Staff Security Engineer, Threat Detection / Incident Response
Remote — Germany or UK
Applications have closed
Cobalt
Cobalt is modernizing traditional pentesting. We leverage global talent and a SaaS platform to deliver a better pentest via Pentest as a Service (PtaaS).Who We Are
Cobalt.io is a fast-growing and globally distributed remote-first cybersecurity start-up with employees in the US and Germany. We connect global security talent with businesses by providing Pentesting as a Service via the Cobalt technology platform. We have Scandinavian roots, an American base and a global outlook. Our team is characterized by a fun, fast-paced and collaborative culture based on individual responsibility and ownership.
Description
Cobalt’s Information Security team is rapidly growing and seeks an experienced Staff Security Engineer with a strong security background, problem-solving abilities and an obsession in driving continuous improvement in a high performing organization.You should be able to adapt quickly to new situations and find creative ways to drive security initiatives through a mix of meticulous planning and influence across stakeholder teams. We’re looking for an individual who can build and maintain security tools, SIEM monitoring platforms and processes. A thirst for knowledge, a curious mind and a desire to stay abreast of security developments in a dynamic company is a must.
What You Would Do
- Lead initiatives for security operations, security monitoring and threat detection
- Manage incident response, threat hunting processes and workflows
- Use security tools and technology to detect and eradicate threats
- Drive continuous improvements for SOC and SOAR processes
- Evaluate complex business and technical requirements, communicating inherent risk and solutions to technical and non-technical business owners
You Must Have
- 3-5 years of experience in managing SIEM and Security Monitoring tools required
- Hands on SumoLogic SIEM/SOAR Tool or equivalent SIEM Tool experience
- Jira / Confluence for Ticket automation and documentation or equivalent ticket system
- Cloud Security knowledge and experience, GCP and Kubernetes preferred
- MITRE Kill Chain framework and threat hunting experience
- Demonstrated leadership abilities in driving operational excellence and best practices
- Ability to adapt to a hyper-growth pace and manage priorities
- Experience delivering technical information to a less-technical audience in an impactful way
- Experience providing mentorship and support to teams outside of InfoSec to enable them to get their job done while operating securely
Nice to Have
- Hands on Crowdstrike EDR endpoint security or equivalent tool experience preferred
- Hands on Cloudflare WAF and DDoS management or equivalent tool experience preferred
- Scripting skills using Python or equivalent scripting language
- Slack automation and ticketing workflows
- Knowledge and experience of SOC2, ISO compliance frameworks, controls management, audit readiness
Why You Should Join Us
- Opportunity to join and grow in a passionate, rapidly expanding industry operating at the forefront of Pentesting!
- Work directly with experienced senior leaders with ongoing mentorship opportunities
- Competitive compensation and attractive equity plan
- Flexible paid time off, remote working from anywhere in the US/Germany and travel policies
- Paid remote lunches
- Paid parental leave
- Stipends for wellness, work-from-home and learning & development
Tags: Automation Cloud Cloudflare Compliance DDoS EDR Endpoint security GCP Incident response Jira Kubernetes Monitoring Pentesting Python Scripting SIEM SOAR SOC 2 Threat detection
Perks/benefits: Career development Competitive pay Equity Flex hours Flex vacation Parental leave Startup environment Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs