🛠 Tech Stack

🎯 What You'll Do

• Design and maintain a structured library of hypothesis-driven hunts aligned with ATT&CK.
• Execute proactive hunts across EDR telemetry to uncover malicious activity.
• Triage emerging threats and build focused hunts with validation steps.
• Partner with Detection Engineering, MDR, and Labs to tune detection rules.

📋 Requirements

• 3+ years in security operations (threat hunting, incident response, DFIR, SOC, or pen testing).
• Strong familiarity with EDR telemetry (process, file, network, persistence).
• Proficiency with Python and Git/GitHub workflows.
• U.S. citizenship required for FedRAMP environments.

✨ Nice to Have

• SentinelOne experience.
• Broad OS internals knowledge across Windows, Linux, and macOS.
• Applied CTI skills to operationalize IOCs/TTPs.

🎁 Benefits & Perks

• 🏖️ Unlimited PTO
• 📈 Restricted Stock Program
• 👶 16-weeks gender-neutral parental leave
• 💪 Gym membership reimbursement
• 📚 Learning development at every level

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Phone Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Interview· 45 min

🚩 Heads Up

• U.S. citizenship requirement may limit applicant pool.
• No explicit remote/hybrid policy mentioned.