Position Summary

Join ExtraHop’s Threat Research team to make an impact on cybersecurity. We’re looking for a Security Engineer I to analyze network data, detect threats and emulate cyber-attact tactics. In this role, you’ll collaborate with software engineering and product teams to support secure development practices, threat modeling, and security verification. Come work with us to define security standards for leading-edge products while aligning research insights with impactful product campaigns to defend against evolving threats.

Key Responsibilities

Provide security input and guidance for all new products and technologies. Support the operations and effectiveness of product security pipeline tools. Collaborate with engineering and product teams to provide support, conduct regular product security assessments and threat modeling. Enhance product security too long to minimize false positives and improve accuracy. Model, analyze and emulate cyber tactics, techniques and procedures (TTPs). Classify threat behaviors and refine threat intelligence. Maintain and update internal security documentation and standards to uphold best practices. Design and implement tools to automate and scale security processes. Support development of incident detection tools to automate and scale security processes. Align research findings with product campaigns to drive impactful cybersecurity solutions.

Required Qualifications

Bachelors in cybersecurity, computer science or related fields. New grad or up to 2 years’ related and transferable experience. Foundational skills in software engineering and network security; C/C++, Go, JavaScript, Python, React, Redux. Familiarity with cloud environments like Azure, including lab development and managing security pipeline tools. Skills to manage and optimize product security tooling to reduce false positives and to improve operational efficiencies. Ability to maintain internal security documentation and promote best practices. Familiarity with incident detection and response efforts.  Strong interpersonal skills to foster collaboration.

Preferred Qualifications

Proficiency in scripting or programming languages. Familiarity performing product security assessments and threat modeling. Experience designing and implementing tools to automate and scale security processes. Proficiency in packet analysis and working with network traffic. Knowledge of security guidance for developing and assessing new products and technologies. Understanding of network protocols and the OSI model. Previous experience with secure software development lifecycle practices. Ability to align technical insights with customer needs and business goals.