Back to all jobs

Staff Security Engineer, Threat Detection / Incident Response


Jul 12

Who We Are is a fast-growing and globally distributed remote-first cybersecurity start-up with employees in the US and Germany. We connect global security talent with businesses by providing Pentesting as a Service via the Cobalt technology platform. We have Scandinavian roots, an American base and a global outlook. Our team is characterized by a fun, fast-paced and collaborative culture based on individual responsibility and ownership.


Cobalt’s Information Security team is rapidly growing and seeks an experienced Staff Security Engineer with a strong security background, problem-solving abilities and an obsession in driving continuous improvement in a high performing organization.You should be able to adapt quickly to new situations and find creative ways to drive security initiatives through a mix of meticulous planning and influence across stakeholder teams. We’re looking for an individual who can build and maintain security tools, SIEM monitoring platforms and processes. A thirst for knowledge, a curious mind and a desire to stay abreast of security developments in a dynamic company is a must.

What You Would Do

  • Lead initiatives for security operations, security monitoring and threat detection
  • Manage incident response, threat hunting processes and workflows
  • Use security tools and technology to detect and eradicate threats
  • Drive continuous improvements for SOC and SOAR processes
  • Evaluate complex business and technical requirements, communicating inherent risk and solutions to technical and non-technical business owners

You Must Have

  • 3-5 years of experience in managing SIEM and Security Monitoring tools required
  • Hands on SumoLogic SIEM/SOAR Tool or equivalent SIEM Tool experience
  • Jira / Confluence for Ticket automation and documentation or equivalent ticket system
  • Cloud Security knowledge and experience, GCP and Kubernetes preferred
  • MITRE Kill Chain framework and threat hunting experience
  • Demonstrated leadership abilities in driving operational excellence and best practices
  • Ability to adapt to a hyper-growth pace and manage priorities
  • Experience delivering technical information to a less-technical audience in an impactful way
  • Experience providing mentorship and support to teams outside of InfoSec to enable them to get their job done while operating securely

Nice to Have

  • Hands on Crowdstrike EDR endpoint security or equivalent tool experience preferred
  • Hands on Cloudflare WAF and DDoS management or equivalent tool experience preferred
  • Scripting skills using Python or equivalent scripting language
  • Slack automation and ticketing workflows
  • Knowledge and experience of SOC2, ISO compliance frameworks, controls management, audit readiness

Why You Should Join Us

  • Opportunity to join and grow in a passionate, rapidly expanding industry operating at the forefront of Pentesting!
  • Work directly with experienced senior leaders with ongoing mentorship opportunities 
  • Competitive compensation and attractive equity plan
  • Flexible paid time off, remote working from anywhere in the US/Germany and travel policies
  • Paid remote lunches
  • Paid parental leave
  • Stipends for wellness, work-from-home and learning & development