Security Engineer

Crusoe Energy is on a mission to unlock value in stranded energy resources through the power of computation. 

Take a look at what we do! - https://www.youtube.com/watch?v=Rlt8k71Quqw 

We aim to align the long term interests of the climate with the future of global computing infrastructure. As data centers consume an exponentially growing power footprint to deliver technology to all connected devices, we are inspired by making sure that the energy meeting that demand is sourced in an environmentally responsible fashion. Crusoe co-locates mobile data centers with stranded energy resources, like flare gas and underloaded renewables, to deliver low-cost, carbon-negative distributed computing solutions. Crusoe Cloud is a managed cloud services platform powered by stranded energy that enables climate-friendly innovation in computationally intensive fields including artificial intelligence, graphics rendering and computational biology.

About This Role:

This role will initially report to the IT Director and eventually to the SOC Manager. The security engineer will help the IT Director to build the foundations for a SOC (processes as well as re-occurring cadence for audit tasks). This role will also be responsible for implementing, configuring, and operating security platforms needed to perform SOC duties (pen-testing, security policies on various core platforms, endpoint security). And finally, the security engineer will be holistically supporting all IT Security needs for corporate security on Day 1. Over time, as the security team grows and the SOC matures, the team's CyberSecurity coverage & responsibilities will also expand beyond into other business units (production).

A Day In The Life:

• Monitor and track various security alerts from each core platform, including:

  • Logs in the Log Aggregation platform.

  • Endpoint security with XDR detections and remediation measures.

  • Email security alerts, intelligence gathering, and flagged incidents.

  • Alerts and remediation related to MDM, SSO, and other essential platforms.

• Preventative Measures:

  • Management of endpoint and infrastructure patch updates.

  • Periodic testing for failover procedures, data restoration, and validation.

  • Conduct software and hardware audits to identify unauthorized or problematic components.

  • Utilize reports and intelligence from various security platforms to maintain user base safety and awareness.

  • Manage credential rotation as needed; propose and implement improvements.

• Security Policies:

  • Review, configure, and manage policies across all business applications and platforms.

  • Oversee and ensure the security integrity of platforms such as IdP, XDR, MDM, etc.

  • Establish processes, standard operating procedures (SOPs), and documentation as the pioneering member of the security team.

• Cybersecurity Incident Investigation:

  • Conduct cyber forensics and incident management.

  • Draft incident reports and executive summaries.

  • Initiate remediation steps following detections.

  • Escalate issues as required to the appropriate escalation chains.

  • Contribute to SOX and SOC audits, including preparation and remediation expertise.

  • Security Projects: Lead implementation and collaborate closely with vendors.

You Will Thrive In This Role If:

• Prior experience with SOX and SOC audits, including preparation and remediation, spanning over five years.

• Proficiency in vendor due diligence, CVE tracking, and reporting.

• Expertise in network security, including auditing firewall rules and policies, and reviewing firmware/OS release notes.

• Demonstrated success with security frameworks and security architecture for over five years.

• Capable of conducting internal and external scans, such as penetration testing.

• In-depth knowledge of Cloud Identity Management with over five years of experience.

• Significant experience in Cybersecurity Incident Management and Cyber Forensics, exceeding five years.

• An enthusiast for documentation, drafting proposals, and writing reports or executive summaries.

• An expert communicator with outstanding written and verbal skills.

• A strong advocate of Standard Operating Procedures (SOPs) and process improvements, including change controls, runbooks, and rollback/testing plans.

• Enjoys creating diagrams to illustrate security frameworks.

• Previous experience in writing incident reports.

• Previous experience in composing Technology Assessment Reports.

• Previous experience in writing or revising a Security Playbook.

• Able to collaborate with management or the user base to design effective Cybersecurity training regimes.

• Has led teams and provided mentorship to junior colleagues.

• Desires to take full ownership of projects, overseeing them from inception to completion.

• Must be able to pass a background check

• Our Company values speak to you, resonate with you, make sense to you and how you desire to work

Benefits: 

• Full-time onsite schedule

• Industry competitive pay

• Restricted Stock Units in a fast growing, well-funded technology company

• Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents

• Employer contributions to HSA accounts 

• Paid Parental Leave 

• Paid life insurance, short-term and long-term disability 

• Teladoc 

• Pet-friendly offices

• 401(k) with a 100% match up to 4% of salary

• Generous paid time off and holiday schedule

• Cell phone reimbursement

• Tuition reimbursement

• Subscription to the Calm app

• MetLife Legal

• Company paid commuter benefit; $50 per pay period

Compensation Range:

Compensation will be paid in the range of $120,000 - $160,000. Restricted Stock Units are included in all offers. Compensation to be determined by the applicant’s education, experience, knowledge, skills, and abilities, as well as internal equity and alignment with market data.

Crusoe Energy is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, disability, genetic information, pregnancy, citizenship, marital status, sex/gender, sexual preference/ orientation, gender identity, age, veteran status, national origin, or any other status protected by law or regulation.