Senior Cloud Security Engineer - Remote Eligible

Senior Cloud Security Engineer

Huntress is looking for a highly skilled Senior Cloud Security Engineer to join our fully remote team. You will take on the critical responsibility of securing the cloud-native infrastructure that powers our SaaS platform and internal processes. This role is perfect for a hands-on engineer who is passionate about designing, building, and defending highly scalable and secure cloud environments.

You will be a key player in ensuring our platform remains secure and resilient, enabling us to confidently protect the environments of our rapidly growing customer base.

Responsibilities

• Product Security: Huntress is a B2B SaaS company providing a range of cybersecurity services to our partners and customers. You will be a key member of the internal security team and help drive effective security detection and response across our production platform. A requirement for this role is having worked in a B2B SaaS company providing cloud-hosted services to customers. You are right at home interacting with developers who work in SaaS production environments.
• Secure Cloud Architecture: You will design, evaluate, and implement architectural security standards for our AWS, Azure, and PaaS cloud platforms. You'll be a key stakeholder when we onboard new technologies to meet business goals and objectives.
• DevSecOps Collaboration: Partner directly with internal DevOps and Platform teams to build security into every stage of the infrastructure-as-code lifecycle.
• Threat Modeling: You are comfortable reviewing architecture and product development pitches, leveraging your extensive security knowledge to ensure security and privacy by design.
• Platform Vulnerability and Risk Management: You'll manage a robust vulnerability management program specifically tailored to our cloud environments.
• Threat Detection & Response: You will develop strategies to respond to and recover from security incidents affecting the Huntress platform. You'll also implement tools, including runtime and build-level controls, to assist in threat detection and prevention.
• Own Security Compliance: This role will have the primary responsibility of owning cloud security controls end-to-end, including the design, monitoring, and remediation of control failures.

What You Bring To The Team:

• Flexible Security Mindset: You approach security as a business enabler, with a passion for striking the right balance between security, usability, and agility. You bring a measured, risk-based approach to solving security risks and challenges.
• SaaS Background: You have experience working within a fast-paced SaaS company and understand the unique security challenges of a cloud-first environment.
• Value Documentation: You recognize documentation as a critical tool for showing impact and value. You effectively detail security recommendations, process improvements, architectural decisions, and innovative ideas to ensure clarity and organizational buy-in.
• A Security-as-Code / Infrastructure-as-Code Mindset: You are comfortable with IaC tools such as Terraform/Spacelift as well as other engineering tools such as CircleCI and Git. You are comfortable reading cloud configurations and understanding architecture from the code up.
• Proficiency with Scripting: You are comfortable with a scripting language in order to get things done. Whether that is Python or PowerShell, or something else entirely, you leverage scripting to parse data or comb through logs efficiently.

Team Player: You are an effective collaborator and communicator both cross-functionally and functionally.

• Deep Cloud Expertise: You possess extensive knowledge of AWS and/or Azure and other cloud platforms, with demonstrated expertise in designing secure cloud, application, and system architectures. You are intimately familiar with cloud-native security tooling, logging, identity management, and security policy.
• Incident Response Knowledge: You have a working knowledge of incident response processes and strategies and are familiar with computer forensic tools and methods. You are familiar with a query language (jQL, SQL, Splunk, etc.) and are comfortable combing through datasets during an incident.

Remote-First Collaboration: You are an excellent communicator, capable of thriving and driving initiatives in a distributed, asynchronous work environment.

What We Offer:

• 100% remote work environment - since our founding in 2015
• Generous paid time off policy, including vacation, sick time, and paid holidays
• 12 weeks of paid parental leave
• Highly competitive and comprehensive medical, dental, and vision benefits plans
• 401(k) with a 5% contribution regardless of employee contribution
• Life and Disability insurance plans
• Stock options for all full-time employees
• One-time $500 reimbursement for building/upgrading home office
• Annual allowance for education and professional development assistance
• $75 USD/month digital reimbursement
• Access to the BetterUp platform for coaching, personal, and professional growth

Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.

We discriminate against hackers who try to exploit businesses of all sizes.