Huntress

Reports to: Manager, SOC Support Location: Remote US Compensation Range: $50,000 to $65,000 base plus bonus and equity What We Do: Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact. Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection. Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other. What You’ll Do: This is an entry-level role in which you will act as an intermediary between our partners/customers and our Security Operations Center (SOC) team. To facilitate effective service delivery and ensure partner satisfaction, this role requires excellent customer service and communication skills, as well as a solid understanding of cybersecurity. Responsibilities: - Provide exceptional customer support via phone, email, and chat for Huntress incident reports, escalations, and SIEM-related questions. - Ensure partner understanding by breaking down complex SOC concepts, log data, and product behavior into digestible, actionable guidance. - Lead calls with partners for high-severity or complex incidents, facilitating clear communication, documenting decisions, and aligning on next steps. - Collaborate effectively with Product Support, Security Operations Center, and other internal teams to clarify detection coverage, data gaps, and product behavior, then relay updates back to partners. - Troubleshoot product issues and provide support for other product-related requests as needed - Advocate for partner needs and provide feedback to the relevant internal teams. - Address partner security concerns with timely and informative responses. - Contribute to the development of knowledge base articles, macros, and internal runbooks based on real ticket patterns to improve consistency and efficiency across the team. What You Bring To The Team: - Demonstrated passion for cybersecurity, especially around identity compromise, phishing, incident response, and endpoint security, with a commitment to continuous learning. - Exceptional written and verbal communication skills - Ability to remain calm, empathetic, and solution-focused when supporting partners through active security incidents or when expectations and emotions are high. - Interest in developing incident management / incident commander skills, including owning the flow of information, setting clear priorities, and driving incidents to resolution. - Comfortable facilitating group discussions during high-pressure situations and capturing timelines, decisions, and action items in a structured way. - Strong ability to prioritize and manage a dynamic ticket queue, balancing urgent incident work with follow-ups and longer-running investigations. - Enthusiasm for working collaboratively across teams and keeping both internal stakeholders and partners informed as issues move through investigation and engineering. - Embraces change and excels in evolving environments, especially as products, detections, and internal processes iterate based on real-world cases. - Not afraid to ask questions, challenge assumptions, and dig into product behavior when something in a ticket doesn’t look quite right. - Strong self-awareness and the ability to work independently in a remote setting while knowing when to escalate or seek help. Would be a Plus: - MSP or Help Desk experience supporting multiple customers and managing tickets in tools like Zendesk or PSA platforms. - Microsoft 365/Entra experience, particularly around identity, mailbox behavior (e.g., inbox rules), and phishing scenarios. - Basic understanding of SIEM concepts and log analysis (event codes, search queries, correlation across data sources). - Basic understanding of networking concepts related to VPNs, IP addresses, and geo/usage anomalies. What We Offer: - 100% remote work environment - since our founding in 2015 - Generous paid time off policy, including vacation, sick time, and paid holidays - 12 weeks of paid parental leave - Highly competitive and comprehensive medical, dental, and vision benefits plans - 401(k) with a 5% contribution regardless of employee contribution - Life and Disability insurance plans - Stock options for all full-time employees - One-time $500 reimbursement for building/upgrading home office - Annual allowance for education and professional development assistance - $75 USD/month digital reimbursement - Access to the BetterUp platform for coaching, personal, and professional growth Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status. We do discriminate against hackers who try to exploit businesses of all sizes. Accommodations: If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response. Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights. #BI-Remote

Reports to: Manager, SOC Support Location: Remote US Compensation Range: $50,000 to $65,000 base plus bonus and equity What We Do: Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact. Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection. Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other. What You’ll Do: This is an entry-level role in which you will act as an intermediary between our partners/customers and our Security Operations Center (SOC) team. To facilitate effective service delivery and ensure partner satisfaction, this role requires excellent customer service and communication skills, as well as a solid understanding of cybersecurity. Responsibilities: - Provide exceptional customer support via phone, email, and chat for Huntress incident reports, escalations, and SIEM-related questions. - Ensure partner understanding by breaking down complex SOC concepts, log data, and product behavior into digestible, actionable guidance. - Lead calls with partners for high-severity or complex incidents, facilitating clear communication, documenting decisions, and aligning on next steps. - Collaborate effectively with Product Support, Security Operations Center, and other internal teams to clarify detection coverage, data gaps, and product behavior, then relay updates back to partners. - Troubleshoot product issues and provide support for other product-related requests as needed - Advocate for partner needs and provide feedback to the relevant internal teams. - Address partner security concerns with timely and informative responses. - Contribute to the development of knowledge base articles, macros, and internal