Senior Cloud Security Engineer

Senior Cloud Security Engineer

Seattle, WA

At ExtraHop, we're on a mission to protect and empower the connected enterprise. We reveal what is happening in the very infrastructure that sustains businesses, lives, and communities, and ensure the integrity of networks, data, systems, and processes. Organizations rely on ExtraHop to provide visibility into the cyber threats, vulnerabilities, and network performance issues that evade their existing security and IT tools. With this insight, organizations can investigate smarter, stop threats faster, and keep operations running.

Our mission is fueled by a profound social and moral responsibility to be the best at what we do, ensuring a secure world where everyone can thrive. If this sounds like a place you'd like to spend the next chapter of your career, we'd love to hear from you.

Position Summary

Do you like securing complex cloud services and infrastructure? Want to be a part of a collaborative team that builds solutions that protect some of the biggest networks in the world? ExtraHop is seeking a Sr. Product Security Engineer, experienced with modern cloud system development and infrastructure-as-code practices to build and operate product security program capabilities, tools, and processes that allow us to keep pace with a rapidly changing security landscape, reduce security risk and enable organizational success.

We're looking for candidates with a mix of cloud security, infrastructure security, security information and event management (SIEM) technologies, DevOps, and software development experience, who enjoy working in a collaborative environment and taking direct action to identify, remediate and prevent vulnerabilities and security issues.

You must have experience securing cloud environments and modern computing infrastructure, deploying and operating SIEM tools, and strong familiarity with Infrastructure-as-Code and container technologies.

Key Responsibilities

• Implement and operate Splunk Cloud Platform and Enterprise Security, including setting up log ingestion from required source systems and ensuring correct parsing and categorization of log events for effective SIEM operations
• Implement and operate endpoint detection and response (EDR) and network detection & response (NDR) solutions
• Develop system configuration and hardening standards and coordinate with other teams to ensure compliance with those standards
• Define standards for secure configuration of application and infrastructure components
• Perform threat modeling, security design reviews, code reviews, and consultations with other staff
• Build and improve vulnerability management processes and tooling to support system owners to successfully remediate issues
• Perform, automate and streamline patching and vulnerability remediation activities
• Develop and deliver training on cloud security issues, best practices and internal policies
• Select, implement and manage cloud security tools including cloud security posture management (CSPM), network/host/container/IaC vulnerability scanners and configuration auditing
• Participate in manual pen testing of new + existing systems
• Perform and/or lead security investigation and incident response activities
• Participate in an on-call rotation with occasional after-hours paging to review carefully prioritized security detections

Required Qualifications

• Bachelor's degree or equivalent experience in computer science, engineering, or information technology
• 8+ years of experience in security engineering, software development and/or DevOps, with a focus on securing complex systems and modern cloud infrastructure
• Strong experience securing AWS cloud platform and services, including the implementation of guardrails using service control policies (SCPs), IaC policies, CSPM, or similar strategies
• Experience implementing Splunk Enterprise Security to monitor cloud-based systems
• Experience working with container-based environments (Kubernetes, Docker, LXC, etc.)
• Experience securing cloud-based web applications, APIs, data and infrastructure
• All R&D Employees will be required to attend 2 mandatory in-person events every year. These events are typically held in our offices in downtown Seattle and run 4-5 days each
• Must be a U.S. citizen or national, U.S. permanent resident (current Green Card holder) or lawfully admitted into the U.S. as a refugee or granted asylum
• Note: employees, including fully remote staff, are expected to attend two in-person events every year. These events are typically held in our offices in downtown Seattle and run 4-5 days each

Preferred Qualifications

• Experience securing software-as-a-service (SaaS) and cloud service offerings
• Experience with meeting FedRAMP, NIST SP 800-53 and similar compliance requirements
• Experience deploying or managing EDR and NDR solutions (such as ExtraHop RevealX)
• Experience securing Google Cloud Platform (GCP) and Azure
• Experience working in a security operations center (SOC) and/or leading security incident response activities
• Solid knowledge of Kubernetes, Git, Python, Terraform, Ansible, and the use of scripting in support of security automation, CI/CD pipelines

The salary range for this role is $150,000 - $180,000 + bonus + benefits.

About ExtraHop

ExtraHop is reinventing Network Detection and Response (NDR) to offer enterprises unparalleled visibility, context, and control against emerging threats. The platform integrates NDR with Network Performance Management (NPM), Intrusion Detection Systems (IDS), and forensics, providing a single, comprehensive solution. By decrypting and analyzing complete packet-level data at wire speed and leveraging cloud-scale machine learning, ExtraHop empowers Security Operations Centers (SOCs) to detect, investigate, and remediate modern cyber risks in real time across their entire hybrid infrastructure, including data center, cloud, and SASE environments.

This comprehensive approach and market innovation have earned ExtraHop unique recognition as the only NDR vendor acknowledged as a leader by all major analyst firms, including the 2025 Gartner® Magic Quadrant for Network Detection and Response™, the 2025 Forrester® Wave for Network Analysis and Visibility, the 2024 IDC® Marketscape for NDR, and the 2025 Gigamon® Radar Report for Network Detection and Response. Since 2007, ExtraHop has consistently helped organizations worldwide extract in-depth network telemetry and contextual insights, affirming its commitment to protecting and empowering the connected enterprise.

Our Values

Our culture is rooted in our five Values. These set the expectations for how we work individually and collectively as a team.

Lead with Purpose: We are driven to deliver results that create a positive impact for our customers, partners, and colleagues.

Act with Integrity: We operate with transparency, authenticity, and always in the best interest of the company.

Find a Way: We are resourceful, tackle hard problems with a sense of urgency and ownership, and do what it takes to get the job done.

Innovate: We listen to customers, partners, and the market, and respectfully push boundaries and challenge the status quo.

Share Success: We run together, we win together. We value diverse perspectives, hold space for all voices, and achieve the best results as a team.

Benefits

Employees' wellbeing is top of mind for the ExtraHop team. Employees and their families will have the option to participate in the following benefits:

• Health, Dental, and Vision Benefits
• Flexible PTO, Sick Time Prorated Based on Date of Hire, and All Federal Holidays (US Only) + 3 Days of Paid Volunteer Time
• Non-Commissioned Positions may be eligible to participate in the Annual Discretionary Bonus Plan
• FSA and Dependent Care Accounts + EAP, where applicable
• Educational Reimbursement
• 401k with Employer Match or Pension where applicable
• Pet Insurance (US Only)
• Parental Leave (US Only)
• Hybrid and Remote Work Model

Our people are our most important competitive advantage, leading the charge against cyber criminals. Join the fight today!