Senior Security Researcher, SIEM

📋 Description

• • Join Huntress Labs, a dynamic and rapidly growing cybersecurity company, as a Senior Security Researcher specializing in SIEM technology. This is a fully remote position within the United States, reporting directly to the Director of Product Research. We are looking for a passionate and skilled individual to play a pivotal role in shaping our SIEM product strategy and enhancing our threat detection capabilities. At Huntress, we are on a mission to democratize cybersecurity, making enterprise-grade protection accessible to all businesses, not just the elite. Founded by former NSA cyber operators, we protect millions of endpoints and identities worldwide, empowering under-resourced IT teams with robust security solutions. Our unique 'One Team' advantage integrates cutting-edge technology with our industry-leading Security Operations Center (SOC), ensuring a seamless and effective security posture for our clients.
• • In this critical role, you will be instrumental in defining the true security value of log data. You will meticulously analyze various log sources to determine their significance and optimize our SIEM processing strategy, ensuring we extract maximum security insights from the most relevant data. Your expertise will directly contribute to the development and implementation of our layered defense strategy, combining multiple log sources to create a comprehensive security fabric. You will lead the charge in defining and implementing detection strategies for a wide array of vendor log sources, ensuring broad and deep visibility into potential threats.
• • A significant aspect of this role involves leveraging Artificial Intelligence (AI) for advanced threat detection. You will explore and implement AI-driven techniques to identify sophisticated threats that might evade traditional detection methods. Furthermore, you will actively hunt threat actors, delving into their tactics, techniques, and procedures (TTPs) to uncover initial access vectors, methods of abuse, and persistence mechanisms within target environments. This proactive hunting will inform the development of high-efficacy detections and product requirements designed to thwart attackers.
• • Your responsibilities will extend to rigorously testing attack paths. You will develop and execute methodologies to simulate real-world attacks, identifying vulnerabilities and misconfigurations. This will involve safely and ethically testing the exploitation of these weaknesses, leading to the development of reliable and weaponized Proof-of-Concept (PoC) exploits. The insights gained from these tests will be crucial for hardening our defenses and improving our product offerings. A key objective is to identify telemetry that confirms malicious activity with a high degree of confidence, even in environments with limited or non-existent baseline data.
• • You will be tasked with distinguishing between genuinely suspicious and definitively malicious login events, aiming for the highest possible accuracy in our true positive rate. This role demands continuous research and development efforts to push the boundaries of threat detection and enhance overall security posture. Your findings will be meticulously documented through technical write-ups, advisories, internal reports, and public-facing blogs, contributing to both internal knowledge sharing and external thought leadership.
• • Ensuring the accuracy and customer acceptance of Huntress SIEM alerts is paramount. We aim for an exceptional 99% accuracy rate for critical alerts, and your work will be central to achieving this goal. You will collaborate closely with the Principal Researcher to ensure unified and effective SIEM outcomes. Building high-trust, high-value product leads and fostering cross-departmental relationships will be critical for successful product delivery and launch.
• • We are seeking an individual with proven organizational skills, a keen attention to detail, and a sense of urgency to deliver exceptional results under demanding deadlines. You should possess the eagerness to engage, report, and be accountable to executive stakeholders, demonstrating a clear understanding of business impact. A passion for translating complex technical expertise into non-technical, impactful security outcomes that protect the '99%' is essential. You will also contribute to promoting Huntress' reputation through media interaction, public speaking, and blog content, educating the public on cybersecurity in novel and engaging ways.
• • This role offers a unique opportunity to make a significant impact on the cybersecurity landscape by protecting businesses of all sizes from evolving threats. If you are a driven researcher with a passion for uncovering and mitigating cyber threats, we encourage you to apply.