# Manager, Security Engineering

**Company:** [Cohere](https://hotfix.jobs/companies/cohere)
**Location:** San Francisco, CA
**Role:** Security Engineering
**Experience:** 8+ years
**Skills:** Python, Go, SAST, DAST, Penetration Testing, Vulnerability Management, AWS, GCP, Azure, Container Security, CI/CD, ISO 27001, Owasp
**Posted:** 2026-05-27

> Lead and grow a Security Engineering team responsible for vulnerability management, SAST/DAST, penetration testing, bug bounty, and secure SDLC integration across cloud platforms.

## Job Description

## Key Responsibilities
- Serve as trusted advisor to team's leadership and partner teams by clearly articulating business risks associated with security issues
- Execute the long-term vision for the Security team in alignment with Cohere's product and business goals
- Collaborate closely with leadership to prioritize high-impact initiatives and strategic customer engagements
- **Vulnerability Management**: Develop and implement enterprise-wide vulnerability management processes and tooling, including identification, prioritization, remediation tracking, and reporting
- **Static Application Security Testing (SAST)**: Establish SAST programs, integrate tools into CI/CD pipelines, and analyze results to identify and remediate security flaws in source code
- **Dynamic Application Security Testing (DAST)**: Implement DAST methodologies, configure scanning tools, and conduct regular assessments of running applications
- **Penetration Testing**: Lead and oversee internal and external penetration testing engagements, including web application, API, network and agentic AI platform; manage bug bounty program
- **Security Architecture Review**: Collaborate with development teams to review and validate security architecture and design patterns
- **Secure SDLC Integration**: Embed security practices throughout the software development lifecycle, working closely with engineering and product teams
- **Team Leadership**: Lead and grow a high-performing team of Security engineers through hiring, coaching, and mentorship
- **Metrics and Reporting**: Establish key security metrics, generate regular reports for leadership, and communicate security posture to stakeholders
- **Compliance and Standards**: Ensure application security practices align with industry standards (OWASP Top10 for LLMs, ISO 27001) and regulatory requirements

## Requirements
- 8+ years of previous experience in Application Security / Security Engineering with a strong focus on vulnerability management, SDLC and bug bounty programs
- Proven experience with SAST, DAST, and penetration testing methodologies and tools
- Proficiency with programming languages (Python, GoLang) and web technologies
- Experience with cloud platforms (AWS, GCP, Azure) and container security
- Excellent communication and interpersonal skills with ability to influence technical and non-technical stakeholders
- Experience building and managing high-performing security teams
- Comfortable with ambiguity and able to make informed decisions with little data
- Flexible and constructive approach when solving problems
- Able to make trade-offs between build vs. buy decisions
- Deep technical understanding of common security vulnerabilities and risks, as well as countermeasures and compensating controls

## Nice-to-Haves
- Understanding of secure engineering best practices and ability to articulate problem statements and propose solutions to both technical and non-technical audiences

## Similar roles

- [Senior Software Engineer](https://hotfix.jobs/jobs/2ad28874-4486-42ff-949a-ec54985c2762) - Snowflake - Bellevue, WA - $200k – $288k/yr
- [Software Security Engineering Manager, Secure Frameworks](https://hotfix.jobs/jobs/26e1ecde-76c2-491f-951c-78e9c075c076) - Anthropic - San Francisco, CA - $405k – $485k/yr
- [Founding Security Engineer](https://hotfix.jobs/jobs/6deb6526-e0c3-42a9-9c29-360c4354d869) - Forus - New York, NY
- [Manager, Supply Chain Protection & Loss Intelligence](https://hotfix.jobs/jobs/9e3a84ce-58cf-480f-bf1d-6fefa2cf89bf) - Flexport - Miami, FL
- [Physical Security Manager](https://hotfix.jobs/jobs/053f4772-7be2-438c-b890-e7752ae44a12) - Crusoe - Dallas, TX

**Apply:** https://hotfix.jobs/jobs/92090b3a-ff79-4b6f-8497-ba47ac8260a6
**Canonical:** https://hotfix.jobs/jobs/92090b3a-ff79-4b6f-8497-ba47ac8260a6