Product Owner- Security Content
Graylog: Empowering Threat Detection, Investigation, & Response Solutions with Cutting-Edge Technology
Graylog specialises in delivering top-notch Threat Detection, Investigation, & Response (TDIR) solutions, backed by our latest addition, the Graylog API security platform. As a renowned centralised log management (CLM) and Security Information Event Management (SIEM) provider, we offer unparalleled fast and efficient log analysis capabilities in critical areas such as security, compliance, operations, and DevOps.
Our enterprise solution enables organisations globally to capture, store, and analyse terabytes of machine data in near-real time while our open-source product has been deployed in more than 50,000 installations worldwide, empowering individuals and small teams to perform basic log consolidation, analysis, and search functions at no cost.
We're a remote-friendly company with locations in Hamburg, Munich, London, Boulder, and headquarters in Houston, TX. If you live near an office and want to be part of said office great. Nearish to an office and want to have the ability to hot desk? No problem, and if you're not near an office and wish to work remotely, all good!
Recent achievements for Graylog have been inclusion in the 2021 Deloitte Technology Fast 500™, we took home two of the most prestigious cybersecurity awards in SIEM and DevSecOps from Cyber Defence Magazine at RSA in 2023, and 2024 saw us take home gold and become the Globee Winner for Security Information & Event Management and the 2024 Globee Winner for Threat Hunting, Detection, Intelligence, and Response.
Graylog was named a “Leader” and “Fast Mover” in GigaOM’s 2024 Radar Report for SIEM and 2025 has seen Graylog recognized in BuiltIn’s 2025 Best Places to Work list.
Who we’re looking for;
Graylog is currently recruiting for a Product Owner, Security Content to join our dynamic product team. The Product Owner, Security Content is a pivotal role in shaping and delivering on our Security Content roadmap across three key areas: threat detection engineering, compliance content, and log source support.
You’ll collaborate closely with internal stakeholders, external security research partners, and the wider cybersecurity community to deliver impactful and relevant security content that empowers our customers to detect and respond to threats and demonstrate compliance with regulatory mandates effectively.
The Product Owner, Security Content will report to our VP of Product Management based in the US.
Additional responsibilities will include but are not limited to;
Collaborate with the product team to define and prioritize the security content roadmap, ensuring alignment with strategic goals and customer needs.
Manage the development and maintenance of log source support content, ensuring compatibility with evolving systems and technologies.
Guide the creation of high-quality threat detection engineering content aligned to focused security use cases, including rules, queries, and playbooks.
Develop and maintain compliance content that enables customers to demonstrate their ability to meet their industry standards and regulatory requirements.
Act as the primary liaison between the company and security research partners, such as SOCPrime and TruKnow, to source and integrate cutting-edge security research.
Monitor cybersecurity trends and customer feedback to continuously refine and expand the security content portfolio.
Collaborate with Engineering, Marketing, and Customer Success teams to ensure the successful delivery and adoption of security content initiatives.
Track and measure the effectiveness of security content offerings, leveraging data to inform future improvements.
Support the sales and enablement teams by providing insights and training on the value and usage of security content.
Represent the company at industry events and engage with the cybersecurity community to advocate for the company’s security content strategy.
A little bit about you;
You’ll possess a well-rounded understanding of cybersecurity principles, including log management and security threat detection, with experience working with SIEM, SOAR, or EDR platforms and familiarity with log sources, such as firewalls, endpoint protection, cloud platforms, and network devices.
You will have hands-on experience in creating or managing threat detection content, including detection rules, correlation logic, and response playbooks with an understanding of common threat actors, attack tactics (e.g. MITRE ATT&CK framework), and Indicators of Compromise (IOCs).
Working knowledge of industry standards and regulations such as PCI DSS, GDPR, HIPAA, SOC 2, and NIST frameworks.
Previous experience in a security operations centre is a plus.
Demonstrated ability to translate customer feedback into actionable product improvements.
Just some of the reasons why to join Graylog;
Opportunity to work with a globally distributed and diverse team.
Grow and develop professionally and personally in a fast-growing environment.
Choice of the latest equipment to help you succeed.
Monthly allowance to support your commute costs and support outfitting your work from home environment.
Equity. We have a stake in you, you should have a stake in us.
Here at Graylog, you'll find a diverse group of experienced professionals who love to have fun while meeting the needs of our customers with the best solution and customer service available.
Here at Graylog, you'll find a diverse group of experienced professionals who love to have fun while meeting the needs of our customers with the best solution and customer service available.
Our values
Openness- As a global company, we encourage our people to bring their backgrounds, ideas, and perspectives to our collective work. We lead with integrity and are committed to doing what is best for the Graylog community.
Collaboration- Through mutual respect, trust, and candid communication across all teams, we deliver the best ideas and results.
Useful Innovation- We take calculated risks to find new ways to innovate. By continuously improving ourselves, processes, and technologies, we deliver the best solution for our customers.
Ownership- As owners, we take the initiative to solve internal and external problems while supporting peer success and holding ourselves accountable for delivering the best work. We do this from a place of high trust.
Do the Right Thing!- Comfort and safety come from knowing that everyone will do the right thing, even when nobody's looking.
For further information please submit an application and a member of the Graylog People Team will be in touch.
