Senior Cloud Security Engineer

October 29

Apply Now

Receive Emails with Similar Jobs

Huntress

WebsiteLinkedInAll Job Openings

Cybersecurity • SaaS • Enterprise

Huntress is a cybersecurity firm that provides managed detection, investigation, and response solutions to protect endpoints, identities, and email environments. It offers a platform with managed EDR, security awareness training, ITDR for Microsoft 365, and SIEM solutions, all supported by a 24/7 Security Operations Center. Huntress is designed to secure small and medium-sized businesses against cyber threats. Their services help organizations across industries, ensuring robust protection and compliance, especially in environments like education, finance, healthcare, manufacturing, and government.

201 - 500 employees

🔒 Cybersecurity

☁️ SaaS

🏢 Enterprise

📋 Description

• Product Security: Huntress is a B2B SaaS company providing a range of cybersecurity services to our partners and customers. You will be a key member of the internal security team and help drive effective security detection and response across our production platform. A requirement for this role is having worked in a B2B SaaS company providing cloud-hosted services to customers. You are right at home interacting with developers who work in SaaS production environments. • Secure Cloud Architecture: You will design, evaluate, and implement architectural security standards for our AWS, Azure, and PaaS cloud platforms. You’ll be a key stakeholder when we onboard new technologies to meet business goals and objectives. • DevSecOps Collaboration: Partner directly with internal DevOps and Platform teams to build security into every stage of the infrastructure-as-code lifecycle. • Threat Modeling: You are comfortable reviewing architecture and product development pitches, leveraging your extensive security knowledge to ensure security and privacy by design. • Platform Vulnerability and Risk Management: You'll manage a robust vulnerability management program specifically tailored to our cloud environments. • Threat Detection & Response: You will develop strategies to respond to and recover from security incidents affecting the Huntress platform. You'll also implement tools, including runtime and build-level controls, to assist in threat detection and prevention. • Own Security Compliance: This role will have the primary responsibility of owning cloud security controls end-to-end, including the design, monitoring, and remediation of control failures.

🎯 Requirements

• Flexible Security Mindset: You approach security as a business enabler, with a passion for striking the right balance between security, usability, and agility. You bring a measured, risk-based approach to solving security risks and challenges. • SaaS Background: You have experience working within a fast-paced SaaS company and understand the unique security challenges of a cloud-first environment. • Value Documentation: You recognize documentation as a critical tool for showing impact and value. You effectively detail security recommendations, process improvements, architectural decisions, and innovative ideas to ensure clarity and organizational buy-in. • A Security-as-Code / Infrastructure-as-Code Mindset: You are comfortable with IaC tools such as Terraform / Spacelift as well as other engineering tools such as CircleCI and Git. You are comfortable reading cloud configurations and understanding architecture from the code up. • Proficiency with Scripting: You are comfortable with a scripting language in order to get things done. Whether that is Python or PowerShell, or something else entirely, you leverage scripting to parse data or comb through logs efficiently. • Team Player: You are an effective collaborator and communicator both cross-functionally and functionally. • Deep Cloud Expertise: You possess extensive knowledge of AWS and/or Azure and other cloud platforms, with demonstrated expertise in designing secure cloud, application, and system architectures. You are intimately familiar with cloud-native security tooling, logging, identity management, and security policy. • Incident Response Knowledge: You have a working knowledge of incident response processes and strategies and are familiar with computer forensic tools and methods. You are familiar with a query language (jQL, SQL, Splunk, etc.) and are comfortable combing through datasets during an incident.

🏖️ Benefits

• 100% remote work environment - since our founding in 2015 • Generous paid time off policy, including vacation, sick time, and paid holidays • 12 weeks of paid parental leave • Highly competitive and comprehensive medical, dental, and vision benefits plans • 401(k) with a 5% contribution regardless of employee contribution • Life and Disability insurance plans • Stock options for all full-time employees • One-time $500 reimbursement for building/upgrading home office • Annual allowance for education and professional development assistance • $75 USD/month digital reimbursement • Access to the BetterUp platform for coaching, personal, and professional growth