Job Oportunity | SENIOR SECURITY OPERATIONS ENGINEER at Cognite

Senior Security Operations Engineer

Oslo

Product – Security /

Hybrid

About Cognite

Embark on a transformative journey with Cognite, a global SaaS forerunner in leveraging data to unravel complex business challenges through our cutting-edge Cognite Data Fusion (CDF) platform. We were awarded the & . In the realm of industrial digitalization, we stand at the forefront, reshaping the future of Oil & Gas, Manufacturing and Energy sectors. Join us in this venture where data meets ingenuity, and together, we forge the path to a smarter, more connected industrial future.

Learn more about Cognite here

Our values

Impact: Cogniters strive to make an impact in all that they do. We are result-oriented, always asking ourselves.

Ownership: Cogniters embrace a culture of ownership. We go beyond our comfort zones to contribute to the greater good, fostering inclusivity and sharing responsibilities for challenges and success.

Relentless: Cogniters are relentless in their pursuit of innovation. We are determined and deliverable (never ruthless or reckless), facing challenges head-on and viewing setbacks as opportunities for growth.

About the role and the team

The Security Operations team’s mission: “Through detection, enable teams and individuals to respond and recover. With analysis, improve the organization's ability to identify and protect”.

As a Security Engineer in Cognite Security Operations, you are at the center of security events. In order to achieve our mission, we are integrated in the business. This applies from the input the team receives to how the output is delivered. We base and prioritize our work on business needs, and in return we provide actionable insights and where possible concrete actions.

In the context of NIST Cybersecurity Framework (CSF) the Cognite Security Operations core activities reside in Detect and Protect. However, in order to ensure velocity and continuous improvement we have to avoid having a “throw-over-the-fence” culture - this is deeply embedded in Cognite’s culture and reflected in our values.

In order to achieve the above, orchestration and automation is key. The Security Operations team should always seek to offload work to software and machines. In all our work, we should have a mindset of avoiding doing the same thing twice.

You will have the opportunity to shape and influence how we work as a team and as an organization, e.g. by presenting your proposals in an architecture forum, receiving feedback from product managers, developers, engineers and architects.

As a team we support the development of junior staff members to gain greater perspective on IT and OT security, and customer expectations and usage patterns.

Role and responsibilities

As a Senior Security Operations Engineer in Cognite Security Operations, you are at the center of security events. To achieve our mission, we are integrated in the business. This applies to the input the team receives and how the output is delivered. We base and prioritize our work on business needs, and in return, we provide actionable insights and, where possible, concrete actions.

Organizational preparedness

Threat and vulnerability discovery: Continuous work to improve Cognite’s risk posture by proactively hunting for threats (internal and external) and detecting vulnerabilities across all environments.
Threat modeling: Take part in threat modeling where teams identify threats and corresponding mitigations, as facilitator and/or a subject-matter-expert.
Culture and awareness: Contribute to Cognite’s security culture and awareness program by identifying areas of improvement using operational insight, as well as being an active participant in development and delivery of training.

Real-time posture

Security Operations Rotation: The team has a shield rotation where the team members act as the initial point of contact for signals we receive.
Triage signals (events, alerts and requests): Perform initial response if possible and escalate to applicable individuals/teams when required.
Security Response Lead (SRL): SRL is a situational role that all members of the team can assume as part of Congite’s incident process. Contributions to the response and recovery include (but is not limited to) threat hunting, log investigations, configuration changes and reporting.

Drive improvements

Analyze: Perform queries and analyze results across a large amount of data from a wide range of sources. Correlate information and events to produce insights that enable the organization to identify risks and make protective measures to mitigate them.
Develop: Integration of new and improvement of existing data sources to ensure high quality and value input. Produce high quality output by writing, testing and deploying software powered logic to enrich analysis and alerting, and drive innovation in orchestration and automation.

Who you are

We are keen to find a candidate with relevant experience on technologies we use. We seek a candidate with demonstrated grit and an interest in technology that drives you to learn, adopt and improve how we work.

Practices, methodologies and frameworks

Threat modeling (STRIDE etc.)
Secure CI/CD in cloud environments
Infrastructure as a Code (IaC)
Software Development lifecycle( SDLC)
Git and GitOps
Security orchestration (SIEM, XDR, SOAR)0
Security compliance (ISO 27001 and SOC2)
Security framework (NIST CSF
Security architecture model; Zero trust
Vulnerability management (assessment and )

Technologies

Google Cloud Platform
Google Workspace
Microsoft Azure
Microsoft 365
AWS
Lacework
GitHub
Kubernetes
Jamf Pro
Jamf Protect
Microsoft Intune
Microsoft Defender
Jenkins
Spinnaker
Terraform
Windows
Linux
Mac

A snapshot of our many perks and benefits as a Cogniter

* Join an organization of 70 different nationalities

Job Details

SENIOR SECURITY OPERATIONS ENGINEER

Cognite

Senior Security Operations Engineer

Role and responsibilities

Who you are

Other jobs from this company