Senior Staff Security Engineer

Summary

Join Cobalt's Enterprise team as a Sr. Staff Security Engineer and contribute to building successful security testing programs for our clients. This remote U.S. based role involves leading initiatives for security operations centers (SOC), managing incident response, and utilizing security tools to detect and eradicate threats. You will drive continuous improvements for SOC and SOAR processes, evaluate complex business and technical requirements, and communicate risks and solutions to various stakeholders. The position requires 3-5 years of experience in managing SIEM and Security Monitoring tools, along with specific technical skills and experience. Cobalt offers competitive compensation, equity, and a comprehensive benefits package, including health insurance, retirement plan, paid time off, and stipends for wellness, work-from-home equipment, and learning & development.

Requirements

• 3-5 years of experience in managing SIEM and Security Monitoring tools
• Hands on knowledge of Google SecOps SIEM/SOAR Tool or equivalent SIEM Tool experience
• Jira / Confluence for Ticket automation and documentation or equivalent ticket system
• Cloud Security knowledge and experience, GCP and Kubernetes preferred
• MITRE Kill Chain framework and threat hunting experience
• Demonstrated leadership abilities in driving operational excellence and best practices
• Ability to adapt to a hyper-growth pace and manage priorities
• Experience delivering technical information to a less-technical audience in an impactful way
• Experience providing mentorship and support to teams outside of InfoSec to enable them to get their job done while operating securely
• Experience with Parameter 81 VPN

Responsibilities

• Lead initiatives for security operations center (SOC), security monitoring and threat detection
• Manage incident response, threat hunting processes and workflows
• Use security tools and technology to detect and eradicate threats
• Drive continuous improvements for SOC and SOAR processes
• Evaluate complex business and technical requirements, communicating inherent risk and solutions to technical and non-technical business owners

Preferred Qualifications

• Hands on Crowdstrike EDR endpoint security or equivalent tool experience
• Hands on Cloudflare WAF and DDoS management or equivalent tool experience
• Scripting skills using Python or equivalent scripting language
• Slack automation and ticketing workflows
• Knowledge and experience of SOC2, ISO compliance frameworks, controls management, audit readiness

Benefits

• Competitive compensation and an attractive equity plan
• 401(k) program (US) or pension (EU)
• Medical, dental, vision and life insurance (US) or statutory healthcare (EU)
• Wellness stipends
• Work-from-home equipment & wifi stipends
• Learning & development stipends
• Flexible, generous paid time off and paid parental leave