Staff Cloud Security Engineer bei Huntress

Reports to: Senior Manager, Internal Security

Location: Remote US 

Compensation Range: $146,000 to $193,000 base plus bonus and equity

What We Do:

Huntress is a fully remote, global team of passionate experts and ethical badasses on a mission to break down the barriers to cybersecurity. Whether creating purpose-built security solutions, hunting down hackers, or impacting our community, our people go above and beyond to change the security game and make a real difference.

Founded in 2015 by former NSA cyber operators, Huntress protects all businesses—not just the 1%—with enterprise-grade, fully owned, and managed cybersecurity products at the price of an affordable SaaS application. The Huntress difference is our One Team advantage: our technology is designed with our industry-defining Security Operations Center (SOC) in mind and is never separated from our service.

We protect 4M+ endpoints and 8M+ identities worldwide, elevating underresourced IT teams with protection that works as hard as they do. As long as hackers keep hacking, Huntress keeps hunting.

What You’ll Do:

Huntress is looking for a strategic Staff Cloud Security Engineer to join our fully remote team. In this high-impact individual contributor role, you will evolve from simply securing infrastructure to defining the long-term cloud security strategy for our entire B2B Cloud Security SaaS platform.

This role is designed for a force multiplier—someone who can design scalable defenses, influence engineering culture, and solve complex, ambiguous security challenges across AWS, Azure, and PaaS environments. You won't just close tickets; you will set the standard for how Huntress builds, deploys, and protects its cloud-native ecosystem at scale.

Responsibilities:

• Strategic System Design: Define the technical vision for cloud security. You will spearhead the evaluation of emerging cloud technologies and engineer "paved road" patterns that make the secure path the easiest path for our engineering teams.
• Cross-Functional Influence: You will act as the bridge between Security, Product, and Engineering. You will not just partner with these teams; you will embed security DNA into their workflows, mentoring Senior and Mid-level engineers, and driving consensus on critical design decisions across the organization.
• Scalable Threat Modeling: Move beyond reviewing pitches. You will establish frameworks that enable engineering teams to self-assess their risks. You will tackle the most complex and high-risk system design changes, ensuring that privacy and security are addressed at the whiteboard stage, not during testing.
• Advanced Threat Resilience: You will design self-healing and resilient infrastructure capabilities. You will lead the technical strategy for incident response readiness, implementing sophisticated runtime detection, automated containment, and forensic capabilities that scale with our customer growth.
• Risk-Based Vulnerability Governance: You will evolve our vulnerability management from "scanning and ticketing" to a risk-based intelligence program. You will develop automated prioritization models that contextualize vulnerabilities based on asset criticality, enabling the business to focus on what truly matters.
• Automated Compliance & Governance as Code: You will own the roadmap for cloud security governance. You will drive the shift toward "Compliance as Code," ensuring that our controls are monitored, audited, and remediated programmatically, minimizing manual toil.

What You Bring To The Team:

• The "Force Multiplier" Mindset: You don't just solve problems; you create solutions that empower others to solve problems. You have a track record of elevating the technical maturity of the teams around you.
• Value Documentation: You recognize documentation as a critical tool for showing impact and value. You effectively detail security recommendations, process improvements, architectural decisions, and innovative ideas to ensure clarity and organizational buy-in.
• Strategic SaaS Experience: You have deep experience in high-growth B2B SaaS environments. You understand how to align security initiatives with business velocity, ensuring security is an enabler, not a blocker.
• High-Level Technical Communication: You can explain a complex RCE vulnerability to a developer and then immediately pivot to explaining the business risk of that vulnerability to a VP. You document not just the "how," but the "why."
• Expert-Level Infrastructure-as-Code: You don't just use Terraform/Spacelift; you structure modular, reusable, and secure IaC libraries. You treat infrastructure as software and apply software engineering best practices (testing, versioning, CI/CD) to security.
• Software Engineering Proficiency: You go beyond simple scripting. You are comfortable building robust internal tools, APIs, and automation using Python, Go, or similar languages to integrate disparate security systems.
• Deep Cloud Mastery: You possess top-tier expertise in AWS and Azure. You understand the nuances of IAM, networking, and container security (Kubernetes/ECS) at an advanced level.
• Incident Command: You have the composure and expertise to lead technical response efforts during critical security incidents, leveraging advanced forensics and query languages (SQL, Splunk, KQL) to hunt through massive datasets.
• Remote-First Collaboration: You are an excellent communicator, capable of thriving and driving initiatives in a distributed, asynchronous work environment. 

What We Offer: 

• 100% remote work environment - since our founding in 2015
• Generous paid time off policy, including vacation, sick time, and paid holidays
• 12 weeks of paid parental leave
• Highly competitive and comprehensive medical, dental, and vision benefits plans 
• 401(k) with a 5% contribution regardless of employee contribution
• Life and Disability insurance plans
• Stock options for all full-time employees 
• One-time $500 reimbursement for building/upgrading home office
• Annual allowance for education and professional development assistance 
• $75 USD/month digital reimbursement
• Access to the BetterUp platform for coaching, personal, and professional growth

Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. 

We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.  

We do discriminate against hackers who try to exploit businesses of all sizes.

Accommodations: 

If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to [email protected]. Please note that non-accommodation requests to this inbox will not receive a response. 

Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.

#BI-Remote