document, without close supervision and some latitude for independent judgment.
- Lead the deployment of security technologies and conduct in-depth analysis of threats.
- Provide feedback and guidance to more junior team members with the execution of the core tasks and responsibilities listed in the Job Profile Task/Responsibilities section of this document.
- Shares knowledge related to industry best practices and standards with others across the team.
Job Profile Minimum Qualifications
- High school diploma required.
- Basic understanding of EDR, NDR, SIEM, and SOAR technologies.
- Ability to obtain and maintain a SECRET clearance or higher (U.S. citizenship required).
- Typically, ten years of experience in a cybersecurity, network security, or related role required.
- Certified Information Systems Security Professional (CISSP).
- Direct knowledge and experience managing cybersecurity tools such as NDR, EDR, and SIEM.
- Experience with Splunk.
- Experience with Identity & Access Management technologies including Federation, Multi-Factor Authentication (MFA), and Public Key Infrastructure (PKI).
- Experience with cloud technologies to include AWS, Azure, Docker, Kubernetes, and DevSecOps.
- Experience with integration of cybersecurity tools to support an Enterprise level Cybersecurity program.
- Experience leveraging Artificial Intelligence (AI), Machine Learning (ML), and Orchestration to secure the environment.
Job Profile Preferred Qualifications
- Experience working in the nuclear industry or familiarity with nuclear facility operations and regulatory requirements.
- Demonstrated networking background with hands-on experience in network architecture, protocols, and security.
- Experience conducting software evaluations and technology assessments to support organizational security objectives.
- Exposure to DevSecOps practices, tools, and methodologies.
- Experience with cloud platforms, specifically Amazon Web Services (AWS) and Microsoft Azure.
- Hands-on experience with threat modeling methodologies (STRIDE or similar frameworks) and a repeatable cyber evaluation process.
- Experience bridging cybersecurity programs across multiple operational environments (e.g., corporate IT and operational technology/facility systems).
- Proven ability to coordinate with cross-functional infrastructure teams and engage with external vendors.
- Strong written and verbal communication skills with the ability to prepare technical reports and recommendations for both technical and non-technical audiences.
Location: 530 Gaither Road, Rockville, MD
Work Site Expectations: Hybrid & Remote Eligible, Travel % increased if remote
Travel Expectations: Up to 10% as needed for project assignment, 25% if remote.
Hours: Standard office hours are 8:00am-5:00pm ET, Monday-Friday
Compensation
As required by Maryland and other applicable state law, X Energy, LLC (X-energy) lists the expected compensation range for a publicly advertised job opportunity based upon the job requirements (e.g. education/training, experience, skill sets, etc.). Individual candidates who meet the job requirements for the posted position will be offered a salary within this range based on their respective levels of education/training, experience, and other qualifications unique to them. Salary ranges may vary based on the specific office location and region referenced in the posting to take into consideration differences in cost of living and may not be reflective of all regions. Please note that compensation ranges listed for US job postings reflect base salary only and do not include benefits or other incentives.
Offers within the posted salary range are commensurate with the individual’s qualifications for the position, along with a view on internal equity, market data, and room for growth. The salary range for this position is:
$180,000- $205,000Position Job Classification
Full time - ExemptBenefits
X Energy, LLC offers a robust benefits package that includes a 401K plan with an employer match, Medical/Dental /Vision Insurance, Life and Disability Insurance, Paid Time Off, and a Tuition Reimbursement/Professional Development policy that supports the continuing education of our employees.
An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
X Energy, LLC participates in E-Verify. Please visit the links below for more information about E-Verify and the protection of your Right to Work.
Right To Work Link: If you have the right to work, don't let anyone take it away (e-verify.gov)
E-Verify Participation Link: E-Verify Participation Poster English and Spanish