Senior Staff Security Engineer
Sr. Staff Security Engineer, Remote U.S
Who We Are
Cobalt was founded on the belief of a fundamental human aspiration: the desire to live better and safer. It all started in 2013, when our founders realized that pentesting can be better. Today our diverse, fully remote team is committed to helping organizations of all sizes with seamless, effective and collaborative Offensive Security Testing that empower organizations to OPERATE FEARLESSLY and INNOVATE SECURELY.
Our customers can start a pentest in as little as 24 hours and integrate with advanced development cycles thanks to the powerful combination of our SaaS platform coupled with an exclusive community of testers known as the Cobalt Core. Accepting just 5% of applicants, the Cobalt Core boasts over 400 closely vetted and highly skilled testers who jointly conduct thousands of tests each year and are at the forefront of identifying and helping remediate risk across a dynamically changing attack surface.
Cobalt is an Equal Opportunity Employer and we strive to build a diverse and inclusive workforce at our company. At Cobalt we aspire to engage with diverse individuals, communities, and organizations in order to continue to nurture our unique rich diverse culture. Join our team, and be your true self to do your best work.
Description
Cobalt’s Information Security team is rapidly growing and seeks an experienced Staff Security Engineer with a strong security background, problem-solving abilities and an obsession in driving continuous improvement in a high performing organization.You should be able to adapt quickly to new situations and find creative ways to drive security initiatives through a mix of meticulous planning and influence across stakeholder teams. We’re looking for an individual who can build and maintain security tools, SIEM monitoring platforms and processes. A thirst for knowledge, a curious mind and a desire to stay abreast of security developments in a dynamic company is a must.
What You'll Do
- Lead initiatives for security operations center (SOC), security monitoring and threat detection
- Manage incident response, threat hunting processes and workflows
- Use security tools and technology to detect and eradicate threats
- Drive continuous improvements for SOC and SOAR processes
- Evaluate complex business and technical requirements, communicating inherent risk and solutions to technical and non-technical business owners
You Have
- 3-5 years of experience in managing SIEM and Security Monitoring tools required
- Hands on knowledge of Google SecOps SIEM/SOAR Tool or equivalent SIEM Tool experience
- Jira / Confluence for Ticket automation and documentation or equivalent ticket system
- Cloud Security knowledge and experience, GCP and Kubernetes preferred
- MITRE Kill Chain framework and threat hunting experience
- Demonstrated leadership abilities in driving operational excellence and best practices
- Ability to adapt to a hyper-growth pace and manage priorities
- Experience delivering technical information to a less-technical audience in an impactful way
- Experience providing mentorship and support to teams outside of InfoSec to enable them to get their job done while operating securely
- Experience with Parameter 81 VPN
Bonus If You Have
- Hands on Crowdstrike EDR endpoint security or equivalent tool experience preferred
- Hands on Cloudflare WAF and DDoS management or equivalent tool experience preferred
- Scripting skills using Python or equivalent scripting language
- Slack automation and ticketing workflows
- Knowledge and experience of SOC2, ISO compliance frameworks, controls management, audit readiness
Why You Should Join Us
- Grow in a passionate, rapidly expanding industry operating at the forefront of the Pentesting industry
- Work directly with experienced senior leaders with ongoing mentorship opportunities
- Earn competitive compensation and an attractive equity plan
- Save for the future with a 401(k) program (US) or pension (EU)
- Benefit from medical, dental, vision and life insurance (US) or statutory healthcare (EU)
- Leverage stipends for:
- Wellness
- Work-from-home equipment & wifi
- Learning & development
- Make the most of our flexible, generous paid time off and paid parental leave
Pay Range Disclosure (For US openings only)
Cobalt is committed to fair and equitable compensation practices. The salary range for this role is ($150,000 - $200,000) per year + equity + benefits. A candidate’s salary is determined by various factors including, but not limited to, relevant work experience, skills, and certifications. The salary range may differ in other states and may be impacted by proximity to major metropolitan cities.
Cobalt (the "Company") is an equal opportunity employer, and we want the best available persons for every job. The Company makes employment decisions only based on merit. It is the Company's policy to prohibit discrimination in any employment opportunity (including but not limited to recruitment, employment, promotion, salary increases, benefits, termination and all other terms and conditions of employment) based on race, color, sex, sexual orientation, gender, gender identity, gender expression, genetic information, pregnancy, religious creed, national origin, ancestry, age, physical/mental disability, medical condition, marital/domestic partner status, military and veteran status, height, weight or any other such characteristic protected by federal, state or local law. The Company is committed to complying with all applicable laws and providing equal employment opportunities. This commitment applies to all persons involved in the operations of the Company regardless of where the employee is located and prohibits unlawful discrimination by any employee of the Company.
Cobalt is an E-Verify employer. E-Verify is an Internet-based system operated by the Department of Homeland Security (DHS) in partnership with the Social Security Administration (SSA). It allows participating employers to electronically verify the employment eligibility of their newly hired employees in the United States.
Apply for this job
*
indicates a required field