Senior Software Engineer | Security

At ExtraHop, we're on a mission to help organizations achieve complete visibility, real-time threat detection, and proactive security through cutting-edge network detection and response (NDR) technology. Our NDR product is a market leader, providing our customers with the ability to detect, investigate, and respond to threats faster than ever before.

We’re proud of the work we do and the recognition we’ve received, including our recent Gartner Peer Insights award, which reflects the trust and satisfaction our customers have in our solutions.

If you're passionate about innovation, dedicated to protecting digital infrastructures, and ready to make a real impact, we invite you to join our team and help us shape the future of cybersecurity.

Position Summary

We are ExtraHop. We're on a mission to provide security teams with the intelligence they need to confront and stop advanced threats like supply chain attacks, zero day exploits, and ransomware attacks. Cyber attackers still have the advantage. We’re taking it back with creativity, intellectual curiosity, and a sense of humor. Are you ready to help us reclaim the upper hand

We are seeking a highly skilled and motivated Senior Software Engineer | Security with a strong software and detection engineering background to join our Detection Engineering (DE) team and help expand ExtraHop’s industry leading detection coverage.

An ideal candidate will have strong software engineering, networking, and cybersecurity fundamentals as well as knowledge of modern Identity and Access Management (IAM). This position works closely with security researchers and data scientists to develop cutting edge network threat detections that leverage rule-based network observations as well as ML-powered anomaly detections.

As a Senior Software Engineer | Security, you will be working as part of a team dedicated to delivering industry leading detection capabilities. You will be expected to work with a high level of autonomy, to mentor other team members, and to demonstrate a high level of ownership of your areas of responsibility.

We offer an engaging and innovative environment in which people are encouraged and supported to collaborate on industry-leading technology and create a world-class engineering team, while they develop and enrich their individual growth.

We believe in actively investing in a diverse engineering organization. We are seeking highly talented software engineers from all backgrounds, who bring in their own perspectives, influences, and experiences. Are you as passionate as we are about positive culture and amazing technology? If so, we can’t wait to chat with you. ExtraHop R&D supports fully-flexible work options that includes full time onsite, hybrid, and fully remote working arrangements. With the exception of a few roles that require physical access, we believe in supporting you in making the choice that works best for you and makes the team successful.

Key Responsibilities

• Detection Engineering:
• Develop network threat detectors by leveraging rule-based and ML-based detection strategies
• Reproduce attacks in a lab environment using live tools and recorded PCAP traffic, and perform threat hunts on aggregated log data, in order to identify malicious behaviors and develop techniques to detect them
• Collaborate with Threat Research and Data Science teams to gain insight on attacker techniques and take advantage of the latest machine learning models to detect attacker behavior
• Work with infrastructure teams to help develop and improve tools that Detection Engineering and Threat Research teams use in developing and testing detections.
• Mentor and coach other Security Engineers regarding detector development and network threats
• Actively participate in code review to ensure quality and uplevel other engineers

Required Qualifications

• 5+ years of experience in software and/or detection engineering in a team environment
• Experience developing and deploying code for enterprise software applications with emphasis on code quality and maintainability
• In-depth knowledge of networking fundamentals, including the OSI model and excellent working knowledge of the key protocols from Layer 2 through Layer 7
• Experience working with modern Identity and Access Management (IAM) using SAML and OIDC
• Experience with network-oriented security tools such as Wireshark, Tshark, tcpdump, Suricata, Snort, or other packet capture/analysis tools

Preferred Qualifications

• Awareness of current network-based attacks and detection strategies, with a focus on post-exploitation, lateral movement, C2, and exfiltration techniques
• In-depth knowledge of Windows protocols and attack techniques
• Experience with threat hunting, purple teaming, and log/traffic analysis

The salary for this role is 150,000 - 180,000 + bonus + benefits

ABOUT EXTRAHOP

ExtraHop is the cybersecurity partner enterprises trust to reveal the unknown and unmask the attack. We’re on a mission to protect and propagate trust by revealing the cybertruth, and we partner with every customer, every day, to uncover it. Our Reveal(x) 360 platform is the only network detection and response solution delivering the 360-degree visibility needed to see everything on the network. When organizations have full network transparency with ExtraHop, they can see more, know more, and stop more cyberattacks.

