Security Engineer at Cognite

Cognite operates at the forefront of industrial digitalization, building AI and data solutions that solve some of the world’s hardest, highest-impact problems. With unmatched industrial heritage and a comprehensive suite of AI capabilities, including low-code AI agents, Cognite accelerates the digital transformation to drive operational improvements. Our moonshot is bold: unlock $100B in customer value by 2035 and redefine how global industry works. What Cognite is Relentless to achieve We thrive in challenges. We challenge assumptions. We execute with speed and ownership. If you view obstacles as signals to step forward - not step back - you’ll feel at home here. Join us in this venture where AI and data meet ingenuity, and together, we forge the path to a smarter, more connected industrial future. How you’ll demonstrate Ownership You’ll join a small, experienced team of security engineers working closely with product, platform, IT, and other security domains. Security Operations is the team that turns signals into action. Our mission is clear: "Through detection, enable teams and individuals to respond and recover. With analysis improve the organization's ability to identify and protect." As a hands-on security engineer, you will play a key role in Cognite’s security program. You will address day-to-day security challenges through a Detection Engineering approach, improve detection quality, and provide actionable insights to teams to ensure preventive controls in a multi-cloud environment. You will hunt for threats, build and refine the automated detection and response, and engineer findings into repeatable processes and self-sustaining controls that scale beyond the team. The Impact you bring to Cognite • Driving Improvements • Analyze: Query and analyze large volumes of data from a wide range of sources (logs, security tools, product telemetry, infrastructure, etc.). Correlate events and data points to uncover patterns, insights, and emerging risks. Translate findings into actionable recommendations. • Develop: Integrate new data sources and improve existing ones. Apply Detection Engineering best practices to design, implement, test, and deploy “software-powered” logic such as detection rules and signatures, enrichment logic, and correlation pipelines. • Automate workflows to speed up response times, build and optimize detection rules to reduce alert fatigue, and develop incident playbooks powered by automation for new and existing detections. • Work closely with engineering teams to make sure security capabilities are robust, maintainable, and well integrated. • Improve your own skills! Every second Friday we have Security Exploration day, a full day dedicated to learning and exploration. • Organizational Preparedness • Threat Discovery: Proactively hunt for internal and external threats across all environments. Continuously improve how we discover, assess and mitigate risks to Cognite. • Protection engineering: Use operational insight from incidents, detections, and investigations to identify gaps in security posture and reduce the attack surface. • Incident Response & 3rd-line SOC Support • Be a key contributor and leader in the incident response process when required. Enable response to security events, triage, perform investigations, and communicate clear and efficient communication to stakeholders. • Be part of a 24/7 on-call rotation (once a month on average) and provide 3rd-line SOC support. • Implement or coordinate configuration changes and containment measures while contributing to incident reporting and lessons learned. Required Qualifications • Experience developing tools, scripts, or software (e.g., Python, PowerShell, or similar) to automate analysis and response using common DevOps toolsets. • Ability to work with APIs, integrations, and data pipelines to onboard and improve security-relevant data sources. • Good understanding of common attacker tactics, techniques and procedures (TTPs) and MITRE ATT&CK principles in cloud native environments. • Good understanding of how modern cloud environments, SaaS, and/or distributed systems are built and operated. • Comfortable querying and analyzing large datasets from multiple systems and tools. Domain knowledge of managing and working with SIEM, and SOAR platforms. • Experience in Detection Engineering, including writing detection rules, enrichment logic, or alerting pipelines, preferably as code. Operating systems internals and forensics experience in incidents. • Experience in Security Engineering, including hands-on experience in security monitoring, incident response, and threat hunting. • A continuous-improvement mindset: using each event, alert, or incident to make our detections, processes, and posture better. • Comfortable taking ownership in high-pressure situations, including acting as an incident lead when needed. Clear written and verbal communication. Preferred Experience • Experience in Detection Engineering, including writing detection rules, enrichment logic, or alerting pipelines, preferably as code. Operating systems internals and forensics experience in incidents. A snapshot of our many perks and benefits as a Cogniter * Join an organization of 60 different nationalities 🌐 with Diversity, Equality and Inclusion (DEI) in focus 🤝 * A highly modern and fun working environment with sublime culture across the organization, follow us on Instagram @cognitedata 📷 to know more * Flat structure with direct access to decision-makers * Opportunity to work with and learn from some of the best people on some of the most ambitious projects found anywhere, across industries, with cutting edge technology * Join our HUB 🗣️ to be part of the conversation directly with Cogniters and our partners. * Get access to private health services with Cognite Care. * Hungry? We’ve got your back. A subsidized lunch at the canteen is delivered by the chefs at Fornebuporten (Aker Tech House) * Our own Cognite exclusive coffee bar ☕ with the friendliest baristas is here to brew coffee for coffee lovers, tea for tea lovers, smoothie for smoothie lovers, and the baristas creative concoctions when the mood strikes. * We take your mental- and physical health seriously by having a broad health offering and a free membership to our fully-staffed gym on-site. * A pet lover? Get the chance to meet Spot at the Robot Garden! Equal Opportunity Cognite is committed to creating a diverse and inclusive environment at work and is proud to be an equal opportunity employer. All qualified applicants will receive the same level of consideration for employment.