Principal Engineer, Cloud Content (Cybersecurity)

TL;DR

Principal Engineer, Cloud Content (Cybersecurity): Designing and leading the development of cloud threat detection logic, advanced telemetry pipelines, and real-time threat-detection capabilities across public clouds. Focus on building detection-as-code frameworks, researching emerging cloud-native threats, and designing scalable detection architectures to raise detection quality and velocity.

Location: Remote within the United States.

Salary: $195,000 - $290,000 per year (for U.S. candidates)

Company

hirify.global is a global leader in cybersecurity, specializing in an AI-native platform to stop breaches and protect modern organizations.

What you will do

• Architect, build, and optimize cloud detection pipelines, including telemetry ingestion, log processing, and detection-as-code workflows.
• Develop advanced detections for cloud-native threats like IAM misconfigurations, lateral movement across cloud services, and container attacks.
• Lead cloud threat research, tracking emergent attacker tradecraft and multi-cloud attack surfaces.
• Conduct advanced investigations involving cloud logs, control-plane events, network telemetry, and container/runtime signals.
• Collaborate with cloud engineering, platform, and DevOps teams to embed telemetry early in design.
• Influence architectural decisions and strategic initiatives through data, technical depth, and adversary-focused perspectives.

Requirements

• 8 to 15+ years of experience in cloud threat detection, cloud security engineering, incident response, threat hunting, or equivalent.
• Strong expertise with AWS and at least one of Azure or GCP; deep knowledge of cloud control-plane events, service logs, and network architectures.
• Proven ability to design and deliver high-fidelity cloud detections in large-scale environments, with understanding of FP/FN trade-offs and detection-as-code methodologies.
• Strong engineering ability: Python, Go, or equivalent languages; familiarity with CI/CD, infrastructure-as-code, and cloud automation.
• Demonstrated ability to lead complex cloud investigations and turn findings into durable detection logic.
• Strong understanding of cloud threat models: identity-based attacks, misconfiguration abuse, and data-exfiltration paths.

Nice to have

• Experience with multi-cloud detection architectures at scale.
• Experience building detection testing frameworks or automated validation pipelines.
• Deep familiarity with attacker tradecraft targeting cloud infrastructure.

Culture & Benefits

• Remote-friendly and flexible work culture.
• Market leader in compensation and equity awards.
• Comprehensive physical and mental wellness programs.
• Competitive vacation, holidays, and paid parental/adoption leaves.
• Professional development opportunities for all employees.
• Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections.