Principal Security Researcher, Huntress

• We are looking for that jack of all trades who brings broad experience to each challenge presented
• Familiarity with product management, incident response, social engineering, psychology, education, and managed service provider tools are additional ways to differentiate yourself
• Expert in various multi-OS & multi-cloud vendor log types + how they can be used to surface attacker tradecraft
• Proven track record building, deploying, and maturing SIEM technology (vendor agnostic, preferred)
• Expert knowledge of SOC investigations, incident response and how to build security product requirements to combat threats
• Expert in detection coverage gap analysis with a focus on MITRE ATT&CK
• Expert at translating current trends in cyber security for both technical and non-technical audiences
• Expert at translating MITRE TTPs to Customer value propositions
• Expert at researching emerging tradecraft

• Reports to: Senior Manager, Product Research
• The Huntress Security team has the unique honor of waking up every morning knowing we will make hackers regret targeting our partners and customers
• As a Security Product Researcher, we’re looking for someone who wants to pour all of their creativity into building and implementing simple solutions that are disproportionately effective at countering these constantly evolving threats
• Competitive candidates have experience managing, deploying, and securing SMB environments utilizing various security software, best practices, and automation tools
• An effective Security Researcher fosters highly collaborative environments between the Product, Engineering, and Security teams to accelerate our mission and secure the 99% of businesses that fall below the enterprise poverty line
• This collaboration is needed to produce and prioritize a unified technical vision delivering our most impactful features and capabilities
• Lead the security Capabilities we bring to market, owning the layered defense strategy gained by combining multiple log sources
• Define the value of a log. Not all log sources have equal security value, and not all logs from a single source hold the same value
• You will lead the processing strategy for our SIEM product to extract maximum security value from the narrowest set of logs that distinguish between suspicious and malicious events to reach the highest accuracy true positive rate
• Simulate attacks from SOC incidents, collecting, synthesizing, & combining relevant logs to generate custom detection logic, log aggregation, & security technologies that detect intrusions or misconfigurations derived from log analysis
• Operationalize SIEM by translating security research from incident investigations and attack path testing into product outcomes
• Perform independent research on attacks and convert findings into engineering requirements for new security capabilities
• Innovate new detection correlation opportunities
• Build capability & feature use cases that integrate needs from SOC analysts and Incident Response
• Architect log source aggregation to ensure SIEM alerts are highly accurate. We strive for 99% accuracy for critical alerts
• Partner with engineering to integrate disparate log sources into unified data schema
• Own & nurture the cross-department relationships critical to successful product delivery & launch
• Document research findings through technical write-ups, advisories, internal reports, blogs, CFPs & presentations
• Proven organizational and program management skills, with a keen attention to detail and a sense of urgency to deliver an exceptional product under tight deadline pressures
• Eagerness to engage, report, and be accountable to executive stakeholders
• Passion to translate your expertise in nontechnical ways to deliver impactful security outcomes that protect the 99%
• Promote Huntress’ reputation through media interaction, public speaking, and blogs
• Educate the public on how to be security savvy in novel and fun ways

• 100% Remote: We’ve been a remote team from day one—and we’ve got the tools, systems and processes to be successful from anywhere in the world.
• PTO & Parental Leave: We offer 12 weeks of paid parental leave, along with vacation, sick time and floating holidays.
• 401K Match: We offer a 5% contribution to your 401k—even if you’re not paying into it yourself.
• Growth Opportunities: We’re super committed to employee development, both within and outside of Huntress – including education assistance programs, hands-on training and more.
• Health Benefits: Medical, dental, vision, and everything you’d expect from a company that cares about its team members.
• Stock Options: All full-time employees get stock options and benefit from the continued growth and success of the company.

Total funding: $289.8m

In a world of increasingly sophisticated cyberthreats, many SMBs don’t have the resources to protect themselves. Huntress addresses the need for robust cybersecurity solutions for small to medium sized businesses, which make up 99% of the US business landscape.