COMPANY > JOBS

Prelude is hiring

At Prelude, we are focused on bringing advanced security to all organizations. We are building a better defensive cyber infrastructure by making red-teaming accessible. Want to read more?

What is Prelude Operator?

Prelude Operator is a platform that acts as your red team (or augments your existing red team), allowing for continuous security assessments to be performed against your infrastructure. Operator executes chains of automated attacks and orchestrates them in ways that seek to mimic what an adversary would do if they were dropping into your system. Our first goal has been to make it as easy as possible to accomplish this, so that organizations of all sizes and capabilities can reap the benefits of having a safe overlay of adversary-like behavior running on their system. Operator can also be used to verify and validate your current defensive tools - testing whether real attacks can be detected in your existing system. It is designed as an easy-to-use desktop application with simple, transparent features and pricing. You can download it for free.

Open Roles

Security Engineer

The kinds of things we work on currently:

Skills & Experience:

  • Offensive and/or defensive warfare operations.
  • Technical proficiency with multiple programming languages (our agents are written in Golang, Python, Nim, etc...)
  • Experience using multiple offensive (Cobalt Strike, Metasploit, Burp Suite) and defensive (SIEMs, EDRs) security tools
  • Familiarity with adversary emulation tools like MITRE CALDERA, Atomic Red Team, Verodin, etc...

Where we are going/what you will be working on:

  • Prelude is investing in our own "attack chaining" research in order to make our attacks as realistic/helpful as possible
  • We are building integrations into some of the leading red/blue team tools, in order to meet our users "where they are" and make the attack/defend sequence as seamless as possible
  • We want to use collected attack metadata to build a continuously improving set of adversaries that can learn and adapt to its target

GTM Lead

How we currently work:

  • Operator is a bottom-up SaaS tool that is packaged as a desktop application. Our users are technical security engineers (red/purple/blue team)
  • We have an open-source tier: https://github.com/preludeorg, a free tier (once you download the tool), an individual professional tier ($600/yr) and an enterprise tier ($20k+/yr)
  • All of our business is currently organically-driven - through written content, social engagement and training. We have a healthy organic pipeline of free users, and a very dedicated early set of enterprise customers
  • Customer engagement is currently founder/team led

What we need help with:

  • Codifying our end-to-end "customer" funnel, starting with demand generation and ending with enterprise customer onboarding
  • Overseeing paid & organic marketing channels, cultivating our open-source community and onboarding free → professional → enterprise accounts
  • Managing our "pink badge" (https://www.prelude.org/training/pinkbadge) training program to be a primary driver of organic customers.
  • Writing content/social engagement

Skills & Experience

  • Familiarity with the security industry, specifically red-teaming/offensive security tools
  • Experience with developer-first tools and/or bottom-up sales motions

Related Content

JOBS > FAQ

Frequently Asked Questions

How do I apply?

You can email us at jobs@prelude.org and we'll get back to you. Please send anything you think will give us a good idea of your background/capabilities.

How big is Prelude currently?

We are five full-time employees - a CEO (who has had a previous startup that exited successfully), a CTO (who previously led one of the largest open-source projects in this space), a security engineer, developer/designer and operations. We are planning to grow to ~10 by the middle of 2021.

Where is Prelude located?

We are spread out across Vancouver, BC, NYC and DC - but expect the majority of the security team to be based in DC going forward (although we don't care where you are!). Remote employment is an option.

Have you raised money?

Yes - we are very well capitalized from a select group of investors with bottom-up enterprise and/or security experience. Happy to tell you more over the phone.

What makes Prelude different than other security/tech companies?

This is a nuanced question that we'd love to discuss during the interview process, but in short:

  • We are completely focused on making advanced security accessible - through design, transparent pricing, ease of use, etc...
  • We focus only bottom-up - building and selling for developers, devops, and technical security professionals. We believe that increasingly, the best enterprise software is sold bottom-up in every category.
  • We are designing products to eventually protect smaller organizations - vendors, SMBs, IT teams, not just elite/large Fortune 500 companies.
Emulate

Adversary Emulation

Mimic known threats to your organization by combining threat intelligence and continuous red teaming to emulate attacks.

Train

Defensive Training

Train yourself or your organization on real-world attacks using the first training platform integrated directly into an attack emulation platform. Perform attacks and learn how to stop them.

Desktop

Desktop Application

Prelude takes care of the complexity behind the scenes and delivers Operator as the first desktop application in autonomous red-teaming. Simple design and free to use, download it here.

Continous

Continuously Updating

New TTPs and training content added every week (and sometimes, daily). Stay up-to-date, automatically. Threat intelligence, adversary creation, TTPs and training content all updated within the desktop app.