Manager, Detection Engineering & Threat Hunting

Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact.

Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection.

Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other.

The Detection Engineering team is responsible for fortifying the platform's ability to identify and stop malicious activity by designing, testing, and deploying detection logic across millions of endpoints. This team translates threat intelligence and adversary emulation findings into highly effective, production-ready detections and collaborates closely with Product and Engineering teams to shape future detection opportunities.

This role is accountable for defining the strategy, processes, and technical roadmap for Huntress's Detection Engineering function. You will be laser-focused on scaling the detection pipeline, reducing false positives, and ensuring high-fidelity signal output. You will lead a team focused on detection rule efficacy, automation, and continuous threat validation.

• →Design, implement, and uphold internal processes to reduce latency and facilitate detection engineering work-products for data-constrained environments
• →Meet with detection engineers in a 1:1 setting weekly to socialize, focus initiatives, gather feedback, and provide feedback, and enable analysts to progress rapidly in their careers
• →Work with the Product and Engineering organizations to prioritize the creation of new capabilities with the goal of producing highly reliable detections
• →Engage with our Support organization to create streamlined workflows for partner/constituent requests for detection engineering support, not limited to responding to false positives and developing new detections
• →Provide technical leadership for detection engineers with multidisciplinary expertise
• →Ensure team members fully understand the goals and objectives of Huntress’ mission and how their work fits into the bigger picture
• →Provide key input and guidance to company stakeholders such as Marketing, the SOC, Support, and Product
• →Develop, track, and report on Objectives and Key Results linked to the Detection Engineering focus initiatives  
• →Develop detection opportunities for new technologies and services that Huntress brings to market
• →Participate in public speaking engagements in both webinar and in-person formats

• Experience in leading cybersecurity teams with diverse skills and backgrounds in one or more of the following areas: Security Operations, Digital Forensics, Incident Response, Malware Analysis, Threat Hunting, or Detection Engineering
• 4+ years of experience in detection engineering or a related specialty (e.g., threat hunting, adversary emulation).
• 2+ years of experience managing or leading a detection engineering, threat hunting, or security research team.
• Actively engaged in the information security community by attending conferences or contributing to conversations/projects in the public domain
• Continually learning and staying up to date on the latest threat actor tradecraft, detection techniques, and security operations concepts
• Ability to identify workflows being performed and create detailed process diagrams and operating procedures
• Effective communicator of highly technical concepts to stakeholders of varying technical backgrounds
• Experience using platforms such as Elasticsearch or Data Dog to analyze and review data at scale
• Demonstrated experience leading initiatives or projects that required delegation and accountability to achieve success
• Data-driven approach with experience in Data Science concepts or statistical analyses