Information Systems Security Manager (ISSM)
Nuclear industryUS only
About this role
Oklo, a nuclear energy technology company, seeks an Information Systems Security Manager (ISSM) to build and operate the company's information security program. You'll own day-to-day security posture, ensure compliance with NIST 800-53/171 and DOE export controls, and bridge technical execution with regulatory rigor across a rapidly evolving technology environment. This role is critical for supporting Oklo's advanced reactor development and regulatory obligations.
Responsibilities
- —Serve as primary authority for security posture of Oklo's information systems
- —Implement, maintain, and continuously improve security controls aligned with NIST 800-53 and NIST 800-171
- —Embed security requirements into system design, configuration, and operations across on-premises and cloud environments
- —Implement, assess, and remediate system configurations against DISA STIGs and CIS Benchmarks
- —Partner with IT and engineering teams to ensure secure architectures, access controls, encryption, and monitoring
- —Oversee system-level security monitoring, logging, and alerting to detect and respond to security events
- —Lead incident response activities, including investigation, containment, remediation, and post-incident reviews
- —Coordinate vulnerability management activities, including scanning, remediation tracking, and validation
- —Ensure timely application of security patches and configuration hardening across systems and platforms
- —Own execution of security compliance activities related to SOX, NIST, and CMMC
- —Build, create, and maintain System Security Plans (SSPs), policies, procedures, and supporting security artifacts
- —Conduct system risk assessments and track risks through mitigation, acceptance, or remediation
- —Support internal and external audits and assessments, ensuring evidence readiness and corrective action tracking
- —Enforce controls related to export-controlled data (DOE ECI), including access restrictions, segmentation, and secure data handling
- —Develop, maintain, and enforce information security policies, standards, and procedures
- —Ensure security documentation is accurate, current, and aligned with operational reality
- —Provide guidance to system owners and users regarding security responsibilities and expectations
- —Act as trusted advisor to Senior Manager of IT and Cyber on system security risks, gaps, and improvement opportunities
- —Communicate security risks, decisions, and requirements effectively to technical and non-technical stakeholders
Qualifications
- —6+ years of experience in information security or cybersecurity, with 3+ years in a system security, security engineering, or compliance-focused role
- —Proven experience applying, remediating, and maintaining compliance with DISA STIGs and CIS Benchmarks
- —Operational experience securing and maintaining systems across Linux, macOS, and Windows environments, with Linux as primary OS
- —Demonstrated experience implementing or operating security controls under NIST frameworks
- —Experience using automated or semi-automated compliance tooling to assess and remediate STIG or CIS controls (e.g., SCAP, OpenSCAP, compliance-as-code)
- —Prior experience supporting federally regulated environments, including DOE, NRC, DoD, or similar regulatory bodies
- —Active DoD 8570 / DoD 8140 baseline certification for Information Assurance / Cybersecurity roles: CISSP, CISM, CASP+, GSLC, or Security+
- —Must be considered a U.S. Person under 8 U.S.C. 1324b(a)(3)
Desired
- —Strong working knowledge of NIST 800-53 and NIST 800-171
- —Hands-on experience remediating systems using DISA STIGs and CIS Benchmarks, including validation and ongoing compliance monitoring
- —Strong proficiency in system hardening, security configuration, and troubleshooting across operating systems
- —Experience supporting regulated environments with federal compliance frameworks
- —Proven experience leading incident response and vulnerability remediation efforts
- —Excellent written and verbal communication skills
Apply on Oklo →
Opens Oklo's careers page
Job details
FieldAdministrative
LocationSanta Clara, CA or Remote
IndustryNuclear energy
PostedJun 2026
About the company
Oklo →An advanced fission company developing the Aurora powerhouse, a fast-reactor microreactor designed to deliver clean baseload power.
Careers page ↗Information Systems Security Manager (ISSM)
Oklo