runbooks based on real ticket patterns to improve consistency and efficiency across the team. What You Bring To The Team: - Demonstrated passion for cybersecurity, especially around identity compromise, phishing, incident response, and endpoint security, with a commitment to continuous learning. - Exceptional written and verbal communication skills - Ability to remain calm, empathetic, and solution-focused when supporting partners through active security incidents or when expectations and emotions are high. - Interest in developing incident management / incident commander skills, including owning the flow of information, setting clear priorities, and driving incidents to resolution. - Comfortable facilitating group discussions during high-pressure situations and capturing timelines, decisions, and action items in a structured way. - Strong ability to prioritize and manage a dynamic ticket queue, balancing urgent incident work with follow-ups and longer-running investigations. - Enthusiasm for working collaboratively across teams and keeping both internal stakeholders and partners informed as issues move through investigation and engineering. - Embraces change and excels in evolving environments, especially as products, detections, and internal processes iterate based on real-world cases. - Not afraid to ask questions, challenge assumptions, and dig into product behavior when something in a ticket doesn’t look quite right. - Strong self-awareness and the ability to work independently in a remote setting while knowing when to escalate or seek help. Would be a Plus: - MSP or Help Desk experience supporting multiple customers and managing tickets in tools like Zendesk or PSA platforms. - Microsoft 365/Entra experience, particularly around identity, mailbox behavior (e.g., inbox rules), and phishing scenarios. - Basic understanding of SIEM concepts and log analysis (event codes, search queries, correlation across data sources). - Basic understanding of networking concepts related to VPNs, IP addresses, and geo/usage anomalies. What We Offer: - 100% remote work environment - since our founding in 2015 - Generous paid time off policy, including vacation, sick time, and paid holidays - 12 weeks of paid parental leave - Highly competitive and comprehensive medical, dental, and vision benefits plans - 401(k) with a 5% contribution regardless of employee contribution - Life and Disability insurance plans - Stock options for all full-time employees - One-time $500 reimbursement for building/upgrading home office - Annual allowance for education and professional development assistance - $75 USD/month digital reimbursement - Access to the BetterUp platform for coaching, personal, and professional growth Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status. We do discriminate against hackers who try to exploit businesses of all sizes. Accommodations: If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response. Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights. #BI-Remote

Reports to: Senior Manager, Product Support Location: Remote UK Compensation Range: £35,000 to £45,000 base, plus bonus and equity. What We Do: Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact. Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection. Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other. What You’ll Do: This is an entry-level role in which you will act as an intermediary between our partners/customers and our Security Operations Center (SOC) team. To facilitate effective service delivery and ensure partner satisfaction, this role requires excellent customer service and communication skills, as well as a solid understanding of cybersecurity. Responsibilities: - Provide exceptional customer support via phone, email, and chat for Huntress incident reports, escalations, and SIEM-related questions. - Ensure partner understanding by breaking down complex SOC concepts, log data, and product behavior into digestible, actionable guidance. - Lead calls with partners for high-severity or complex incidents, facilitating clear communication, documenting decisions, and aligning on next steps. - Collaborate effectively with Product Support, Security Operations Center, and other internal teams to clarify detection coverage, data gaps, and product behavior, then relay updates back to partners. - Troubleshoot product issues and provide support for other product-related requests as needed - Advocate for partner needs and provide feedback to the relevant internal teams. - Address partner security concerns with timely and informative responses. - Contribute to the development of knowledge base articles, macros, and internal runbooks based on real ticket patterns to improve consistency and efficiency across the team. What You Bring To The Team: - Demonstrated passion for cybersecurity, especially around identity compromise, phishing, incident response, and endpoint security, with a commitment to continuous learning. - Exceptional written and verbal communication skills - Ability to remain calm, empathetic, and solution-focused when supporting partners through active security incidents or when expectations and emotions are high. - Interest in developing incident management / incident commander skills, including owning the flow of information, setting clear priorities, and driving incidents to resolution. - Comfortable facilitating group discussions during high-pressure situations and capturing timelines, decisions, and action items in a structured way. - Strong ability to prioritize and manage a dynamic ticket queue, balancing urgent incident work with follow-ups and longer-running investigations. - Enthusiasm for working collaboratively across teams and keeping both internal stakeholders and partners informed as issues move through investigation and engineering. - Embraces change and excels in evolving environments, especially as products, detections, and internal processes iterate based on real-world cases. - Not afraid to ask questions, challenge assumptions, and dig into product behavior when something in a ticket doesn’t look quite right. - Strong self-awareness and the ability to work independently in a remote setting while knowing when to escalate or seek help. Would be a Plus: - MSP or Help Desk experience supporting multiple customers