Senior Engineer - Threat Hunting

About The Position

Requirements

• 5-8+ years of experience in cybersecurity operations, detection engineering, threat hunting, or offensive security
• Deep expertise in attacker tradecraft, adversary behaviors, and defensive detection techniques across multiple domains
• Strong hands‑on experience with SIEM, EDR, cloud security platforms, and large‑scale log analytics (Google SecOps, Defender XDR, Crowdstrike)
• A proven ability to solve ambiguous, systemic, cross‑organizational security problems with minimal direction
• Experience balancing hands‑on execution with strategic influence, knowing when to build directly and when to enable others
• The ability to operate with near‑complete autonomy, setting technical direction rather than receiving it
• Strong communication skills, including the ability to explain complex technical risk to senior security and technology leaders
• Bachelor’s degree or equivalent practical experience
• Proficiency in scripting and automation for security operations.

Nice To Haves

• Bachelor's Degree in Cybersecurity or Computer Science
• System Administration experience in Windows or Linux
• Proven ability to script and automate tasks
• Specific experience with Google Secops SIEM, the Microsoft Security Stack, or ProofPoint Email Security Services
• CISSP, CASP or other related security certifications

Responsibilities

• Owning the enterprise detection engineering capability end‑to‑end, including standards, patterns, quality bars, and long‑term technical direction
• Designing, implementing, and reviewing high‑fidelity detections across endpoint, identity, cloud, network, and SaaS environments
• Leading complex, hypothesis‑driven threat hunts that address ambiguous, cross‑organizational risk and novel attacker behavior
• Translating threat hunting outcomes into robust detections, improved telemetry, or architectural changes rather than one‑off findings
• Partnering with internal stakeholders to design and execute adversary emulation scenarios that validate real‑world detection and response effectiveness
• Identifying systemic detection and response gaps and driving remediation across engineering, operations, and architecture teams
• Acting as the technical lead during highest‑severity incidents, guiding investigative approach and defensive improvements
• Influencing security strategy, roadmaps, and investment decisions by translating technical findings into business and risk context
• Provide expert recommendations and best practices to security managers, technical managers, and stakeholders including legal and regulatory teams.
• Mentoring senior engineers and analysts and setting the technical bar for excellence across detection, hunting, and adversary emulation
• Stay current with industry trends, security standards, and best practices to ensure our systems remain secure against evolving threats.

Benefits

• Fair and competitive salary and incentive compensation packages with an upside for overachievement
• Generous paid time off, including vacation, personal days, sick days and annual community service days
• Health, dental and vision benefits, including access to telemedicine and mental health services
• 2:1 401(k) match, up to 8% match immediately upon hire
• Discounted Employee Stock Purchase Plan
• Tax Savings Accounts for health, dependent and transportation
• Employee referral bonus program
• Volunteer opportunities to help you give back to your communities
• Complimentary lunch, snacks and coffee in any Cboe office
• Paid Tuition assistance and education opportunities
• Generous charitable giving company match
• Paid parental leave and fertility benefits
• On-site gyms and discounts to other fitness centers