About the job
Apply for this position
Product Owner- Security Content
Graylog: Empowering Threat Detection, Investigation, & Response Solutions with Cutting-Edge Technology
Graylog specialises in delivering top-notch Threat Detection, Investigation, & Response (TDIR) solutions, backed by our latest addition, the Graylog API security platform. As a renowned centralised log management (CLM) and Security Information Event Management (SIEM) provider, we offer unparalleled fast and efficient log analysis capabilities in critical areas such as security, compliance, operations, and DevOps.
Our enterprise solution enables organisations globally to capture, store, and analyse terabytes of machine data in near-real time while our open-source product has been deployed in more than 50,000 installations worldwide, empowering individuals and small teams to perform basic log consolidation, analysis, and search functions at no cost.
We're a remote-friendly company with locations in Hamburg, Munich, London, Boulder, and headquarters in Houston, TX. If you live near an office and want to be part of said office great. Nearish to an office and want to have the ability to hot desk? No problem, and if you're not near an office and wish to work remotely, all good!
Recent achievements for Graylog have been inclusion in the 2021 Deloitte Technology Fast 500™, we took home two of the most prestigious cybersecurity awards in SIEM and DevSecOps from Cyber Defence Magazine at RSA in 2023, and 2024 saw us take home gold and become the Globee Winner for Security Information & Event Management and the 2024 Globee Winner for Threat Hunting, Detection, Intelligence, and Response.
Graylog was named a “Leader” and “Fast Mover” in GigaOM’s 2024 Radar Report for SIEM and 2025 has seen Graylog recognized in BuiltIn’s 2025 Best Places to Work list.
Who we’re looking for;
Graylog is currently recruiting for a Product Owner, Security Content to join our dynamic product team. The Product Owner, Security Content is a pivotal role in shaping and delivering on our Security Content roadmap across three key areas: threat detection engineering, compliance content, and log source support.
You’ll collaborate closely with internal stakeholders, external security research partners, and the wider cybersecurity community to deliver impactful and relevant security content that empowers our customers to detect and respond to threats and demonstrate compliance with regulatory mandates effectively.
The Product Owner, Security Content will report to our VP of Product Management based in the US.
Additional responsibilities will include but are not limited to;
Collaborate with the product team to define and prioritize the security content roadmap, ensuring alignment with strategic goals and customer needs.
Manage the development and maintenance of log source support content, ensuring compatibility with evolving systems and technologies.
Guide the creation of high-quality threat detection engineering content aligned to focused security use cases, including rules, queries, and playbooks.
Develop and maintain compliance content that enables customers to demonstrate their ability to meet their industry standards and regulatory requirements.
Act as the primary liaison between the company and security research partners, such as SOCPrime and TruKnow, to source and integrate cutting-edge security research.
Monitor cybersecurity trends and customer feedback to continuously refine and expand the security content portfolio.
Collaborate with Engineering, Marketing, and Customer Success teams to ensure the successful delivery and adoption of security content initiatives.
Track and measure the effectiveness of security content offerings, leveraging data to inform future improvements.
Support the sales and enablement teams by providing insights and training on the value and usage of security content.
Represent the company at industry events and engage with the cybersecurity community to advocate for the company’s security content strategy.
A little bit about you;
You’ll possess a well-rounded understanding of cybersecurity principles, including log management and security threat detection, with experience working with SIEM, SOAR, or EDR platforms and familiarity with log sources, such as firewalls, endpoint protection, cloud platforms, and network devices.
You will have hands-on experience in creating or managing threat detection content, including detection rules, correlation logic, and response playbooks with an understanding of common threat actors, attack tactics (e.g. MITRE ATT&CK framework), and Indicators of Compromise (IOCs).
Working knowledge of industry standards and regulations such as PCI DSS, GDPR, HIPAA, SOC 2, and NIST frameworks.
Previous experience in a security operations centre is a plus.
Demonstrated ability to translate customer feedback into actionable product improvements.
Just some of the reasons why to join Graylog;
Opportunity to work with a globally distributed and diverse team.
Grow and develop professionally and personally in a fast-growing environment.
Choice of the latest equipment to help you succeed.
Monthly allowance to support your commute costs and support outfitting your work from home environment.
Equity. We have a stake in you, you should have a stake in us.
Here at Graylog, you'll find a diverse group of experienced professionals who love to have fun while meeting the needs of our customers with the best solution and customer service available.
Here at Graylog, you'll find a diverse group of experienced professionals who love to have fun while meeting the needs of our customers with the best solution and customer service available.
Our values
Openness- As a global company, we encourage our people to bring their backgrounds, ideas, and perspectives to our collective work. We lead with integrity and are committed to doing what is best for the Graylog community.
Collaboration- Through mutual respect, trust, and candid communication across all teams, we deliver the best ideas and results.
Useful Innovation- We take calculated risks to find new ways to innovate. By continuously improving ourselves, processes, and technologies, we deliver the best solution for our customers.
Ownership- As owners, we take the initiative to solve internal and external problems while supporting peer success and holding ourselves accountable for delivering the best work. We do this from a place of high trust.
Do the Right Thing!- Comfort and safety come from knowing that everyone will do the right thing, even when nobody's looking.
For further information please submit an application and a member of the Graylog People Team will be in touch.