and managing tickets in tools like Zendesk or PSA platforms. - Microsoft 365/Entra experience, particularly around identity, mailbox behavior (e.g., inbox rules), and phishing scenarios. - Basic understanding of SIEM concepts and log analysis (event codes, search queries, correlation across data sources). - Basic understanding of networking concepts related to VPNs, IP addresses, and geo/usage anomalies. What We Offer: - 100% remote work environment - since our founding in 2015 - New starter home office set up reimbursement (£398) - Generous personal leave entitlements - Digital monthly reimbursement (£92) - Travel to the US 1-2 times/year for various company events - Pension - Access to the BetterUp platform for coaching, personal, and professional growth Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status. We do discriminate against hackers who try to exploit businesses of all sizes. Accommodations: If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response. Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.

Reports to: Senior Manager, Product Support Location: Remote Ireland Compensation Range: €32,000 to €42,000 base, plus bonus and equity. What We Do: Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact. Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection. Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other. What We Do: Huntress is a fully remote, global team of passionate experts and ethical badasses on a mission to break down the barriers to cybersecurity. Whether creating purpose-built security solutions, hunting down hackers, or impacting our community, our people go above and beyond to change the security game and make a real difference. Founded in 2015 by former NSA cyber operators, Huntress protects all businesses—not just the 1%—with enterprise-grade, fully owned, and managed cybersecurity products at the price of an affordable SaaS application. The Huntress difference is our One Team advantage: our technology is designed with our industry-defining Security Operations Center (SOC) in mind and is never separated from our service. We protect 4M+ endpoints and 7M+ identities worldwide, elevating underresourced IT teams with protection that works as hard as they do. As long as hackers keep hacking, Huntress keeps hunting. What You’ll Do: This is an entry-level role in which you will act as an intermediary between our partners/customers and our Security Operations Center (SOC) team. To facilitate effective service delivery and ensure partner satisfaction, this role requires excellent customer service and communication skills, as well as a solid understanding of cybersecurity. Responsibilities: - Provide exceptional customer support via phone, email, and chat for Huntress incident reports, escalations, and SIEM-related questions. - Ensure partner understanding by breaking down complex SOC concepts, log data, and product behavior into digestible, actionable guidance. - Lead calls with partners for high-severity or complex incidents, facilitating clear communication, documenting decisions, and aligning on next steps. - Collaborate effectively with Product Support, Security Operations Center, and other internal teams to clarify detection coverage, data gaps, and product behavior, then relay updates back to partners. - Troubleshoot product issues and provide support for other product-related requests as needed - Advocate for partner needs and provide feedback to the relevant internal teams. - Address partner security concerns with timely and informative responses. - Contribute to the development of knowledge base articles, macros, and internal runbooks based on real ticket patterns to improve consistency and efficiency across the team. What You Bring To The Team: - Demonstrated passion for cybersecurity, especially around identity compromise, phishing, incident response, and endpoint security, with a commitment to continuous learning. - Exceptional written and verbal communication skills - Ability to remain calm, empathetic, and solution-focused when supporting partners through active security incidents or when expectations and emotions are high. - Interest in developing incident management / incident commander skills, including owning the flow of information, setting clear priorities, and driving incidents to resolution. - Comfortable facilitating group discussions during high-pressure situations and capturing timelines, decisions, and action items in a structured way. - Strong ability to prioritize and manage a dynamic ticket queue, balancing urgent incident work with follow-ups and longer-running investigations. - Enthusiasm for working collaboratively across teams and keeping both internal stakeholders and partners informed as issues move through investigation and engineering. - Embraces change and excels in evolving environments, especially as products, detections, and internal processes iterate based on real-world cases. - Not afraid to ask questions, challenge assumptions, and dig into product behavior when something in a ticket doesn’t look quite right. - Strong self-awareness and the ability to work independently in a remote setting while knowing when to escalate or seek help. Would be a Plus: - MSP or Help Desk experience supporting multiple customers and managing tickets in tools like Zendesk or PSA platforms. - Microsoft 365/Entra experience, particularly around identity, mailbox behavior (e.g., inbox rules), and phishing scenarios. - Basic understanding of SIEM concepts and log analysis (event codes, search queries, correlation across data sources). - Basic understanding of networking concepts related to VPNs, IP addresses, and geo/usage anomalies. What We Offer: - 100% remote work environment - since our founding in 2015 - New starter home office set-up allowance (€480) - Generous personal leave entitlements - Digital monthly reimbursement (€111) - Travel to the US 1-2 times/year for various company events - Pension - Access to the BetterUp platform for coaching, personal, and professional growth Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status. We do discriminate against hackers who try to exploit businesses of all sizes. Accommodations: If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response. Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.

