Cyber Security Specialist

Cybersecurity / InfoSec Lead

Location: Remote US or Palo Alto, CA (hybrid)

About xLight

xLight is building the world's most powerful laser to revolutionize semiconductor lithography, metrology, and other critical applications. Our approach harnesses the power of free-electron lasers, building on accelerator technology in use globally at scientific user facilities. Extending this technology, we are developing industrial-grade light sources, engineered for continuous operation, to meet the sophisticated demands of next-generation patterning, metrology, and inspection applications. Join us in this new revolution.

Opportunity

We are seeking an information security expert who has experience helping startups meet IT requirements for satisfying government contractor requirements and corporate governance. The ideal candidate will have direct experience leading efforts to structure, deploy and manage data and information security protocols including: secure phones, laptops, and company servers (both local and cloud-based) – as well as working across enterprise software platforms, and directly with vendors, to achieve compliance for CMMC Level 2, experience with financial controls, and related protocols as required. This person will lead strategic initiatives, including the establishment of a CUI enclave, and support day-to-day operations to keep the company’s IT secure.

Key Responsibilities:

• Data Retention and Practices: Develop and implement data and information storage, retention, and access management. Develop strategies and build culture around data and information best practices.
• Risk Management: Identify, assess, and prioritize IT security risks. Deploy and maintain appropriate systems, build and enforcing a culture of connectivity, efficiency, and security.
• Security Compliance:

----->Support the selection and adoption of information security practices for financial controls as the company stands up ERP/MRP systems

----->Draft company policies and lead IT security best practices for the entire company including access controls for research, engineering, production, and financial data across company functions and information systems

----->Achieve and maintain compliance with federal cybersecurity approaches, including both internal company-wide efforts to shift from the practices of an early-stage startup to those of a CMMC Level 2 federal contractor and external efforts to manage vendors.

• IT Operations: As a startup, this role requires flexibility to support broader IT needs beyond security, including:

----->End-user technical support and help desk functions

----->Mobile Device Management (MDM) configuration and administration (e.g., Jamf, Intune, Kandji)

----->Identity and access management (e.g., Okta, Azure AD, JumpCloud)

----->High-Performance Computing (HPC) systems administration

----->Network engineering and infrastructure management

Qualifications:

• Proven experience (5 years), ideally supporting rapidly scaling hardware startups onboarding government contracts.
• Proven ability to partner with Engineering, HR, and Operations to embed security and compliance practices into daily workflows.
• Proven ability to deploy, configure, and maintain SIEM, vulnerability management, and endpoint protection platforms (e.g., Microsoft Defender, Sentinel, CrowdStrike).
• A track record of implementing and maintaining compliance with NIST SP 800-171.
• Direct involvement in achieving and sustaining CMMC Level 2 certification, including coordination with external assessors and audit-ready evidence preparation.
• Hands-on experience designing, deploying, and administering Controlled Unclassified Information (CUI) enclaves, including data migration —preferably in Microsoft GCC.
• Experience drafting and enforcing IT and cybersecurity policies (access control, acceptable use, incident response, media protection, etc.) aligned with NIST/CMMC frameworks.
• Hands-on experience with general IT operations including MDM platforms, identity providers, network infrastructure, and end-user support in a fast-paced environment.

The pay range for this position reflects the minimum and maximum target for new hire salaries at commencement of employment and is expected to be between USD$110,000-165,000/year. However, base pay offered may vary depending on multiple factors, including role, job-related knowledge, skills, relevant education and experience. The total compensation package for this position may also include other elements, including equity, and a full range of benefits. Details of all benefits will be provided if an employee receives an offer of employment.

xLight Inc. is an Equal Opportunity Employer. Our policy is clear: there shall be no discrimination on the basis of age, disability, sex, race, religion or belief, gender reassignment, marriage/civil partnership, pregnancy/maternity, or sexual orientation. We are an inclusive organization and actively promote equality of opportunity for all with the right mix of talent, skills and potential. We welcome all applications from a wide range of candidates. Selection for roles will be based on individual merit alone.

No Recruiters – Applicants must apply directly