Application Guide

How to Apply for Cybersecurity & Compliance Administrator

at Xcimer Energy

🏢 About Xcimer Energy

Xcimer Energy is at the forefront of developing fusion energy technology to deliver abundant, carbon-free power, directly combating climate change. As a remote-first company with a mission-driven culture, it offers a unique opportunity to contribute to a transformative energy solution while working flexibly from anywhere in the US.

About This Role

As the Cybersecurity & Compliance Administrator, you will be the primary owner of Xcimer's security and compliance posture, ensuring the protection of sensitive data and systems critical to fusion energy R&D. Your work will directly enable the company to meet CMMC 2.0 Level 2 requirements and maintain a robust security framework, making you a key enabler of the company's mission.

💡 A Day in the Life

A typical day might start with reviewing security alerts from Microsoft Defender and investigating any anomalies, then meeting with the engineering team to discuss secure data transfer protocols for a new experiment. In the afternoon, you might update compliance documentation for CMMC audits, followed by configuring a new data loss prevention policy in Purview to protect intellectual property.

🚀 Application Tools

Generate Cover Letter

AI-powered, tailored for Xcimer Energy

Interview Prep

Practice questions for this role

🎯 Who Xcimer Energy Is Looking For

  • A seasoned security professional with 7+ years of hands-on experience in security administration, compliance operations, or IT roles with direct security responsibility, preferably in regulated or high-risk environments.
  • Expert in Microsoft 365 security and compliance services (Purview, Defender), with a proven track record of administering these tools in an enterprise setting to enforce data governance and threat protection.
  • Experienced in leading incident response, conducting thorough investigations, and documenting findings, with a strong understanding of security frameworks like CMMC, NIST, or ISO 27001.
  • Comfortable working in a remote, fast-paced startup environment, with the ability to balance strategic improvements with day-to-day operational tasks, including supporting on-prem and air-gapped systems.

📝 Tips for Applying to Xcimer Energy

1

Highlight your specific experience with Microsoft Purview and Defender, including any certifications or training, as these are central to the role.

2

Quantify your impact in previous roles, e.g., 'Reduced incident response time by 30%' or 'Achieved CMMC Level 2 compliance for a 500-user organization.'

3

Tailor your resume to emphasize hands-on security operations and compliance tasks, not just policy or management roles.

4

Mention any experience with air-gapped or on-prem security, secure data transfer, and monitoring architectures, as these are unique to Xcimer's environment.

5

Include a brief note in your cover letter about your passion for clean energy or climate tech to show alignment with the company's mission.

✉️ What to Emphasize in Your Cover Letter

['Your direct experience with Microsoft Purview and Defender in an enterprise setting, with specific examples of how you used them to improve security and compliance.', 'Your background in incident response and compliance (especially CMMC or similar frameworks), demonstrating your ability to lead investigations and maintain security plans.', 'Your comfort with remote work and ability to manage security operations independently in a startup environment.', 'Your motivation for joining Xcimer, specifically your interest in contributing to fusion energy and climate change solutions.']

Generate Cover Letter →

🔍 Research Before Applying

To stand out, make sure you've researched:

  • Understand the basics of fusion energy and Xcimer's specific technology approach to show genuine interest during interviews.
  • Review the CMMC 2.0 Level 2 requirements and how they apply to defense contractors and research organizations.
  • Learn about Microsoft Purview and Defender features, especially Data Loss Prevention, Information Protection, and Threat Analytics.
  • Familiarize yourself with Xcimer's company culture and values by reading their website, blog, or recent news articles.

💬 Prepare for These Interview Topics

Based on this role, you may be asked about:

1 How would you approach implementing CMMC 2.0 Level 2 compliance from scratch at a small, remote company?
2 Describe a time you led an incident response. What steps did you take, and how did you document the process?
3 How would you configure Microsoft Purview to protect sensitive data in a company with both cloud and air-gapped systems?
4 What is your experience with secure data transfer between classified and unclassified networks?
5 How do you prioritize security improvements when resources are limited in a startup?
Practice Interview Questions →

⚠️ Common Mistakes to Avoid

  • Applying without customizing your resume to highlight security operations and compliance experience, especially with Microsoft tools.
  • Overlooking the importance of air-gapped and on-prem security; failing to mention relevant experience or willingness to learn.
  • Not demonstrating a clear understanding of CMMC or the regulatory landscape for defense-related work.

📅 Application Timeline

This position is open until filled. However, we recommend applying as soon as possible as roles at mission-driven organizations tend to fill quickly.

Typical hiring timeline:

1

Application Review

1-2 weeks

2

Initial Screening

Phone call or written assessment

3

Interviews

1-2 rounds, usually virtual

Offer

Congratulations!

Ready to Apply?

Good luck with your application to Xcimer Energy!

← Back to Job Listing Apply Now →