Cybersecurity Advisor

Cowbell is signaling a new era in cyber insurance by harnessing technology and data to provide small and medium-sized enterprises (SMEs) with advanced warning of cyber risk exposures bundled with cyber insurance coverage adaptable to the threats of today and tomorrow. Championing adaptive insurance, Cowbell follows policyholders' cyber risk exposures as they evolve through continuous risk assessment and continuous underwriting. In its unique AI-based approach to risk selection and pricing, Cowbell's underwriting platform, powered by Cowbell Factors, compresses the insurance process from submission to issue to less than 5 minutes.

Founded in 2019 and based in the San Francisco Bay Area, Cowbell has rapidly grown, now operating across the U.S., Canada, U.K., and India. This growth was recently bolstered by a successful Series C fundraising round of $60 million from Zurich Insurance. This investment not only underscores the confidence in Cowbell's mission but also accelerates our capacity to revolutionize cyber insurance on a global scale. With the backing of over 25 prominent reinsurance partners, Cowbell is poised to redefine how SMEs navigate the evolving landscape of cyber threats.

**Position: Cybersecurity Advisor**

We are seeking a highly skilled and business-focused Cybersecurity Advisor with a proven ability to deliver technical security assessments while engaging directly with Policyholders, partners, and internal teams. This role requires strong penetration testing expertise, excellent communication skills, and the ability to translate technical findings into actionable business outcomes.

You will play a pivotal role in reducing Policyholders' risk exposure, supporting Underwriting and Claims, and contributing to Cowbell's Resiliency Services. By combining technical depth with policyholder engagement, you will help align security execution with business objectives and drive measurable value for stakeholders.

**Key Responsibilities**

- Conducting penetration testing, assessing and exploiting security flaws, reporting findings, collaborating on remediation, and engaging with policyholders to reduce risk.
- Provide clear and detailed reports, including technical documentation and executive-level summaries.
- Collaborate with development, infrastructure, and security teams to recommend remediation strategies.
- Positively impact Cowbell's bottom line by working with Policyholders and partners to lower Policyholders' risk exposure.
- Actively support programs and assigned regions (e.g., Australia).
- Provide technical support to Underwriting by delivering risk insights during policy assessments.
- Engage directly with Policyholders through:

- Risk Assessment calls
- Subjectivity calls
- Claims calls
- Micro-Pen Testing (MPT) execution and deliveries
- Webinars and educational sessions
- Risk report creation, delivery, and introductions
- Platform introductions and walkthroughs, as needed
- Responding to general security inquiries

- Document and maintain historical calls and questionnaires within the Cowbell Platform.
- Support Cowbell's Resiliency Services by delivering advisory and security services that enhance Policyholder resilience.

**Stakeholder Engagement**

- Act as the primary liaison with Policyholders, Underwriting, and Claims teams to ensure security assessments align with business needs.
- Translate complex technical findings into actionable risk insights that support underwriting decisions and resiliency outcomes.
- Communicate status, key risks, and remediation dependencies clearly to Policyholders and cross-functional teams.
- Cooperate with internal Product, Security, and Resiliency Services teams to ensure Cowbell's platform and reports deliver measurable value to stakeholders.

**Team Coordination**

- Cooperate with cross-functional teams including Underwriting, Claims, Engineering, and Resiliency Services
- Foster a culture of knowledge-sharing, accountability, and continuous learning within the security assessment team.
- Coordinate the execution and delivery of Multi-Point Testing (MPTs), risk assessments, and policyholder-facing reports to ensure timely and accurate delivery.

**Process & Delivery Excellence**

- Champion penetration testing and security assessment best practices to ensure consistency, accuracy, and measurable risk reduction for Policyholders.
- Leverage data-driven insights to optimize assessment processes and improve overall delivery quality.

**Qualifications**

- Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- 4+ years of experience in penetration testing, ethical hacking, or offensive security.

**Technical Skills**

- **Operating Systems & Networking**: Proficient in Windows, Linux, and macOS; strong grasp of TCP/IP, DNS, HTTP/S, VPNs, routing, and common network protocols.
- **Penetration Testing Tools**: Expertise with Metasploit, Burp Suite, Wireshark, Nessus, Nmap, Netcat, Nuclei, Ni