Senior Security Analyst

Senior Security Analyst (Detection Engineering & Automation)

In the Senior Security Analyst (Detection Engineering & Automation) role, you will help strengthen and augment our detection engineering program. You will build use cases and write detection logic on a variety of security platforms to detect malicious activity in various attack stages. You will build attack simulation scenarios, reproduce attack scenarios, and test the effectiveness of new detection logic. You will also partner with engineering teams to develop technology that enables this work. You will closely collaborate with incident response teams to improve the reliability and quality of alerts. Your technical skills, collaboration, and teamwork will help to ensure that our detection systems work well to secure HubSpot and its customers. 

If you want to solve interesting challenges in the threat detection arena and solve unique, complex security challenges this is the role you want to be in. You will take on an important role in the threat detection engineering program, helping to deliver necessary research and features to achieve our team’s goals. 

In This Role You’ll:

• Build a threat detection engineering program (full lifecycle)
• Build attack simulation scenarios, detection use cases & test their effectiveness
• Leverage an automation first mindset to work smarter / more efficiently
• Help respond when needed to critical security incidents
• Consult stakeholders on security-related subjects ranging from general OpSec, infrastructure architecture etc

Key Attributes:

• Experience building / maturing a detection engineering program
• Hands-on security operations experience working within a modern zero trust oriented cloud / SaaS-heavy environment
• Strong understanding of incident response best practices with practical experience responding to moderate to complex security incidents
• Experience identifying / building new detection use cases
• Ability to collect / analyze large sets of structured / unstructured data from disparate sources
• Solid experience using SIEM tools (Splunk) for security investigations
• Experience using various security tools (EDR, web proxy, IDaaS etc) to assist with an investigation
• Strong networking and systems knowledge with a good understanding of macOS and Windows internals
• Experience working collaboratively to define and implement security policies, procedures, and controls
• Experience providing internal security consultancy / advice to other teams within the company
• Experience writing code (Python/Java) to solve problems, facilitate easier data analysis, and to automate security tasks 
• Acutely aware of industry security trends, advisories, news, and general research

Ideal Candidate (5+ years security experience):

• Deep knowledge of macOS and Windows internals and practical experience using it to secure such systems
• Experience in detection engineering processes / behaviors
• Experience monitoring / securing AWS, GCP, or Azure cloud environments
• Knowledge of containerization software and how to secure them (Docker, Kubernetes, OpenStack)
• Experience using tools like Splunk & Snowflake
• Experience using automation tools like Tines & Splunk SOAR
• Experience conducting data analysis using tools such as R, Tableau, PowerBI, Jupyter Notebook

We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates, so please don’t hesitate to apply — we’d love to hear from you.

If you need accommodations or assistance due to a disability, please reach out to us using this form. This information will be treated as confidential and used only for the purpose of determining an appropriate accommodation for the interview process.

At HubSpot, we value both flexibility and connection. Whether you’re a Remote employee, or work from the Office, we want you to start your journey here by building strong connections with your team and peers. 

If you are joining our Engineering team in a full-time role, you will be required to attend a regional HubSpot office for in-person onboarding. If you join our broader Product team, you’ll also attend other in-person events such as HubSpot’s annual PEER week, your Product Group Summit, and other in-person gatherings to continue building on those connections.

If you require an accommodation due to travel limitations or other reasons, please inform your recruiter during the hiring process. We are committed to supporting candidates who may need alternative arrangements.

Germany Applicants: (m/f/d) - link to HubSpot's Career Diversity page here.

India Applicants: link to HubSpot India's equal opportunity policy here.

About HubSpot

HubSpot (NYSE: HUBS) is a leading customer relationship management (CRM) platform that provides software and support to help businesses grow better. We build marketing, sales, service, and website management products that start free and scale to meet our customers’ needs at any stage of growth. We’re also building a company culture that empowers people to do their best work. If that sounds like something you’d like to be part of, we’d love to hear from you.

You can find out more about our company culture in the HubSpot Culture Code, which has more than 5M views, and learn about our commitment to creating a diverse and inclusive workplace, too. Thanks to the work of every employee globally, HubSpot was named the #2 Best Place to Work on Glassdoor in 2022 and has been recognized for its award-winning culture by Great Place to Work, Comparably, Fortune, Entrepreneur, Inc., and more.

Headquartered in Cambridge, Massachusetts, HubSpot was founded in 2006. Today, thousands of employees across the globe work remotely and in HubSpot offices. Visit our careers website to learn more about the culture and opportunities at HubSpot. 

By submitting your application, you agree that HubSpot may collect your personal data for recruiting, global organization planning, and related purposes. HubSpot's Privacy Notice explains what personal information we may process, where we may process your personal information, our purposes for processing your personal information, and the rights you can exercise over HubSpot’s use of your personal information.