Senior Security Engineer

Who We Are

Cobalt.io is a fast-growing and globally distributed remote-first cybersecurity start-up with employees in the US and Germany. We connect global security talent with businesses by providing Pentesting as a Service via the Cobalt technology platform. We have Scandinavian roots, an American base and a global outlook. Our team is characterized by a fun, fast-paced and collaborative culture based on individual responsibility and ownership.

Description

Cobalt’s Information Security team is rapidly growing and seeks an experienced Senior Security Engineer to help us deliver and maintain security solutions that further strengthen our cloud platform environment as well as create automated tooling that limits the amount of manual workflow that exists across our security programs The position is a combination of teacher, influencer and technical hands-on. This person should be able to adapt quickly and find creative ways to implement security in a fast-paced environment. The position will most certainly be involved in finding innovative ways to improve Cobalt’s security posture through technology but may also be called upon to drive engineering efforts for other programmatic areas like data protection, security logging, Cobalt platform’s security architecture and incident response. A thirst for knowledge, a curious mind and a desire to stay abreast of security developments in a dynamic security company is a must.

What You Would Do

• Work in a remote friendly security team supporting others from Berlin and the US
• Build and maintain highly available security systems and solutions used to secure Cobalt’s cloud platform in Google Cloud Platform (GCP)
• Work closely with software and security engineers to identify work that improves the stability, security and self-service nature of our cloud infrastructure shepherding those ideas and projects from inception to completion
• Remain proactive in seeking out ways to help our security team minimize pain points within our infrastructure through code and tooling
• Drive the technical roadmap and definition and help the team prioritize and plan
• Work closely with engineering and security teams to identify and eliminate technical debt
• Assist Cobalt InfoSec Team on improving incident response tools and processes
• Managing SIEM and SOAR infrastructure and integrations

You Must Have

• 5+ years of experience in security with a focus on automation, infrastructure security 
• 3+ years of experience working with and supporting a public cloud platform in a high availability environment
• Software engineering background with extensive experience creating tools to automate manual tasks
• Proven experience coding or writing script automation in at least one language (Go, Python, Ruby, Bash, etc.) on Linux-based systems
• Experience supporting best-in-breed cloud, network and endpoint security solutions
• Direct experience in containers (Docker), orchestration (Kubernetes), infrastructure as code (Terraform) and cloud architectures (GCP)
• Experience taking a business requirement; identifying solutions, deploying and then operationalizing that solution for continuous improvement
• Knowledge of information security principles, networks, Linux, web applications and familiarity with malicious code and common techniques used by hackers
• High comfort level with a remote-first, global company that spans from Berlin to San Francisco

Why You Should Join Us

• Opportunity to join and grow in a passionate, rapidly expanding industry operating at the forefront of Pentesting!
• Work directly with experienced senior leaders with ongoing mentorship opportunities 
• Competitive compensation and attractive equity plan
• Flexible paid time off, remote working from anywhere in the US/Germany and travel policies
• Paid remote lunches
• Stipends for wellness, work-from-home and learning & development