Senior Security Researcher, SAT

Reports to: Director, Product Research

Location: Remote US

Compensation Range: $160,000 to $180,000 base plus bonus and equity

What We Do:

Huntress is a fully remote, global team of passionate experts and ethical badasses on a mission to break down the barriers to cybersecurity. Whether creating purpose-built security solutions, hunting down hackers, or impacting our community, our people go above and beyond to change the security game and make a real difference.

Founded in 2015 by former NSA cyber operators, Huntress protects all businesses—not just the 1%—with enterprise-grade, fully owned, and managed cybersecurity products at the price of an affordable SaaS application. The Huntress difference is our One Team advantage: our technology is designed with our industry-defining Security Operations Center (SOC) in mind and is never separated from our service.

We protect 3M+ endpoints and 1M+ identities worldwide, elevating underresourced IT teams with protection that works as hard as they do. As long as hackers keep hacking, Huntress keeps hunting.

What You’ll Do: 

Do you like getting into the weeds on all things technical, psychological, and educational, and have a desire to know how things work? Then this is the position for you. We are looking for that jack of all trades who brings broad experience to each challenge presented. The Huntress Product team has the unique honor of waking up every morning knowing we’re going to make hackers regret targeting our partners and customers. As a Security Researcher for our Security Awareness Training product, we’re looking for someone who wants to pour all of their creativity into building and implementing simple solutions that are disproportionately effective at countering these constantly evolving threats. One should have experience managing, deploying, and securing SMB environments utilizing a wide variety of security software, best practices, and automation tools. Familiarity with product management, incident response, social engineering, psychology, education, and managed service provider tools are additional ways to differentiate yourself.

Responsibilities:  

• Convert global & regionalized phishing & social engineering threats into effective and innovative training content including: templates, scenarios, simulations & landing pages
• Own the phishing + social engineering content portfolio, curating, modifying, updating, auditing, and expanding content per Product requirements
• Convert & manipulate phishing content deliverables via HTML, CSS, javascript, and proprietary platform tools
• Accelerate + rapidly expand global and regionalized phishing content library
• Perform phishing email + trend analysis for various reporting, including the Huntress Threat Report
• Collaborate with the Principal Researcher to deliver unified Security Awareness + Human Risk Management outcomes
• Write + develop security awareness training copy, instructional text, and audio/video scripts
• Deconstruct hacker tactics into learning modules and scenarios that increase cybersecurity awareness for nontechnical users
• Translate technical cybersecurity research results into social engineering attack learning scenarios that greatly improve security outcomes for nontechnical users
• Transform current threat intelligence, proprietary telemetry, and SOC incident data into actionable attack learning scenarios
• Proven organizational and project management skills, with a strong focus on detail and a sense of urgency to deliver an exceptional product under tight deadline pressures
• Eagerness to engage, report, and be accountable to executive stakeholders
• Passion to translate your expertise in nontechnical ways to deliver impactful security outcomes that protect the 99%

What You Bring To The Team: 

• Experience triaging business email compromise, performing initial access root cause analysis, email analysis + identifying email + initial access threats 
• Experience in analyzing, tracking, and defending against phishing attacks
• Experience managing a phishing simulation service, simulating phishing attacks + analyzing & reporting simulation results
• Proficiency with HTML, CSS, JavaScript
• Social engineering experience, coursework, training, certifications
• Human Computer Interaction (HCI) experience, coursework, training, certifications
• Insider threat experience, coursework, training, certifications
• User Entity Behavior Analytical (UEBA) experience, coursework, training, certifications
• Experience creating training content and messaging
• Experience with eLearning design and development

What We Offer: 

• 100% remote work environment - since our founding in 2015
• Generous paid time off policy, including vacation, sick time, and paid holidays
• 12 weeks of paid parental leave
• Highly competitive and comprehensive medical, dental, and vision benefits plans 
• 401(k) with a 5% contribution regardless of employee contribution
• Life and Disability insurance plans
• Stock options for all full-time employees 
• One-time $500 reimbursement for building/upgrading home office
• Annual allowance for education and professional development assistance 
• $75 USD/month digital reimbursement
• Access to the BetterUp platform for coaching, personal, and professional growth

Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. 

We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.  

We do discriminate against hackers who try to exploit businesses of all sizes.

Accommodations: 

If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to [email protected]. Please note that non-accommodation requests to this inbox will not receive a response. 

If you have questions about your personal data privacy at Huntress, please visit our privacy page.

#BI-Remote