Role Description As a Senior Architect, you will work in the Innovation department, reporting to and collaborating with the CTO, as a dedicated "Zero to One" specialist. Your mission is to incubate the next generation of Huntress products from scratch. - Incubate New Products: Lead the "Zero to One" phase for new cybersecurity offerings, moving from concept to high-fidelity prototype. - Rapid Prototyping: Build core libraries and initial services for new products, primarily using Go and Ruby. - Architect for Novelty: Design flexible, scalable architectures for experimental products that can eventually integrate into the broader Huntress platform. - Technical De-risking: Solve the hardest early-stage problems, proving that new detection methods or data ingestion styles are viable at scale. - Collaborative Innovation: Partner with Researchers and Product teams to translate complex adversarial behaviors into automated response capabilities. - Strategic Influence: Act as a technical proxy for the CTO when evaluating "build vs. buy" decisions for new product lines. - Mentor and Enable: Establish engineering standards for new projects and mentor engineers as they transition into these emerging product teams. Qualifications - Proven Builder Track Record: Extensive experience taking technical products from initial concept to launch. - Innovation Mindset: A "strong opinions, weakly held" approach, comfortable with rapid pivots and being proven wrong by data or prototypes. - Full-Stack Architectural Depth: Understanding of the 'sensor-to-cloud' journey, from endpoint telemetry to actionable backend intelligence. - Polyglot Engineering Skills: Proficiency in multiple languages (preference for Go and Ruby) and a willingness to lead by doing in the codebase. - Business Translation: Ability to negotiate trade-offs with teams and leaders at all levels of the company. - Scaling Foresight: While focused on "Zero to One," you understand how to design systems that will eventually handle millions of events per second, with the discipline to navigate tradeoffs to deliver value to customers quickly. - Iterative progression: A bias for delivering steel threads that demonstrate well-scoped outcomes and solicit early feedback. Benefits - 100% remote work environment - since our founding in 2015 - Generous paid time off policy, including vacation, sick time, and paid holidays - 12 weeks of paid parental leave - Highly competitive and comprehensive medical, dental, and vision benefits plans - 401(k) with a 5% contribution regardless of employee contribution - Life and Disability insurance plans - Stock options for all full-time employees - One-time $500 reimbursement for building/upgrading home office - Annual allowance for education and professional development assistance - $75 USD/month digital reimbursement - Access to the BetterUp platform for coaching, personal, and professional growth

• Plan, design, and execute red (and purple) team engagements to simulate advanced adversarial tactics and techniques • Perform in-depth penetration tests on web applications, endpoint agents, internal systems, and our people • Utilize a mix of traditional scripting and generative AI platforms to rapidly prototype tools, replicate sophisticated cyber threats, and automate repetitive workflows during live engagements • Conduct social engineering campaigns to evaluate human vulnerabilities • Collaborate closely with the Security Operations Center and CSIRT teams to enhance detection and response capabilities • Stay informed on emerging threats and update red teaming methodologies • Partner with Product Security to prioritize testing efforts for new releases • Analyze and exploit vulnerabilities through detailed operational logging, leveraging strong documentation and communication skills to translate complex technical findings into actionable remediation guidance that directly hardens the organization's security • Develop and deliver detailed technical and executive-level reports post-engagement • Integrate red team tools, techniques, and processes into a broader security strategy • Lead or participate in after-action reviews to identify lessons learned • Assist in designing and implementing security controls based on red team findings

Role Description As a Senior Manager, Technical Training, you'll own the full training lifecycle for Huntress's security organization, from identifying performance gaps across the SOC and Global Support teams to building the frameworks, onboarding paths, and programs that close them. The focus of this role is not content delivery, but rather creating repeatable systems that make our people measurably better from day one and well beyond it. This is equally a people leadership role. You'll develop and grow a team of training practitioners, coaching them toward increasing ownership while you focus on program strategy, operational partnerships, and outcome measurement. You'll collaborate directly with subject matter experts across the security organization, treating AI adoption as a force multiplier for doing this work at a scale that wasn't previously possible. This is a ground-floor opportunity to define how training works within the security organization. The frameworks you build here will outlast any single program. Responsibilities: - Own the end-to-end training lifecycle for