Security Researcher - Pentest Operations
Remote — US or Germany
Applications have closed
Cobalt
Cobalt is modernizing traditional pentesting. We leverage global talent and a SaaS platform to deliver a better pentest via Pentest as a Service (PtaaS).Who We Are
Cobalt.io is a fast-growing and globally distributed remote-first cybersecurity start-up with employees in the US and Germany. We connect global security talent with businesses by providing Pentesting as a Service via the Cobalt technology platform. We have Scandinavian roots, an American base and a global outlook. Our team is characterized by a fun, fast-paced and collaborative culture based on individual responsibility and ownership.
Description
Cobalt’s Pentest Operations team is transforming with a focus on quality and customer success. As a Security Researcher, Pentest Operations report directly to the Security Research Manager and work collaboratively on different research projects aimed at improving our pentest approach and vulnerability understanding. You will collaborate with product, marketing, and CORE leaders to define and execute strategy and guide the research team to success.
The ideal candidate is passionate about offensive security and will help enhance and expand the current knowledge, tooling and pentesting approach to ensure it is always up to date and evolving. Additionally your work will directly influence our product with potential new features, offerings or improvements. You are leveraging data and research results to drive efficiency within the operations team.
What You Would Do
- Work closely with the Research Manager and other stakeholders to define and execute research activities in the specialized spaces of security that Cobalt Labs operates in by both contributing and managing research efforts in the team.
- Collaborate with adjacent teams and groups to both define security direction as well as execute together cross-functional missions
- Present research work with the team into the market both online and at industry events
- Research solutions to challenging cybersecurity problems and product innovations
- Analyze systems or architectures to identify and evaluate security strengths and weaknesses
- Model adversary goals, behaviors, and attacks
- Conduct research programs and interface with customers
You Must Have
- 5+ years of experience in a technical security role or freelance, with a focus on applied information security (degrees and certifications are not required)
- Proven ability to manage high volume of activity effectively in an agile environment – you love to get stuff done at speed
- You are open to and suggest different perspectives to come up with great solutions
- Strong communication skills and team-driven focus is essential as this team member will be expected to act independently, as well as collaboratively, peers, partners, and managers to ensure customer satisfaction and team goal achievement
- Have a solid foundation of research work, qualification, prioritization and demonstration of actionable outcomes (write-ups, white papers and/or talks at industry conferences)
- Must be comfortable with scripting and coding languages (e.g. Python) to develop prototypes and/or minimum viable products (MVPs) and solve comprehensive technical challenges
- Ability to work in a fast paced and distributed environment
- Drive and passion, no one needs to push you to excel; it’s just who you are
- Eagerness to learn, adapt, and perfect your work; you collaborate and innovate
- A strong desire to help and serve internal customers, we win together
Why You Should Join Us
- Opportunity to join and grow in a passionate, rapidly expanding industry
- Competitive compensation & equity plan
- Flexible time-off, remote working from anywhere in the US/Germany and travel policies
- Paid parental leave
- Ongoing mentorship opportunities & management coaching
- Stipends for wellness work-from-home and learning & development
- Paid lunches 3x per week
- 401(k) to help you save for the future (US only)
- Medical, dental, vision, and life insurance policies (US only)
Tags: Agile Offensive security Pentesting Python Scripting Strategy
Perks/benefits: Career development Competitive pay Conferences Equity Flex hours Flex vacation Health care Medical leave Parental leave Startup environment Team events
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Manager Pentest H/F jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Engineer jobs
- Open Senior Cyber Security Specialist jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs