\nAs a Senior Staff DevSecOps Engineer, you’ll be responsible for protecting and securing Voltron Data. You'll work as a Tech Lead specializing in DevSecOps on the SecOps team and be responsible for corporate security and compliance initiatives within the company. You will be responsible for the research, architecture, development, and delivery of these focus areas and other security initiatives, either working solo or with other members of the SecOps team. Importantly, we are looking for a Security Engineer who does not work in silos and is willing to share knowledge and responsibilities with other team members, collaborating with DevOps, IT, and engineering teams for security initiatives. This includes working directly with project development teams and others to enable successful project implementation by applying the recommended security tools, technologies, and techniques.\n\nNOTE: There will be an expectation of rolling incident response schedule sharing as a part of this role. This will be a shared responsibility with other SecOps and IT members.\nImportant Notes\n\n\n* Due to some client commitments, we require this position to be a US Citizen.\n\n* While the company is remote worldwide, hiring for this position will be focused around the Northeast region (Boston to DC) of the United States, with the aim of hiring in either the NYC or Pittsburgh areas.\n\n* Additionally, you must have previous experience working at startups, with a preference for experience at an early-stage startup. Experience working with engineering teams within a software development firm is strongly preferred.\n\n* There will be an expectation of rolling incident response schedule sharing as a part of this role. This will be a shared responsibility with other SecOps and IT members.\n\n\n\nRole Expectations\n\nAs a DevSecOps-focused Senior Staff Security Engineer, you will be responsible for performing the following:\n\n\n* Security Execution\n\n\n\n* My work demonstrates broad and deep security domain expertise, and I successfully apply it across technology domains (e.g. software, networking, risk management, operating systems, etc.) to realize cross-functional security objectives and drive the maturity of the security team overall.\n\n* I independently and proactively identify areas of security risk and future needs, reach out to the relevant teams, collaboratively design solutions to that risk, and successfully implement them sustainably that “permanently” reduce risk across entire classes of threats.\n\n* I design, deliver, and drive solutions for significantly complex security and risk problems across Voltron Data organizations.\n\n* I split my time into different areas, such as security solution design and/or security architecture, based on where my skills have the greatest impact (or in response to a security problem).\n\n* I deliver solutions resistant to erosion of security controls over time and integrate ongoing testing strategies as part of the foundational design\n\n* I own the response to extraordinary or otherwise sensitive security incidents.\n\n* I adapt my role to the needs of an initiative, the security team, or a cross-functional partner team over time.\n\n* I understand that technology, threats, and responses evolve and drive that evolution to create opportunities to improve security across Voltron Data.\n\n* I motivate security controls that simplify, optimize, and prevent bottlenecks.\n\n\n\n* Technology Fluency\n\n\n\n* I apply a comprehensive understanding of the Voltron Data technology stack and relevant external technologies within my focus. I both maintain awareness and ensure my organization is aware of changes as they occur. I influence partner organizations' design and architecture choices.\n\n* I understand that technology, threats, and responses evolve and use that evolution to identify opportunities to improve security controls accordingly.\n\n\n\n* Threat Fluency\n\n\n\n* I deeply understand attacker tools, techniques, and processes (TTPs) and an extensive array of defenses/mitigations for them.\n\n* I am deeply aware of the kinds of defenses and their efficacy in mitigating attacks relevant to Voltron Data Security.\n\n\n\n\n\nCareer Paths\n\nThis Senior Staff Security Engineer role has two career paths: continuing at this level as a Tech Lead or progressing to the next level (Principal Security Engineer, also as a Tech Lead). At Voltron Data, we want you to know the available career paths so we can find a long-term fit for candidates both today and in the future. Expect to discuss this in our interviews to learn your expectations for this role.\nNecessary Skills\n\n\n* Proficiency with scripting languages Python & Bash, including using GitHub for source control.\n\n* Experience with Terraform or OpenTofu for IaC.\n\n* Linux system administration experience; Ubuntu and Rocky Linux preferred.\n\n* Familiarity with securing containerized infrastructure and Kubernetes in cloud/bare-metal environments.\n\n* Hands-on experience with security tools (Datadog, Crowdstrike, or equivalents) and command-line tools for audits, pen testing, and investigations.\n\n* Understanding of GitHub Advanced Security or equivalent SAST/vulnerability tooling stack.\n\n* Prior experience with Zero Trust systems and workflows.\n\n\n\nPrevious Experience \n\n\n* History as a Tech Lead in SecOps, preferably in a DevSecOps role.\n\n* Experience with software engineering teams to develop plans for application security and ensure a secure environment.\n\n* Performs business case analysis and feasibility, including the examination of costs, benefits, and risks associated with the proposed investment or project. Recommends alternatives for solutions and highlights strategic implications.\n\n* Architects, designs, implements, supports, and evaluates secure, infrastructure-focused tools and services.\n\n* Ability to clearly articulate and write requests, needs, requirements, and documentation \n\n* Experience with navigating and earning certifications such as SOC II, ISO 27001, NIST CSF, etc.; in addition to GDPR, US Data Privacy, and other legal frameworks.\n\n* Deployment of vulnerability remediation systems and workflows.\n\n* Familiarity with cloud services (AWS, Azure, GCP, and/or others) and remote infrastructure in a colocation environment, implementing tailored security controls in each environment.\n\n* Experience working for a remote company and hands-on exposure with a global remote user base.\n\n\n\n\n \nUS Compensation\n\nThe salary range for this role is between $150,000 and $220,000. We have a global market-based pay structure that varies by location. Please note that the base pay range is a guideline, and for candidates who receive an offer, the exact base pay will vary based on factors such as the candidate's actual work location, skills, and experience. This position is also eligible for additional incentives such as equity awards. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, Python, Cloud, Senior and Engineer jobs that are similar:\n\n $50,000 — $100,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n

\nAs a Senior Staff DevSecOps Engineer, you’ll be responsible for protecting and securing Voltron Data. You'll work as a Tech Lead specializing in DevSecOps on the SecOps team and be responsible for corporate security and compliance initiatives within the company. You will be responsible for the research, architecture, development, and delivery of these focus areas and other security initiatives, either working solo or with other members of the SecOps team. Importantly, we are looking for a Security Engineer who does not work in silos and is willing to share knowledge and responsibilities with other team members, collaborating with DevOps, IT, and engineering teams for security initiatives. This includes working directly with project development teams and others to enable successful project implementation by applying the recommended security tools, technologies, and techniques.\n\nNOTE: There will be an expectation of rolling incident response schedule sharing as a part of this role. This will be a shared responsibility with other SecOps and IT members.\nImportant Notes\n\n\n* Due to some client commitments, we require this position to be a US Citizen.\n\n* While the company is remote worldwide, hiring for this position will be focused around the Northeast region (Boston to DC) of the United States, with the aim of hiring in either the NYC or Pittsburgh areas.\n\n* Additionally, you must have previous experience working at startups, with a preference for experience at an early-stage startup. Experience working with engineering teams within a software development firm is strongly preferred.\n\n* There will be an expectation of rolling incident response schedule sharing as a part of this role. This will be a shared responsibility with other SecOps and IT members.\n\n\n\nRole Expectations\n\nAs a DevSecOps-focused Senior Staff Security Engineer, you will be responsible for performing the following:\n\n\n* Security Execution\n\n\n\n* My work demonstrates broad and deep security domain expertise, and I successfully apply it across technology domains (e.g. software, networking, risk management, operating systems, etc.) to realize cross-functional security objectives and drive the maturity of the security team overall.\n\n* I independently and proactively identify areas of security risk and future needs, reach out to the relevant teams, collaboratively design solutions to that risk, and successfully implement them sustainably that “permanently” reduce risk across entire classes of threats.\n\n* I design, deliver, and drive solutions for significantly complex security and risk problems across Voltron Data organizations.\n\n* I split my time into different areas, such as security solution design and/or security architecture, based on where my skills have the greatest impact (or in response to a security problem).\n\n* I deliver solutions resistant to erosion of security controls over time and integrate ongoing testing strategies as part of the foundational design\n\n* I own the response to extraordinary or otherwise sensitive security incidents.\n\n* I adapt my role to the needs of an initiative, the security team, or a cross-functional partner team over time.\n\n* I understand that technology, threats, and responses evolve and drive that evolution to create opportunities to improve security across Voltron Data.\n\n* I motivate security controls that simplify, optimize, and prevent bottlenecks.\n\n\n\n* Technology Fluency\n\n\n\n* I apply a comprehensive understanding of the Voltron Data technology stack and relevant external technologies within my focus. I both maintain awareness and ensure my organization is aware of changes as they occur. I influence partner organizations' design and architecture choices.\n\n* I understand that technology, threats, and responses evolve and use that evolution to identify opportunities to improve security controls accordingly.\n\n\n\n* Threat Fluency\n\n\n\n* I deeply understand attacker tools, techniques, and processes (TTPs) and an extensive array of defenses/mitigations for them.\n\n* I am deeply aware of the kinds of defenses and their efficacy in mitigating attacks relevant to Voltron Data Security.\n\n\n\n\n\nCareer Paths\n\nThis Senior Staff Security Engineer role has two career paths: continuing at this level as a Tech Lead or progressing to the next level (Principal Security Engineer, also as a Tech Lead). At Voltron Data, we want you to know the available career paths so we can find a long-term fit for candidates both today and in the future. Expect to discuss this in our interviews to learn your expectations for this role.\nNecessary Skills\n\n\n* Proficiency with scripting languages Python & Bash, including using GitHub for source control.\n\n* Experience with Terraform or OpenTofu for IaC.\n\n* Linux system administration experience; Ubuntu and Rocky Linux preferred.\n\n* Familiarity with securing containerized infrastructure and Kubernetes in cloud/bare-metal environments.\n\n* Hands-on experience with security tools (Datadog, Crowdstrike, or equivalents) and command-line tools for audits, pen testing, and investigations.\n\n* Understanding of GitHub Advanced Security or equivalent SAST/vulnerability tooling stack.\n\n* Prior experience with Zero Trust systems and workflows.\n\n\n\nPrevious Experience \n\n\n* History as a Tech Lead in SecOps, preferably in a DevSecOps role.\n\n* Experience with software engineering teams to develop plans for application security and ensure a secure environment.\n\n* Performs business case analysis and feasibility, including the examination of costs, benefits, and risks associated with the proposed investment or project. Recommends alternatives for solutions and highlights strategic implications.\n\n* Architects, designs, implements, supports, and evaluates secure, infrastructure-focused tools and services.\n\n* Ability to clearly articulate and write requests, needs, requirements, and documentation \n\n* Experience with navigating and earning certifications such as SOC II, ISO 27001, NIST CSF, etc.; in addition to GDPR, US Data Privacy, and other legal frameworks.\n\n* Deployment of vulnerability remediation systems and workflows.\n\n* Familiarity with cloud services (AWS, Azure, GCP, and/or others) and remote infrastructure in a colocation environment, implementing tailored security controls in each environment.\n\n* Experience working for a remote company and hands-on exposure with a global remote user base.\n\n\n\n\n \nUS Compensation\n\nThe salary range for this role is between $150,000 and $220,000. We have a global market-based pay structure that varies by location. Please note that the base pay range is a guideline, and for candidates who receive an offer, the exact base pay will vary based on factors such as the candidate's actual work location, skills, and experience. This position is also eligible for additional incentives such as equity awards. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, Python, Cloud, Senior and Engineer jobs that are similar:\n\n $50,000 — $100,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n

\nRole Summary\n\nThis is an exciting opportunity for a senior software engineer passionate about Linux, cloud infrastructure, pipelines and automation, and open source software..\n\nYou will work closely with Amazon, Microsoft, Google and other world-class cloud partners to make Ubuntu the best platform there is in the clouds. Your time will be split between build system development (using Python, Jenkins and shell), implementation of cloud-related features within Ubuntu Server itself, operation of our continuous delivery pipelines, and direct partner engagement. You will strive to automate the delivery of existing and new Ubuntu products applied to all modern workloads from web servers to GPU-aided AI for servers, VM’s and containers, and integrate our products with cloud native services.\n\nCome build a rewarding, meaningful career working with the best and brightest people in technology at Canonical, a growing international software company. As a part of our team, you will combine software development skills with software and infrastructure delivery experience.\n\nPlease note that at this time, we are looking for candidates located in the Americas.\n\nWhat you'll do\n\n\nBuild automated, highly reliable image delivery, testing and publication pipelines\n\nDesign, build and integrate new features and enhancements into Ubuntu that will support users of Ubuntu in public clouds\n\nCollaborate proactively with a distributed team\n\nWrite high quality code to create new features\n\nDesign and architect complex new systems and integrations with the clouds\n\nDebug issues and produce high quality code to fix them\n\nReview code produced by other engineers and participate in design discussions\n\nWork from home with global travel 2 to 4 weeks for internal and external events\n\nEngage with many other teams at Canonical, as well as the open source community and commercial partners\n\n\n\n\nWho you are\n\n\nYou love technology and working with brilliant people\n\nYou are curious, flexible, articulate, and accountable\n\nYou value soft skills and are passionate, enterprising, thoughtful, and self-motivated\n\nYou have a Bachelor’s or equivalent in Computer Science, STEM or similar degree\n\nYou have practical experience with public clouds\n\nYou have interest and experience with at least 3 of the following: containers (docker, kubernetes, etc.), devops automation, open source projects, APIs, Linux systems administration, Python packaging, cloud-based applications\n\nat least 5 years experience in Python software development on Linux\n\n\n\n\nWhat Canonical Offers:\n\n\nLearning and Development, with annual budget for professional development\n\nAnnual Compensation Review\n\nRecognition Rewards\n\nAnnual Leave\n\nPriority Pass for travel\n\nFlexible working options and schedules\n\nWork remotely with a talented globally distributed team\n\n18 weeks full pay primary care giver parental leave, 4 weeks secondary, from day 1\n\n\n\n\nCanonical is proud to foster a workplace free from discrimination. We truly believe that diversity of experience, perspectives, and background will lead to a better environment for our employees and a better platform for our users and customers. This is something we value deeply and we encourage everyone to come be a part of the world of Ubuntu.\n\n#stack #LI-Remote \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Software, DevOps, Cloud, Python, Travel, Senior, Engineer and Linux jobs that are similar:\n\n $70,000 — $120,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nSyracuse, New York, United States

\n\nCogito is seeking an experienced and skilled software engineer with expertise in modern voice technologies. The Telephony Team is responsible for designing, developing, and implementing software for audio call capture from enterprise telephony systems. The team develops software for cloud-based and virtualized environments and virtual servers ensuring call centers of all sizes have secure, reliable, and low-latency integration with Cogito behavioral analytics on all their calls. \n\nYou are an experienced Java developer who has worked with unified communications platforms such as Twilio. You are comfortable in a mix of languages and tech stacks while coding primarily in Java.  You believe in automated testing and know how to simulate production environments to test for reliability and scale.  You are comfortable with using the Linux command line and have deployed software on physical servers and virtualized instances in public and private clouds.  You bring enthusiasm to your job and love tackling new and challenging problems.  You are a collaborator who thrives on a focused, dedicated tech team. \n\n- Microservice design specification for capturing audio from third-party systems\n- RESTful and/or AMQP-based services for efficiently processing signaling and media\n- Reliable operation of audio call capture services in production\n- 5-10 years of experience developing production-grade software\n- Advanced knowledge and expertise in Java, including design patterns and mastery of standard libraries\n- Working knowledge of Python and/or C/C++ is a plus \n- Experience with the full software development cycle\n- Strong verbal and written communication skills\n- Passionate about building scalable software in a fast growing tech company\n- A strong desire to learn new technologies and apply them to advancing the software stack\n- Ability to develop software solutions to support customers and prospects\n- Experience with agile development methodologies\n- A self starter, willing to invest time and effort to learn new skills and techniques\n- Detail oriented and able to meet objectives in a rapidly changing environment\n- Interest in real-time audio and voice technologies\n- Knowledge of SIP/RTP\n- Experience working with telephony systems such as Avaya CM, Asterisk PBX, Cisco UCM, - Acme Packet SBC, Verint Impact 360, etc. is a plus\n- Experienced and proficient working on a Linux/UNIX OS\n- Proficient in computer networking and security principals\n- Experience with Docker, Kubernetes, Helm, Prometheus or other Cloud Native Computing - Foundation (CNCF) software is a big plus\n\nBenefits\n- Your choice of comprehensive benefits for you and your - dependents effective on date of hire; health, dental, vision, flexible spending, life insurance, disability, additional voluntary supplemental life insurance\n- Pet Insurance \n- Employee Assistance Programs (EAP) \n- 20 days vacation time, 5 days sick time, 2 floating holidays and 11 company holidays\n- 2 "Be Gentle" personal days\n- 401(k) retirement plan options\n-  Competitive pay and bonus eligibility\n- Stock options via equity grants\n- Ongoing professional development and cross-training\n- Company paid parental leave upon hire\n- Office Optional policy where Cogician’s choose where they work either primarily remote, primarily in office or hybrid \n- Ability to support Cogician’s anywhere in the US through our Office Optional policy\n- Employee Referral Bonus Program\n- Employee Resource Groups \n\n\n#LI-Remote\n\n\nEqual Opportunity Employer\nCogito is a proud equal opportunity employer. We are committed to fair hiring practices and to creating a welcoming environment for all team members. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, disability, age, familial status or veteran status.\n\nAuthorization to Work\nApplicants for employment in the US must be authorized to work in the US. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Java, Senior, Engineer, Executive, Developer, Digital Nomad, Cloud, Python and Linux jobs that are similar:\n\n $70,000 — $120,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nBoston, Massachusetts