What does Casaba require in a candidate? Do I need to know how to write code?

We're looking for people who are hungry for knowledge and constantly thinking about security - how software and systems can fail, how they can be attacked, and how they can be improved. The technology we all use in our lives revolves around code. Anyone wishing to work in this field should know how to write code, whether it's scripting, writing native apps, or building Web applications you must have some technical chops. Beyond that, a passion for security and digital privacy are key. This isn't a normal job in the sense that tasks aren't always clearly defined, and the requirements aren't always known. You must be able to handle ambiguity and bring direction with some leadership, confidence, and humility. A passion for this type of work will feed the creative process, something which you must possess in order to think and act like a focused attacker or defender. Our clients depend on us to find the problems that nobody else thought of, and we rely on each other working either individually or as a team, to do the same.

What does the hiring process look like?

First, get in touch, email us at employment@casaba.com. We'll want to see your resume and understand your interest, background, and technical skill set. Then we'll setup a few interviews. The first will an intro call to get to know each other a bit, personally and professionally. Then we'll follow up with more in depth technical and professional interviews. There may be some scenario-based challenges - we will present a security scenario for you to think through so we can get a better idea of where your knowledge is at with different focus areas from AI to Cloud to general cybersecurity. We also want to understand how you communicate, respond to unknowns, handle pressure, and where your passions and drive are, and where there could be good alignment with our company and positions.

Requirements

  • U.S. or EU citizenship
  • Ability to pass a background check
  • Occasional travel availability
  • Strong coding skills
  • Understanding security concepts and vulnerabilities
  • Excellent communication skills, both written and verbal

Compensation & Benefits

  • Competitive salary based on experience
  • Profit-sharing opportunities
  • Simplified Employee Pension (SEP) plan after qualifying period
  • 100% employer-paid health insurance for employees and dependents
  • Generous paid vacation and sick leave

Location

We are a remote-first company. With most of our team in the Seattle area, Singapore, and Zurich, we embrace flexible work arrangements while maintaining strong team collaboration.

To Apply

Please email employment@casaba.com with:

  • Cover letter
  • Resume/CV
  • Brief description of notable security vulnerabilities you've discovered if applying for penetration testing roles.

Open Positions

We're always looking for strong folks who want to make a start in the security field as security consultants, as well as professionals who can bring years of accomplishments and want to work as senior or principal consultants. If you're interested in one of these positions or want to pitch to us on another role you can offer, then please get in touch.

AI Assessment Program Manager

With the new frontier of Generative AI at our doorstep, we must ensure that the proper steps are taken to deploy systems that are reliable, predictable, and safe.

Position Overview: As an Assessment Program Manager (APM), you will partner with engineering stakeholders to assess AI system development and deployment, guiding teams through the process of hardening their LLM-based systems to comply with rigorous release standards.

Required Skills & Experience:

  • Product-oriented mindset to balance responsible AI commitments with innovation
  • Technical background sufficient to understand AI measurement and mitigation techniques

Preferred Skills & Experience:

  • Deep understanding of generative AI use cases and responsible AI principles

Key Responsibilities:

  • Advise AI system product teams on development progress and implement proper AI safety practices early in the process
  • Identify risks and gaps in mitigation techniques, helping teams measure and mitigate these risks
  • Collaborate with the AI technical program management team to stay current on evolving attacks and mitigation techniques

Senior Cybersecurity Consultant

We are seeking experienced cybersecurity professionals with expertise in Cloud, AI, and application security vulnerability assessment.

Position Overview: This role requires both technical excellence to find exploitable vulnerabilities and strong communication skills to manage client engagements independently from initial assessment through final delivery.

Required Skills & Experience:

  • Proven experience in application security testing and vulnerability discovery
  • Strong coding skills and technical problem-solving abilities
  • Excellent written and verbal communication capabilities
  • Experience delivering client-facing security assessments
  • Ability to work independently while maintaining team collaboration

Key Responsibilities:

  • Lead and execute end-to-end security assessments
  • Conduct in-depth vulnerability discovery in complex environments
  • Develop comprehensive, actionable reports for sophisticated clients
  • Communicate technical findings with clarity and strategic context
  • Contribute to specialized practice areas including AI security, Cloud infrastructure, application security, and threat modeling

Specialized Areas:

  • AI security
  • Cloud, web, and mobile application security
  • Threat modeling
  • Policy and program development