Principal Software Engineer, Security, Detection & Response
New
H
HubSpotInformation Security
Remote - USAFull-TimePrincipal
Salary266,200 - 425,900 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 10-15 years
Requirements
- 10-15 years of experience in software development and information security.
- Expertise in detection engineering, threat intelligence, and incident response.
- Proven experience designing and implementing automated detection systems.
- Experience managing large-scale security logging infrastructure (e.g., Splunk, SIEM).
- Expert knowledge of endpoint and network detection (EDR/SASE).
- Hands-on experience with CrowdStrike Falcon.
- Deep understanding of incident response frameworks such as NIST 800-61 and SANS.
- Experience managing/ingesting Indicators of Compromise (IOCs) and mapping to STIX/TAXII.
- Demonstrated ability to correlate telemetry across identity, cloud, and network environments.
- Relevant industry certifications such as GCIH, GCFA, or CISSP.
Responsibilities
- Drive the development of automated detection systems and prioritize mitigations based on current threats.
- Contribute code to security automations and review designs for detection reliability.
- Provide technical mentorship to engineers, championing detection-in-depth.
- Act as a key point of contact for threat intelligence and incident response expertise.
- Support incident response efforts by aiding in investigations and anticipating future actor behaviors.
- Partner with cross-functional teams and product managers to ensure adherence to standards like NIST and SANS.
- Manage and ingest Indicators of Compromise (IOCs) using platforms like Splunk and CrowdStrike.
- Guide architectural decisions for corporate security logging infrastructure and SIEM.
View Full Description & ApplyYou'll be redirected to the employer's site
