Staff Cloud Security Engineer

Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact.

Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection.

Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other.

Huntress is looking for a highly skilled Staff Cloud Security Engineer to join our fully remote team. You will take on the critical responsibility of securing the cloud-native infrastructure that powers our SaaS platform and internal processes. This role is perfect for a hands-on engineer who is passionate about designing, building, and defending highly scalable and secure cloud environments.

You will be a key player in ensuring our platform remains secure and resilient, enabling us to confidently protect the environments of our rapidly growing customer base.

• →Product Security: Huntress is a B2B SaaS company providing a range of cybersecurity services to our partners and customers. You will be a key member of the internal product security team and help drive effective security detection and response across our production platform. A requirement for this role is having worked at a B2B SaaS company that provides cloud-hosted services to customers. You are right at home interacting with developers who work in SaaS production environments.
• →Secure Cloud Architecture: You will design, evaluate, and implement architectural security standards for our AWS, Azure, and PaaS cloud platforms. You’ll be a key stakeholder when we onboard new technologies or modify existing ones to meet business goals and objectives.
• →DevSecOps Collaboration: Partner directly with internal DevOps and Platform teams to build security into every stage of the infrastructure-as-code lifecycle. You are comfortable engaging via PRs and reviewing IaC/HCL/DSL configurations.
• →Threat Modeling: You are comfortable reviewing architecture and product development pitches, leveraging your extensive security knowledge to ensure security and privacy by design.

• →Platform Vulnerability and Risk Management: You'll manage a robust vulnerability management program specifically tailored to our cloud environments. This entails triaging high-severity alerts and coordinating with internal teams to drive mitigations or remediations.
• →Threat Detection & Response: You will develop strategies to respond to and recover from security incidents affecting the Huntress platform. You'll also implement tools, including runtime and build-level controls, to assist in threat detection and prevention.
• →Own Security Compliance: This role will have the primary responsibility of owning cloud security controls end-to-end, including the design, monitoring, and remediation of control failures.

• Flexible Security Mindset: You approach security as a business enabler, with a passion for striking the right balance between security, usability, and agility. You bring a measured, risk-based approach to solving security risks and challenges.
• SaaS Background: You have experience working within a fast-paced SaaS company and understand the unique security challenges of a cloud-first environment.
• Value Documentation: You recognize documentation as a critical tool for showing impact and value. You effectively detail security recommendations, process improvements, architectural decisions, and innovative ideas to ensure clarity and organizational buy-in.
• A Security-as-Code / Infrastructure-as-Code Mindset: You are comfortable with IaC tools such as Terraform / Spacelift, as well as other engineering tools such as CircleCI and Git. You are comfortable reading cloud configurations and understanding architecture from the code up.
• Proficiency with Scripting: You are comfortable with a scripting language in order to get things done. Whether that is Python or Go, or something else entirely, you leverage scripting to parse data or comb through logs efficiently.
• Team Player: You are an effective collaborator and communicator both cross-functionally and functionally.

• Deep Cloud Expertise: You possess extensive knowledge of AWS and/or Azure and other cloud platforms, with demonstrated expertise in designing secure cloud, application, and system architectures. You are intimately familiar with cloud-native security tooling, logging, identity management, and security policy.
• Incident Response Knowledge: You have a working knowledge of incident response processes and strategies and are familiar with computer forensic tools and methods.  You are familiar with a query language (jQL, SQL, Splunk, etc.) and are comfortable combing through datasets during an incident.
• Remote-First Collaboration: You are an excellent communicator, capable of thriving and driving initiatives in a distributed, asynchronous work environment.