the security organization - needs analysis, program design, content development in collaboration with SMEs, delivery, and outcome measurement - Build and maintain onboarding paths that get new hires to operational readiness faster and more consistently across SOC and Global Support - Partner with SOC and Support Operations Managers to identify performance gaps and translate them into structured, prioritized learning initiatives - Develop and enforce program quality standards including assessment design, knowledge validation, and effectiveness tracking - Define and report on enablement metrics that connect learning outcomes to operational performance, not just completion rates - Leverage AI-assisted tooling to accelerate content development and program iteration without sacrificing rigor - Develop and grow direct reports, creating clear growth paths and coaching toward increasing ownership of program and content responsibilities - Maintain a live requirements backlog ensuring programs reflect current operational realities rather than static curricula Qualifications - 5+ years designing and operating training or enablement programs in a technical domain, with demonstrated ownership of outcomes - Experience managing or mentoring direct reports with a track record of developing talent toward greater ownership and scope - Proven ability to conduct needs analysis and translate operational gaps into structured learning frameworks - Experience building measurement systems that connect programs to performance, not just participation - Track record of collaborating with subject matter experts to develop technically accurate content without requiring SMEs to carry the instructional design work - Comfort working in ambiguous, high-growth environments where the process needs to be built before it can be followed - Familiarity with cybersecurity operations, SOC workflows, or technical support environments sufficient to earn credibility with practitioners quickly Benefits - 100% remote work environment - since our founding in 2015 - Generous paid time off policy, including vacation, sick time, and paid holidays - 12 weeks of paid parental leave - Highly competitive and comprehensive medical, dental, and vision benefits plans - 401(k) with a 5% contribution regardless of employee contribution - Life and Disability insurance plans - Stock options for all full-time employees - One-time $500 reimbursement for building/upgrading home office - Annual allowance for education and professional development assistance - $75 USD/month digital reimbursement - Access to the BetterUp platform for coaching, personal, and professional growth

Role Description Security Operations and Enablement Engineering is the layer between what the security organization needs and what the core platform provides. As a SO&E Engineer, you will close that gap by taking requirements surfaced by Operations and building the workflows, automations, and tooling that make detection and response faster, more consistent, and more scalable. This is not a role that waits for tickets. You will be in the room where operational problems get diagnosed, then own the technical execution that solves them. The work is varied by design. On any given week that might mean: - Building a dashboard that gives leadership real operational visibility - Automating a manual process that is costing analysts time - Translating a fuzzy operational complaint into a scoped, buildable requirement AI and agentic workflows are part of the toolkit here, but the through line is pragmatic problem solving: find what is slowing the security organization down and build something that fixes it. Qualifications - 5+ years building workflow automations, internal tooling, or operational infrastructure in a technical environment, ideally within security or a similarly complex domain - Demonstrated ability to operate across organizational functions — translating operational pain from non-technical stakeholders into precise, scoped technical requirements without significant back-and-forth - Proficiency in Python or similar scripting languages, with the ability to write clean, maintainable code that establishes patterns others can build on - Experience building and maintaining API integrations to connect tools and systems that don't talk to each other out of the box - Familiarity with security operations tooling including SIEMs, ticketing systems, and alerting platforms, sufficient to understand how analysts work and where automation creates real leverage - Experience building dashboards and reporting tooling sufficient to create meaningful operational visibility without relying on a dedicated BI team - Comfort operating in an ambiguous, fast-moving environment where the function is still being defined — able to set technical direction without a fully established playbook Requirements - Own and evolve the SO&E technical strategy, including how the function identifies, prioritizes, and delivers against operational gaps that the core platform does not address - Serve as the primary technical translator for requirements surfaced by SOC and Support Operations Managers, turning operational pain points into scoped, buildable solutions against a prioritized backlog - Partner with the Director to translate Product and operational priorities into scoped technical requirements, ensuring