Senior Security Engineer

About Cohere

Our mission at Cohere is to scale intelligence to serve humanity by training and deploying frontier models for developers and enterprises. We build AI systems to power magical experiences like content generation, semantic search, RAG, and agents, believing our work is instrumental to the widespread adoption of AI. We are a team of passionate researchers, engineers, and designers, committed to craft and diverse perspectives, working hard to deliver value to our customers.

As a Senior Security Engineer You Will

• Serve as trusted advisor to team’s leadership and partner teams by clearly articulating business risks associated with security issues.
• Lead security operation functions – including vulnerability management, SAST, DAST, detection engineering, and incident response – in CI/CD and cloud-native production environments.
• Integrate security into our applications throughout the software development lifecycle.
• Collaborate with product and development teams, driving the success of larger projects to ensure that software is built and deployed securely without compromising agility and speed.
• Drive and support bug bounty program, application security reviews and threat modeling, including code review and dynamic testing.
• Assess and integrate security tools to automate and scale security processes, i.e: evaluate open-source vs vendor solutions.
• Gather and analyze security metrics to address security issues with cross-team dependencies.
• Be a problem solver who is empathetic to developer concerns and will employ constructive and flexible approach to building innovative solutions.

You May Be a Good Fit If

• You have 5+ years previous experience in Application/Product Security or Security Operations with a strong focus on security tool onboarding and optimization.
• You have an understanding of vulnerability management, network security, cloud security concepts, and industry best practices across many fields of security.
• You are comfortable with ambiguity and are able to make informed decisions with little data.
• You employ a flexible and constructive approach when solving problems.
• You are able to make trade-offs between build vs. buy decisions - help build solutions and able to review what tools are available.
• You understand secure engineering best practices, can articulate problem statements and propose solutions to both technically savvy and non-technical audiences.
• You have a deep technical understanding of common security vulnerabilities and risks, as well as countermeasures and compensating controls.
• You’re a hands-on security engineer interested in automating controls.

Perks at Cohere

• 🤝 An open and inclusive culture and work environment
• 🧑‍💻 Work closely with a team on the cutting edge of AI research
• 🍽 Weekly lunch stipend, in-office lunches & snacks
• 🦷 Full health and dental benefits, including a separate budget to take care of your mental health
• 🐣 100% Parental Leave top-up for up to 6 months
• 🎨 Personal enrichment benefits towards arts and culture, fitness and well-being, quality time, and workspace improvement
• 🏙 Remote-flexible, offices in Toronto, New York, San Francisco, London and Paris, as well as a co-working stipend
• ✈️ 6 weeks of vacation (30 working days!)

Key skills/competency

• Vulnerability Management
• Application Security
• Cloud Security
• Incident Response
• Detection Engineering
• Threat Modeling
• CI/CD Security
• Security Automation
• Secure SDLC
• SAST/DAST