FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
Principal Software Engineer, Security, Detection & Response
HubSpotPrincipal Software Engineer at HubSpot shaping detection engineering, threat intelligence, and incident response solutions for a secure platform. Leading automated detection systems and mentor engineers in best practices.
Posted 5/26/2026full-timeRemote • Massachusetts • 🇺🇸 United StatesLead💰 $266,200 - $425,900 per yearWebsite
Tech Stack
Tools & technologiesCloudSplunk
About the role
Key responsibilities & impact- Building strong detection foundations and response frameworks to advance HubSpot’s security posture.
- Driving the development of automated detection systems and prioritizing mitigations based on current threats and coverage gaps.
- Partnering closely with engineering teams to supply data for purple team exercises and implement practical solutions that mitigate risks.
- Guiding architectural decisions for our corporate security logging infrastructure and SIEM.
- Contributing code to security automations, reviewing designs for detection reliability, and providing technical mentorship to engineers.
- Acting as a key point of contact for threat intelligence and incident response expertise.
- Supporting incident response efforts by aiding in investigations and understanding bad actor behaviors.
Requirements
What you’ll need- 10-15 years of experience in software development and information security, with a focus on detection engineering, threat intelligence, and incident response.
- Proven experience in designing and implementing automated detection systems and managing large-scale security logging infrastructure (e.g., Splunk, SIEM).
- Expert knowledge of endpoint and network detection (EDR/SASE), and hands-on experience with tools like CrowdStrike Falcon for investigation and response.
- Deep understanding of incident response methodologies and frameworks such as NIST 800-61, SANS, and the ability to lead high-severity CritSits.
- Demonstrated experience in correlating diverse telemetry (identity, cloud, network) to detect post-entry behavior and contain threats quickly.
- Experience managing and ingesting Indicators of Compromise (IOCs) and mapping actor techniques to standards like STIX/TAXII.
- Excellent communication skills, with the ability to articulate complex threat landscapes to both technical and non-technical audiences.
- Relevant industry certifications (e.g., GCIH, GCFA, CISSP, or vendor-specific EDR certifications).
Benefits
Comp & perks- Health insurance
- 401(k) matching
- Flexible work arrangements
- Paid time off
- Professional development opportunities
- Bonuses
- Stock options
- Equipment allowances
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
automated detection systemssecurity logging infrastructureendpoint detectionnetwork detectionincident response methodologiescorrelating telemetryIndicators of Compromisethreat intelligencedetection engineeringtechnical mentorship
Soft Skills
communication skillsarticulating complex conceptscollaborationleadershipproblem-solvingmentorshipinvestigative skillsrisk mitigationanalytical thinkingadaptability
Certifications
GCIHGCFACISSPvendor-specific EDR certifications