SO&E delivery is sequenced against the gaps that matter most to the business - Translate operational requirements into precise technical solutions including workflow automations, API integrations, internal tooling, and custom dashboards — and establish the standards others build to as the function scales - Build and maintain reporting and dashboard infrastructure that gives operators and leadership meaningful visibility into security performance and workflow health - Identify and drive toil reduction across SOC and Support workflows through automation, tooling improvements, and smarter use of existing capabilities including AI where appropriate - Evaluate new platforms and technologies against backlog needs, with a bias toward solutions that keep the team tool-agnostic and avoid unnecessary dependency - Establish and document technical standards across the build lifecycle that support long-term scalability and create a foundation for the function to grow on Benefits - 100% remote work environment - since our founding in 2015 - Generous paid time off policy, including vacation, sick time, and paid holidays - 12 weeks of paid parental leave - Highly competitive and comprehensive medical, dental, and vision benefits plans - 401(k) with a 5% contribution regardless of employee contribution - Life and Disability insurance plans - Stock options for all full-time employees - One-time $500 reimbursement for building/upgrading home office - Annual allowance for education and professional development assistance - $75 USD/month digital reimbursement - Access to the BetterUp platform for coaching, personal, and professional growth

Role Description The Principal Business Operations Specialist is the operational backbone of Huntress's Security Operations Center. You will translate analyst workflow realities into structural improvements, partnering closely with SOC leadership to transform how investigations move through the team. You will reduce friction, enforce consistency, and build the reporting infrastructure that turns detection signal into operational decisions. This role is about replacing tribal knowledge and reactive triage with a disciplined, continuously improving SOC operation that scales without sacrificing quality, managing multiple workstreams and stakeholders to get there. Responsibilities - Partner with SOC leadership to develop an authoritative understanding of analyst workflows, investigation patterns, and operational bottlenecks, then translate that understanding into a prioritized improvement agenda with clear milestones and owners. - Own the identification, prioritization, and delivery of process and tooling improvements across SOC functions; maintain a structured backlog in close coordination with SO&E Engineering. - Build and maintain reporting infrastructure that surfaces meaningful SOC performance signal including queue health, MTTD/MTTR trends, escalation patterns, and analyst utilization in service of decisions, not dashboards. - Drive alignment with Support Operations on shared operational standards, coordinating cross-functional workstreams to ensure improvements scale across functions rather than solving in isolation. - Own documentation quality within the SOC, holding the organization accountable to accuracy and usability standards that reflect a mature, auditable security operation. - Translate operational findings into precise, executable requirements that move from analysis to engineering without back-and-forth. - Lead the rollout of new tools, workflows, and training initiatives, owning adoption outcomes and surfacing friction before it becomes regression. Qualifications - 5+ years in an operations, business operations, or process improvement role — ideally within a SOC, security, or technical support environment. - Demonstrated ability to analyze workflows and translate findings into structured, prioritized requirements. - Experience building or maintaining operational reporting and dashboards; comfortable working with data to tell a coherent story. - Familiarity with how SOC teams operate, including ticketing systems, alert queues, SLA tracking, and escalation workflows. - Proven track record of working cross-functionally with engineering or product teams to scope and deliver operational improvements. - Able to manage a backlog and communicate tradeoffs clearly without needing heavy oversight. - You use AI tools actively in your work today, not occasionally but as a default, and when you look at a workflow you're already asking which parts a well-designed system could handle; familiarity with where agentic workflows are heading in security operations is a strong plus. Benefits - 100% remote work environment - since our founding in 2015. - Generous paid time off policy, including vacation, sick time, and paid holidays. - 12 weeks of paid parental leave. - Highly competitive and comprehensive medical, dental, and vision benefits plans. - 401(k) with a 5% contribution regardless of employee contribution. - Life and Disability insurance plans. - Stock options for all full-time employees. - One-time $500 reimbursement for building/upgrading home office. - Annual allowance for education and professional development assistance. - $75 USD/month digital reimbursement. - Access to the BetterUp platform for coaching, personal, and professional growth.

