Staff Security Engineer

Summary

Join HubSpot as a Staff Security Engineer specializing in Splunk and data lake environments like Snowflake. You will lead the design and optimization of Splunk infrastructure, integrating it with data lakes to enhance threat detection and incident response. As a technical leader, you will drive Splunk and data lake initiatives and mentor team members. Responsibilities include designing and implementing scalable Splunk architecture, building dashboards and alerts, overseeing data pipelines, developing automation solutions, collaborating with cross-functional teams, and ensuring compliance. The ideal candidate possesses extensive experience in cybersecurity, Splunk, and data lakes, along with strong analytical and communication skills. HubSpot offers a competitive compensation package and benefits.

Requirements

• 8+ years in cybersecurity, with at least 5 years focused on security monitoring, threat detection, or incident response; 3+ years of advanced hands-on experience in Splunk and data lake technologies (Snowflake or similar)
• Bachelor’s degree in Computer Science, Information Security, Data Science, or related field (or equivalent experience)
• Expertise in Splunk Enterprise, Splunk Enterprise Security (ES), and Splunk SOAR
• Deep knowledge of data lake architectures (Snowflake, AWS S3, Google BigQuery) and experience integrating these with Splunk
• Advanced skills in log management, SPL (Search Processing Language), and SQL for data query and transformation
• Proficiency in scripting languages (Python, PowerShell, or Bash) for automation across Splunk and data lakes
• Familiarity with security frameworks (MITRE ATT&CK, NIST, CIS) and threat detection methodologies
• Advanced experience in incident response and forensic investigation
• Strong analytical and problem-solving abilities with attention to detail
• Excellent communication skills to explain technical concepts to a wide audience
• Ability to work collaboratively in a fast-paced, evolving environment

Responsibilities

• Design and implement a scalable, optimized Splunk architecture integrated with Snowflake and other data lakes to enable comprehensive security data analysis
• Build high-value dashboards, alerts, reports, and visualizations within Splunk and across integrated data lakes to provide actionable insights to security teams and stakeholders
• Oversee the integration and maintenance of security data pipelines between Splunk and data lakes like Snowflake. Ensure data accuracy, accessibility, and optimized storage across these platforms
• Develop automation solutions within Splunk and data lakes to streamline threat detection, response workflows, and data management. Leverage Splunk SOAR or similar solutions to enhance orchestration
• Collaborate closely with Security, IT, and Engineering teams to align on data ingestion standards, security requirements, and cross-platform use cases
• Ensure all Splunk and data lake processes meet compliance requirements (e.g., SOC 2, ISO 27001) and maintain documentation of security processes, configurations, and incident investigations

Preferred Qualifications

• Master’s degree
• Relevant certifications, such as Splunk Certified Architect, Splunk Enterprise Security Certified Admin, Snowflake certifications, CISSP, GCIH, or other advanced security certifications

Benefits

• Cash compensation range: 136500-191100 USD Annually
• Base salary
• On-target commission for employees in eligible roles
• Annual bonus targets under HubSpot’s bonus plan for eligible roles
• HubSpot’s equity plan to receive restricted stock units (RSUs)
• Overtime pay