Key skills
Cloud SecurityInfrastructure as CodeSecurity ToolingIAM / RBAC ManagementThreat Detection & ResponseKubernetesCI/CD SystemsGolangPythonAIAWSAzureGCPTerraformIAMGitCI/CDLeadership
About this role
Cohere is a company dedicated to scaling intelligence to serve humanity through AI systems. As a Senior Security Operations Engineer, you will be responsible for enhancing security in cloud environments, managing IAM/RBAC, and responding to security incidents while collaborating with various teams to ensure secure infrastructure design.
Responsibilities:
- Serve as trusted advisor to team’s leadership and partner teams by clearly articulating business risks associated with security issues
- Harden our cloud-native environments (AWS, OCI, GCP) by introducing secure by default designs and features into network, tooling, and processes
- Own and drive resolutions for enabling engineers to design, build, and use infrastructure securely at scale by deploying secure architectures using infrastructure-as-code and reusable code libraries
- Manage IAM / RBAC for cloud infrastructure, and partner with IT on streamling authentication/authorization to ensure unified access control across the board
- Deploy and operationalize some of the security services and tools (eg: SIEM, SOAR, domain monitoring, endpoint tooling, cloud security tooling)
- Respond to security incidents and harden environments post-incidents
- Support control monitoring and remediation for compliance initiatives
- Gather and analyze security metrics to address security issues with cross-team dependencies
- Be a problem solver who is empathetic to developer concerns and will employ constructive and flexible approach to building innovative solutions
Requirements:
- 5+ years previous experience in SecOps, DevSecOps, Cloud Security, Threat Detection & Response or software development with a strong focus on security tool onboarding and optimization
- You're a hands-on security engineer interested in automating controls
- You have experience in managing cloud platforms (GCP, AWS, Azure, OCI) and Kubernetes environments
- Familiarity with CI/CD systems and SecOps workflows (Git, Terraform) in cloud environments (GCP, AWS, Azure, OCI)
- You have experience with one or more of: infrastructure automation, network segmentation, system hardening, container and cloud security concepts, and security observability
- You have experience with multiple languages such as Golang and/or Python
- You are comfortable with ambiguity and are able to make informed decisions with little data
- You employ a flexible and constructive approach when solving problems
- You are able to make trade-offs between build vs. buy decisions - help build solutions and able to review what tools are available
- You understand secure engineering best practices, can articulate problem statements and propose solutions to both technically savvy and non-technical audiences