Senior Adversary Pursuit Engineer

Flock Safety Inc.

Job Overview

Location

Remote - USA

Job Type

Full-time

Full Job Description

📋 Description

• Lead the design, execution, and continuous improvement of Flock’s Adversary Pursuit program, focusing on threat hunting across corporate systems, cloud environments (AWS/GCP/Azure), and operational technology networks.
• Architect and conduct technical cybersecurity exercises against Flock’s full technology stack—including hardware, software, cloud, and network—to enhance organizational readiness and detect adversarial tactics.
• Perform DFIR (Digital Forensics and Incident Response) investigations on Android IoT devices deployed at scale across public-private safety networks.
• Develop and tune high-fidelity detection rules using Splunk SPL, YARA, and Sigma based on threat hunt findings to prevent recurrence of identified threats.
• Map threat hunt outcomes to the MITRE ATT&CK framework to identify coverage gaps and prioritize improvements in detection and visibility.
• Utilize enterprise security tooling (SIEM, EDR) and develop proprietary scripts/tools to scale threat hunting capabilities across thousands of deployed devices and cloud infrastructure.
• Integrate security automation platforms (Torq, Tines, SIEM-native tools) and AI/LLM-based agentic workflows to accelerate detection and response operations.
• Collaborate with Offensive Security teams to validate custom detection rules through regular testing and red team exercises.
• Serve as a Tier 3 escalation point for SOC analysts, performing deep-dive root cause analysis on complex security incidents and providing actionable remediation guidance.
• Mentor junior and mid-level engineers by reviewing technical work, providing feedback on methodologies, and elevating the team’s overall technical proficiency.
• Define and own long-term threat hunting roadmaps, including data ingestion requirements, coverage metrics, and prioritization of threat verticals such as specific APT groups or cloud environments.
• Leverage cyber threat intelligence to update collection priorities, refine hunt objectives, and integrate adversary TTPs into proactive detection strategies.
• Assist in developing technical tabletop exercises aligned with Flock’s risk profile and real-world cyber event scenarios to improve incident preparedness.
• Partner with Engineering, Product Security, and Infrastructure teams to recommend architectural and security improvements based on threat hunt findings.
• Contribute to the creation of an organizational Cyber Threat Profile, identifying prioritized threat actors and intelligence collection requirements.
• Support the development of a phased roadmap to mature Adversary Pursuit capabilities, including detection gap remediation and tooling enhancements integrated into regular security exercises.
• Ensure all threat hunting activities comply with FBI CJIS Security Policy requirements, including maintaining active CJIS certification as a condition of employment.

🎯 Requirements

• 5+ years of cybersecurity experience, with at least 3 years focused on DFIR and adversary threat hunting
• Proven experience conducting DFIR on Android IoT devices
• Deep hands-on expertise with SIEM, EDR, and enterprise security tooling
• Experience developing and tuning detection rules using Splunk SPL, YARA, or Sigma
• Demonstrated ability to perform threat hunts across cloud environments (AWS/GCP/Azure)
• Familiarity with MITRE ATT&CK framework and using it to map detection gaps

🏖️ Benefits

• Flexible non-accrual PTO plus 11 company holidays
• Fully-paid medical, dental, and vision insurance with HSA match
• 12 weeks of 100% paid parental leave, plus 6–8 additional weeks for birthing parents
• $50,000 lifetime maximum benefit for eligible adoption, surrogacy, or fertility expenses through Maven
• $150 monthly WFH stipend
• One-time $750 home office stipend

Skills & Technologies

Spring

AWS

Azure

GCP

Android

Design

Senior

Remote

Degree Required

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

AI Job Fit Analysis

Pro

See exactly how your profile matches this role — strengths, skill gaps, and what to do about them.

Flock Safety Inc.

Visit Website

About Flock Safety Inc.

Flock Safety provides cloud-based automated license plate recognition and video analytics for law enforcement, private communities, and businesses. Its solar-powered cameras capture vehicle details, detect crimes such as theft and violent offenses, and generate evidence packages accessible via a web platform. The company emphasizes privacy controls, encrypted data handling, and configurable retention policies. Deployed across thousands of U.S. neighborhoods and agencies, the system integrates with existing public safety workflows to accelerate investigations, reduce response times, and improve crime clearance rates without adding patrol resources.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.