Senior Software Engineer | Security
Position Summary
We are ExtraHop. We're on a mission to provide security teams with the intelligence they need to confront and stop advanced threats like supply chain attacks, zero day exploits, and ransomware attacks. Cyber attackers still have the advantage. We’re taking it back with creativity, intellectual curiosity, and a sense of humor. Are you ready to help us reclaim the upper hand
We are seeking a highly skilled and motivated Senior Software Engineer | Security with a strong software and detection engineering background to join our Detection Engineering (DE) team and help expand ExtraHop’s industry leading detection coverage.
An ideal candidate will have strong software engineering, networking, and cybersecurity fundamentals. This position works closely with security researchers and data scientists to develop cutting edge network threat detections that leverage rule-based network observations as well as ML-powered anomaly detections.
As a Senior Software Engineer | Security, you will be working as part of a team dedicated to delivering industry leading detection capabilities. You will be expected to work with a high level of autonomy, to mentor other team members, and to demonstrate a high level of ownership of your areas of responsibility.
ExtraHop offers an exciting, high-energy, and versatile environment in which people are encouraged and supported to collaborate on industry-leading technology and create a world-class engineering team while they develop and enrich their individual growth. And we're doing it with creativity, intellectual curiosity, and deep critical thinking.
ExtraHop R&D supports fully-flexible work options that include full-time onsite, hybrid, and fully remote working arrangements. Except for a few roles that require physical access, we believe in supporting you in making the choice that works best for you and makes the team successful.
Key Responsibilities
Detection Engineering:
Develop network threat detectors by leveraging rule-based and ML-based detection strategies
Reproduce attacks in a lab environment using live tools and recorded PCAP traffic, and perform threat hunts on aggregated log data, in order to identify malicious behaviors and develop techniques to detect them
Collaborate with Threat Research and Data Science teams to gain insight on attacker techniques and take advantage of the latest machine learning models to detect attacker behavior
Work with infrastructure teams to help develop and improve tools that Detection Engineering and Threat Research teams use in developing and testing detections.
Mentorship:
Mentor and coach other Security Engineers regarding detector development and network threats
Actively participate in code review to ensure quality and uplevel other engineers
Required Qualifications
Excellent engineering chops
7+ years of experience in software engineering
Solid knowledge of Javascript and Python
In-depth knowledge of networking fundamentals, including the OSI model and excellent working knowledge of the key protocols from Layer 2 through Layer 7
Experience developing solutions using cloud-native technologies
Self-starter with a strong problem-solving track record and ability to grow and learn
Excellent teammate and collaborator who can iterate on problems quickly.
Proficient at communication in both spoken and written forms, including documentation.
Preferred Qualifications
Experience working with network packet-level data using tools like Wireshark, tshark, tcpdump, tcprewrite, and Scapy to directly interact with this data.
Knowledge of cloud and on-premise cybersecurity threat models - attacker behavior, tools, techniques, and practices. Ability to translate this knowledge into user-facing threat detections.
The salary for this role is between $150,000 - $180,000 per year + bonus
About the job
Apply for this position
Senior Software Engineer | Security
Position Summary
We are ExtraHop. We're on a mission to provide security teams with the intelligence they need to confront and stop advanced threats like supply chain attacks, zero day exploits, and ransomware attacks. Cyber attackers still have the advantage. We’re taking it back with creativity, intellectual curiosity, and a sense of humor. Are you ready to help us reclaim the upper hand
We are seeking a highly skilled and motivated Senior Software Engineer | Security with a strong software and detection engineering background to join our Detection Engineering (DE) team and help expand ExtraHop’s industry leading detection coverage.
An ideal candidate will have strong software engineering, networking, and cybersecurity fundamentals. This position works closely with security researchers and data scientists to develop cutting edge network threat detections that leverage rule-based network observations as well as ML-powered anomaly detections.
As a Senior Software Engineer | Security, you will be working as part of a team dedicated to delivering industry leading detection capabilities. You will be expected to work with a high level of autonomy, to mentor other team members, and to demonstrate a high level of ownership of your areas of responsibility.
ExtraHop offers an exciting, high-energy, and versatile environment in which people are encouraged and supported to collaborate on industry-leading technology and create a world-class engineering team while they develop and enrich their individual growth. And we're doing it with creativity, intellectual curiosity, and deep critical thinking.
ExtraHop R&D supports fully-flexible work options that include full-time onsite, hybrid, and fully remote working arrangements. Except for a few roles that require physical access, we believe in supporting you in making the choice that works best for you and makes the team successful.
Key Responsibilities
Detection Engineering:
Develop network threat detectors by leveraging rule-based and ML-based detection strategies
Reproduce attacks in a lab environment using live tools and recorded PCAP traffic, and perform threat hunts on aggregated log data, in order to identify malicious behaviors and develop techniques to detect them
Collaborate with Threat Research and Data Science teams to gain insight on attacker techniques and take advantage of the latest machine learning models to detect attacker behavior
Work with infrastructure teams to help develop and improve tools that Detection Engineering and Threat Research teams use in developing and testing detections.
Mentorship:
Mentor and coach other Security Engineers regarding detector development and network threats
Actively participate in code review to ensure quality and uplevel other engineers
Required Qualifications
Excellent engineering chops
7+ years of experience in software engineering
Solid knowledge of Javascript and Python
In-depth knowledge of networking fundamentals, including the OSI model and excellent working knowledge of the key protocols from Layer 2 through Layer 7
Experience developing solutions using cloud-native technologies
Self-starter with a strong problem-solving track record and ability to grow and learn
Excellent teammate and collaborator who can iterate on problems quickly.
Proficient at communication in both spoken and written forms, including documentation.
Preferred Qualifications
Experience working with network packet-level data using tools like Wireshark, tshark, tcpdump, tcprewrite, and Scapy to directly interact with this data.
Knowledge of cloud and on-premise cybersecurity threat models - attacker behavior, tools, techniques, and practices. Ability to translate this knowledge into user-facing threat detections.
The salary for this role is between $150,000 - $180,000 per year + bonus