Reports to: Senior Manager, GTM Systems Location: Remote US Compensation Range: $180,000 to $210,000 base plus bonus and equity What We Do: Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact. Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection. Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other. What You’ll Do: As our Senior Salesforce Technical Architect, you will step in as the technical authority for our entire commercial Salesforce ecosystem. This is a high-impact individual contributor role where you will own the architectural vision for CPQ, our internal subscription and billing platform integrations, Partner Portal, and an emerging iPaaS-powered integration layer. You will collaborate closely with Revenue Operations, Sales, and Finance to translate complex pricing models and business processes into clean, scalable Salesforce solutions. We need someone who embraces perfect imperfection to drive the strategy and implementation of AI-augmented workflows and emerging integration layers, using available info to build fast and iterate quickly. You will show a warrior spirit as you calmly navigate technical complexity and architectural transitions, remaining unshakeable while evaluating and implementing Zuora as we assess our next-generation billing infrastructure. In this role, your technical depth and independent drive will show you are outcome-obsessed, taking deep personal ownership of platform stability to ensure our internal workflows directly support the corporate mission. Responsibilities: - Own and evolve the end-to-end Salesforce CPQ architecture, including quoting workflows, custom pricing logic, ramp pricing, and renewal lifecycle management. - Lead the architectural design and hands-on implementation of a centralized iPaaS integration layer using Workato or Celigo, migrating existing point-to-point integrations and establishing reusable, monitored, error-resilient patterns. - Serve as the technical lead for evaluating and implementing Zuora, establishing the core integration model with Salesforce CPQ and our subscription platform. - Drive the technical design and ongoing management of our Salesforce Experience Cloud-based Partner Portal to support our managed service provider partner ecosystem. - Design and deploy AI-augmented workflows within the Salesforce ecosystem, connecting LLM APIs to create document validation workflows and surface contextual intelligence. - Translate complex pricing strategies, bundling models, and go-to-market motions into CPQ rules, discount frameworks, and automated approval workflows. - Act as the technical bridge between the Salesforce team and business stakeholders, distilling architectural trade-offs, surfacing risks, and aligning on technical direction across RevOps, Finance, Sales, and Product - Maintain lightweight but accurate technical documentation including architecture diagrams, data models, integration maps, and CPQ configuration guides. - Champion platform stability, performance, security, and governance as usage and data complexity scale What You Bring To The Team: - 10+ years of hands-on Salesforce development and architecture experience, with deep specialization in Salesforce CPQ. - Extensive experience architecting complex CPQ implementations including JavaScript-based custom pricing, multi-tier approval workflows, and subscription lifecycle management. - Proven track record designing and building enterprise integrations using iPaaS platforms like Workato, Celigo, MuleSoft, or Boomi. - Strong command of Salesforce APIs and event-driven integration patterns alongside mastery of Apex, Lightning Web Components, and Salesforce Flows. - Deep knowledge of subscription billing platforms like Zuora and their integration architecture with Salesforce CPQ. - Strong business acumen with the ability to translate pricing models, go-to-market motions, and operational processes into clean technical designs. - Practical experience working with AI/LLM APIs to integrate automated capabilities into business workflows. What We Offer: - 100% remote work environment - since our founding in 2015 - Generous paid time off policy, including vacation, sick time, and paid holidays - 12 weeks of paid parental leave - Highly competitive and comprehensive medical, dental, and vision benefits plans - 401(k) with a 5% contribution regardless of employee contribution - Life and Disability insurance plans - Stock options for all full-time employees - One-time $500 reimbursement for building/upgrading home office - Annual allowance for education and professional development assistance - $75 USD/month digital reimbursement - Access to the BetterUp platform for coaching, personal, and professional growth Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status. We do discriminate against hackers who try to exploit businesses of all sizes. Accommodations: If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response. Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights. #BI-Remote