Manager, Security Engineering
Manager of Security Engineering
Serve as trusted advisor to team’s leadership and partner teams by clearly articulating business risks associated with security issues
Execute the long-term vision for the Security team in alignment with Cohere’s product and business goals.
Collaborate closely with leadership to prioritize high-impact initiatives and strategic customer engagements.
Vulnerability Management
Develop and implement enterprise-wide vulnerability management processes and tooling, including identification, prioritization, remediation tracking, and reporting, including customer artifacts
Static Application Security Testing (SAST): Establish SAST programs, integrate tools into CI/CD pipelines, and analyze results to identify and remediate security flaws in source code
Dynamic Application Security Testing (DAST): Implement DAST methodologies, configure scanning tools, and conduct regular assessments of running applications
Penetration Testing: Lead and oversee internal and external penetration testing engagements, including web application, API, network and agentic AI platform including managing our bug bounty program
Security Architecture Review
Collaborate with development teams to review and validate security architecture and design patterns
Secure SDLC Integration: Embed security practices throughout the software development lifecycle, working closely with engineering and product teams
Team Leadership
Lead and grow a high-performing team of Security engineers through hiring, coaching, and mentorship
Metrics and Reporting: Establish key security metrics, generate regular reports for leadership, and communicate security posture to stakeholders
Compliance and Standards
Ensure application security practices align with industry standards (OWASP Top10 for LLMs, ISO 27001) and regulatory requirements
You May Be a Good Fit If You Have:
- 8+ years of previous experience in Application Security / Security Engineering with a strong focus on vulnerability management, SDLC and bug bounty programs
- Proven experience with SAST, DAST, and penetration testing methodologies and tools
- Proficiency with programming languages (Python, GoLang, etc.) and web technologies
- Experience with cloud platforms (AWS, GCP, Azure) and container security
- Excellent communication and interpersonal skills with ability to influence technical and non-technical stakeholders
- Experience building and managing high-performing security teams
- You are comfortable with ambiguity and are able to make informed decisions with little data
- You employ a flexible and constructive approach when solving problems
- You are able to make trade-offs between build vs. buy decisions—help build solutions and be able to review what tools are available
- You understand secure engineering best practices, can articulate problem statements, and propose solutions to both technically savvy and non-technical audiences
- You have a deep technical understanding of common security vulnerabilities and risks, as well as countermeasures and compensating controls
Apply If You Are Passionate About Solving Complex Revenue Challenges In A Dynamic AI Environment And Want To Join A Team That Values Technical Excellence And Innovation, We Encourage You To Apply.
Working Location: Remote US or Canada
Compensation: Cohere is committed to fair and transparent pay practices. The salary range listed for this role reflects the expected base compensation. Actual compensation offered will be determined by factors such as location, level, job-related knowledge, skills, education, and experience.
For candidates in the US, the Compensation Range is: $225,000 - $325,000 [USD]
For candidates in Canada, the Compensation Range is: $320,000 - 385,000 [CAD]
Full-Time Employees At Cohere Enjoy These Perks:
- A weekly lunch stipend of $75/£75 or equivalent in your local currency for lunch
- Full health and dental benefits, including a separate budget for mental health
- RRA matching, 401K, Pension Scheme
- 100% Parental Leave top-up for up to 6 months, for either parent
- Annnual enrichment benefits: Arts & culture, fitness/wellness, quality time, and a workspace improvement credit
- Education & learning stipend for conferences, courses, and coaching
- 6 weeks of paid vacation (30 working days!)
- Budget for traveling to other offices if you are remote, plus an annual company offsite
If any of the above doesn’t line up exactly with your experience, we still encourage you to apply. We strive to create an inclusive work environment for all; we welcome applicants from all backgrounds and are committed to providing equal opportunities.
We may use AI-enabled tools to screen and assess applicants against the criteria for this position. This helps our recruiters identify potentially qualified candidates, but it doesn't limit the applications our recruiters may review or consider.