Senior Security Researcher, SIEM

Location:  Remote US

Reports to: Director of Product Research

Compensation Range: $160,000 to $180,000 plus bonus and equity

What We Do:

Huntress is a fully remote, global team of passionate experts and ethical badasses on a mission to break down the barriers to cybersecurity. Whether creating purpose-built security solutions, hunting down hackers, or impacting our community, our people go above and beyond to change the security game and make a real difference.

Founded in 2015 by former NSA cyber operators, Huntress protects all businesses—not just the 1%—with enterprise-grade, fully owned, and managed cybersecurity products at the price of an affordable SaaS application. The Huntress difference is our One Team advantage: our technology is designed with our industry-defining Security Operations Center (SOC) in mind and is never separated from our service.

We protect 4M+ endpoints and 7M+ identities worldwide, elevating underresourced IT teams with protection that works as hard as they do. As long as hackers keep hacking, Huntress keeps hunting.

Responsibilities:  

• Define the value of a log. Not all log sources have equal security value, and not all logs from a single source hold the same value. You will support the processing strategy for our SIEM product to extract maximum security value from the narrowest set of logs
• Support the security Capabilities we bring to market, implement the layered defense strategy gained by combining multiple log sources
• Lead various vendor log source detection strategies + implementation
• Hunt threat actors to discover attacker initial access, abuse, and persistence
• Test attack paths. Develop high-efficacy detections & security product requirements that shut out attackers
• Safely & ethically test exploitation of vulnerabilities, misconfigurations, and attack paths that result in developing reliable and weaponized Proof-of-Concept (PoC) exploits for identified vulnerabilities
• Identify telemetry that confirms malicious activity with high confidence, even when little or no environment baselines exist
• Distinguish between suspicious and malicious login events to reach the highest accuracy true positive rate
• Conduct research and development efforts to further threat detection and security posture
• Document research findings through technical write-ups, advisories, internal reports, and blogs
• Ensure Huntress SIEM alerts are highly accurate and customer-accepted. We strive for 99% accuracy for critical alerts
• Collaborate with the Principal Researcher to deliver unified SIEM outcomes
• Build high-trust, high-value product leads and cross-department relationships critical to successful product delivery & launch
• Proven organizational skills with keen attention to detail and a sense of urgency to deliver exceptional outcomes under tight deadline pressures
• Eagerness to engage, report, and be accountable to executive stakeholders
• Passion to translate your expertise in nontechnical ways to deliver impactful security outcomes that protect the 99%
• Promote Huntress’ reputation through media interaction, public speaking, and blogs
• Educate the public on how to be security savvy in novel and fun ways

What You Bring To The Team: 

• Understand various log types + how they correlate to attacker tradecraft
• Deployed and matured SIEM technology (vendor agnostic, preferred)
• Performed successful threat hunting in SIEM platforms with particular focus on top security vendor log sources
• Developed proofs of concept & set up attack simulation environments to generate logs and text attack paths
• Experience working in a SOC
• Built a metrics-driven tuning program
• Executed coverage gap analysis
• Skilled at translating current trends in cybersecurity for both technical and non-technical audiences
• Skilled at translating MITRE TTPs to Customer value propositions
• Skilled at researching emerging tradecraft 
• Experience triaging business email compromise, performing initial access root cause analysis, incident + threat analysis, with the ability to build a SIEM log detection strategy 

What We Offer: 

• 100% remote work environment - since our founding in 2015
• Generous paid time off policy, including vacation, sick time, and paid holidays
• 12 weeks of paid parental leave
• Highly competitive and comprehensive medical, dental, and vision benefits plans 
• 401(k) with a 5% contribution regardless of employee contribution
• Life and Disability insurance plans
• Stock options for all full-time employees 
• One-time $500 reimbursement for building/upgrading home office
• Annual allowance for education and professional development assistance 
• $75 USD/month digital reimbursement
• Access to the BetterUp platform for coaching, personal, and professional growth

Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. 

We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.  

We do discriminate against hackers who try to exploit businesses of all sizes.

Accommodations: 

If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to [email protected]. Please note that non-accommodation requests to this inbox will not receive a response. 

Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.

#BI-Remote