Employees' wellbeing is top of mind for the ExtraHop team. Employees and their families will have the option to participate in the following benefits:

• Health, Dental, and Vision Benefits
• Flexible PTO, Sick Time Prorated Based on Date of Hire, and All Federal Holidays (US Only) + 3 Days of Paid Volunteer Time
• Non-Commissioned Positions may be eligible to participate in the Annual Discretionary Bonus Plan
• FSA and Dependent Care Accounts + EAP, where applicable
• Educational Reimbursement
• 401k with Employer Match or Pension where applicable
• Pet Insurance (US Only)
• Parental Leave (US Only)
• Hybrid and Remote Work Model

*Candidates should note that the Company may modify reporting relationships, job titles and compensation, including commissions and benefits, from time to time at its sole discretion, as it deems necessary, with or without prior notice.

We are intentional about our culture, diversity, and inclusion, and we welcome everyone to come ready to participate in contributing to this truly unique environment. At ExtraHop, we believe that the best products, services, and companies are built by strong teams that include a diversity of backgrounds, perspectives, ideas, and experiences. We are committed to supporting and enabling growth and opportunity for every employee at every level. This is the foundation of our success.

We are equally committed to equal employment opportunity, and it is foundational to how we recruit and hire our talented team. Employment is determined based upon capabilities and qualifications without discrimination on the basis of race, color, religion, sex, gender identification and expression, marital status, military status, pregnancy (including but not limited to potential pregnancy and pregnancy-related conditions), sexual orientation, age , national origin, ancestry, citizenship or immigration status, disability ,, genetic information, or any other protected class as established by law.

Our people are our most important competitive advantage, leading the charge cyber criminals and insider threats.

Ready to join us? #Extrahop #Security #NDR #informationsecurity #cybersecurity #cloudsecurity #infosec #LI-Remote

*

indicates a required field

First Name *

Last Name *

Email *

Phone *

Resume/CV *

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Education

School Select...

Degree Select...

Select...

Select...

Start date year

End date month Select...

End date year

Address: City and State *

LinkedIn Profile

GitHub

Are you able to work in the United States? * Select...

Will you now or in the future require sponsorship for employment visa status (e.g. OPT, H-1B visa status)? * Select...

Are you legally authorized to work in the country of the job for which you're applying, without sponsorship? * Select...

Have you ever worked for our company before? * Select...

Date Available

Salary Desired

How did you hear about this employment opportunity at ExtraHop?

I certify that the information given by me to ExtraHop Networks is true and complete to the best of my knowledge. I authorize ExtraHop Networks to contact any and all references given on my application for employment. If employed, I understand that my employment is "at-will", entered into voluntarily for an indefinite period of time, and can be terminated at any time for any reason at the discretion of either myself or ExtraHop Networks. * Select...

For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file.

As set forth in ExtraHop’s Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law.

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Select...

Form CC-305

Page 1 of 1

OMB Control Number 1250-0005

Expires 04/30/2026

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp .

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

• Alcohol or other substance use disorder (not currently using drugs illegally)
• Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
• Blind or low vision
• Cancer (past or present)
• Cardiovascular or heart disease
• Celiac disease
• Cerebral palsy
• Deaf or serious difficulty hearing
• Diabetes
• Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
• Epilepsy or other seizure disorder
• Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
• Intellectual or developmental disability
• Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
• Missing limbs or partially missing limbs
• Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
• Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
• Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
• Partial or complete paralysis (any cause)
• Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
• Short stature (dwarfism)
• Traumatic brain injury

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.