We're looking for a Senior Principal Threat Hunter to serve as a senior technical leader within our Cyber Defense Team.
This is a high-impact individual contributor role. You won't manage people, but you'll influence how we hunt, investigate and respond to threats across cloud and SaaS environments at scale.
You'll be the person who takes a weak signal, a piece of emerging intelligence, or an unusual customer activity pattern and turns it into a meaningful investigation, a proactive hunt, or a new detection opportunity.
You'll lead the most complex investigations, drive threat intelligence initiatives, and help define the hunting methodologies that guide our customers' security outcomes.
As one of the team's most senior practitioners, you'll act as a force multiplier across hunting, intelligence, and incident response functions, elevating technical standards, mentoring peers, and helping shape the future of our detection and response capabilities.
What You'll Do as Senior Principal Threat Hunter
- Design and execute proactive threat hunts across cloud and SaaS environments (AWS, Azure, GCP, Okta, M365), grounded in current intelligence and ATT&CK-mapped adversary behavior.
- Mature and operate a recurring threat intelligence reporting function, turning intel into hunt leads, detection opportunities, and customer-facing narratives.
- Lead incident response investigations during US business hours, from scoping through root cause; step into the Incident Commander role when required.
- Continuously monitor threat detections and deliver responsive services with thorough event analysis and judgement.
- Triage and investigate security alerts across cloud and SaaS environments, separating true threats from noise and surfacing detection gaps to the detection engineering team.
- Leverage automation and AI tooling to scale impact, and propose improvements for processes, workflows, products, and policies.
- PLUS: Exposure to detection engineering, tooling and automation development, or prior managed services (MSSP) experience.
Requirements
- 5+ years of experience in a security operations role, with a focus on threat hunting and/or threat intelligence
- Proven experience building or contributing to a structured threat hunt and/or threat intelligence program
- Incident response experience with the ability to lead investigations independently; Incident Commander experience a plus
- Working knowledge of cloud and SaaS environments (AWS, Azure, GCP, Okta, M365)
- Hands-on use of automation or AI tooling in security operations; demonstrated use, not just awareness
- Strong written and verbal communication, excellent analytical and problem-solving skills, highly independent and self-driven, and comfortable in a fast-paced and virtual environment
Some More Details and Perks
Location: US Remote
Competitive benefits package including equity, health insurance (medical, dental, vision) that is fully covered for the employee, 401K plan with a match, unlimited PTO, and more.
