Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
HubSpot

Principal Software Engineer, Security, Detection & Response

HubSpot

Principal Software Engineer at HubSpot shaping detection engineering, threat intelligence, and incident response solutions for a secure platform. Leading automated detection systems and mentor engineers in best practices.

Posted 5/26/2026full-timeRemote • Massachusetts • 🇺🇸 United StatesLead💰 $266,200 - $425,900 per yearWebsite

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
automated detection systemssecurity logging infrastructureendpoint detectionnetwork detectionincident response methodologiescorrelating telemetryIndicators of Compromisethreat intelligencedetection engineeringtechnical mentorship
Soft Skills
communication skillsarticulating complex conceptscollaborationleadershipproblem-solvingmentorshipinvestigative skillsrisk mitigationanalytical thinkingadaptability
Tools & Technologies
SplunkSIEMCrowdStrike FalconEDRSASENIST 800-61SANSSTIXTAXIIpurple team exercises
Certifications & Qualifications
GCIHGCFACISSPvendor-specific EDR certifications
Industry Keywords
security posturedetection reliabilitythreat landscapesbad actor behaviorshigh-severity CritSitspost-entry behaviorcoverage gapsdata supply for securityrisk managementincident response expertise

Tech Stack

Tools & technologies
CloudSplunk

About the role

Key responsibilities & impact
  • Building strong detection foundations and response frameworks to advance HubSpot’s security posture.
  • Driving the development of automated detection systems and prioritizing mitigations based on current threats and coverage gaps.
  • Partnering closely with engineering teams to supply data for purple team exercises and implement practical solutions that mitigate risks.
  • Guiding architectural decisions for our corporate security logging infrastructure and SIEM.
  • Contributing code to security automations, reviewing designs for detection reliability, and providing technical mentorship to engineers.
  • Acting as a key point of contact for threat intelligence and incident response expertise.
  • Supporting incident response efforts by aiding in investigations and understanding bad actor behaviors.

Requirements

What you’ll need
  • 10-15 years of experience in software development and information security, with a focus on detection engineering, threat intelligence, and incident response.
  • Proven experience in designing and implementing automated detection systems and managing large-scale security logging infrastructure (e.g., Splunk, SIEM).
  • Expert knowledge of endpoint and network detection (EDR/SASE), and hands-on experience with tools like CrowdStrike Falcon for investigation and response.
  • Deep understanding of incident response methodologies and frameworks such as NIST 800-61, SANS, and the ability to lead high-severity CritSits.
  • Demonstrated experience in correlating diverse telemetry (identity, cloud, network) to detect post-entry behavior and contain threats quickly.
  • Experience managing and ingesting Indicators of Compromise (IOCs) and mapping actor techniques to standards like STIX/TAXII.
  • Excellent communication skills, with the ability to articulate complex threat landscapes to both technical and non-technical audiences.
  • Relevant industry certifications (e.g., GCIH, GCFA, CISSP, or vendor-specific EDR certifications).

Benefits

Comp & perks
  • Health insurance
  • 401(k) matching
  • Flexible work arrangements
  • Paid time off
  • Professional development opportunities
  • Bonuses
  • Stock options
  • Equipment allowances