Security Engineer

Crusoe is building the World’s Favorite AI-first Cloud infrastructure company. We’re pioneering vertically integrated, purpose-built AI infrastructure solutions trusted by Fortune 500 companies to power their most advanced AI applications.
Crusoe is redefining AI cloud infrastructure, with a mission to align the future of computing with the future of the climate. Our AI platform is recognized as the "gold standard" for reliability and performance. Our data centers are optimized for AI workloads and are powered by clean, renewable energy.

Be part of the AI revolution with sustainable technology at Crusoe. Here, you'll drive meaningful innovation, make a tangible impact, and join a team that’s setting the pace for responsible, transformative cloud infrastructure.

About This Role:

This role will initially report to the IT Director and eventually to the SOC Manager. The security engineer will help the IT Director to build the foundations for a SOC (processes as well as re-occurring cadence for audit tasks). This role will also be responsible for implementing, configuring, and operating security platforms needed to perform SOC duties (pen-testing, security policies on various core platforms, endpoint security). And finally, the security engineer will be holistically supporting all IT Security needs for corporate security on Day 1. Over time, as the security team grows and the SOC matures, the team's CyberSecurity coverage & responsibilities will also expand beyond into other business units (production).

A Day In The Life:

• Monitor and track various security alerts from each core platform, including:

  • Logs in the Log Aggregation platform.

  • Endpoint security with XDR detections and remediation measures.

  • Email security alerts, intelligence gathering, and flagged incidents.

  • Alerts and remediation related to MDM, SSO, and other essential platforms.

• Preventative Measures:

  • Management of endpoint and infrastructure patch updates.

  • Periodic testing for failover procedures, data restoration, and validation.

  • Conduct software and hardware audits to identify unauthorized or problematic components.

  • Utilize reports and intelligence from various security platforms to maintain user base safety and awareness.

  • Manage credential rotation as needed; propose and implement improvements.

• Security Policies:

  • Review, configure, and manage policies across all business applications and platforms.

  • Oversee and ensure the security integrity of platforms such as IdP, XDR, MDM, etc.

  • Establish processes, standard operating procedures (SOPs), and documentation as the pioneering member of the security team.

• Cybersecurity Incident Investigation:

  • Conduct cyber forensics and incident management.

  • Draft incident reports and executive summaries.

  • Initiate remediation steps following detections.

  • Escalate issues as required to the appropriate escalation chains.

  • Contribute to SOX and SOC audits, including preparation and remediation expertise.

  • Security Projects: Lead implementation and collaborate closely with vendors.

You Will Thrive In This Role If:

• Prior experience with SOX and SOC audits, including preparation and remediation, spanning over five years.

• Proficiency in vendor due diligence, CVE tracking, and reporting.

• Expertise in network security, including auditing firewall rules and policies, and reviewing firmware/OS release notes.

• Demonstrated success with security frameworks and security architecture for over five years.

• Capable of conducting internal and external scans, such as penetration testing.

• In-depth knowledge of Cloud Identity Management with over five years of experience.

• Significant experience in Cybersecurity Incident Management and Cyber Forensics, exceeding five years.

• An enthusiast for documentation, drafting proposals, and writing reports or executive summaries.

• An expert communicator with outstanding written and verbal skills.

• A strong advocate of Standard Operating Procedures (SOPs) and process improvements, including change controls, runbooks, and rollback/testing plans.

• Enjoys creating diagrams to illustrate security frameworks.

• Previous experience in writing incident reports.

• Previous experience in composing Technology Assessment Reports.

• Previous experience in writing or revising a Security Playbook.

• Able to collaborate with management or the user base to design effective Cybersecurity training regimes.

• Has led teams and provided mentorship to junior colleagues.

• Desires to take full ownership of projects, overseeing them from inception to completion.

• Must be able to pass a background check

• Our Company values speak to you, resonate with you, make sense to you and how you desire to work

Benefits: 

• Full-time onsite schedule

• Industry competitive pay

• Restricted Stock Units in a fast growing, well-funded technology company

• Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents

• Employer contributions to HSA accounts 

• Paid Parental Leave 

• Paid life insurance, short-term and long-term disability 

• Teladoc 

• Pet-friendly offices

• 401(k) with a 100% match up to 4% of salary

• Generous paid time off and holiday schedule

• Cell phone reimbursement

• Tuition reimbursement

• Subscription to the Calm app

• MetLife Legal

• Company paid commuter benefit; $50 per pay period

Compensation Range:

Compensation will be paid in the range of $120,000 - $160,000. Restricted Stock Units are included in all offers. Compensation to be determined by the applicant’s education, experience, knowledge, skills, and abilities, as well as internal equity and alignment with market data.

Crusoe Energy is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, disability, genetic information, pregnancy, citizenship, marital status, sex/gender, sexual preference/ orientation, gender identity, age, veteran status, national origin, or any other status protected by law or regulation.