Director, Product Security & Incident Response jobs in United States
cer-icon
Apply on Employer Site
company-logo

Huntress · 15 hours ago

Director, Product Security & Incident Response

positionUnited States
timeFull-time
remoteRemote
seniorityDirector/Executive
money$220K/yr - $240K/yr
date10+ years exp

Huntress is a fully remote cybersecurity company dedicated to protecting businesses with enterprise-grade solutions. The Director of Product Security and Incident Response will manage the attack surface, ensure vulnerability-free operations, and lead the offensive security team to safeguard the organization from cyber adversaries.

Cyber SecurityInformation TechnologySecuritySoftware
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Unified Security Vision: Develop and execute a roadmap that integrates the Secure SDLC with continuous adversary simulation. Ensure that findings from Offensive Security (Red Team) exercises are directly incorporated into the Product Security backlog
Board-Level Communication: Translate complex technical metrics (Drift, Detection Coverage) into business risk narratives for the executive leadership team (ELT) and the Board of Directors
Talent Development: Recruit, mentor, and retain top-tier talent in highly competitive fields (Offensive Security, AppSec). Build a culture of psychological safety where failure is viewed as a learning opportunity
Resilience Testing: Lead the Offensive Security team to conduct "Threat-Led Defense" operations. Simulate realistic APT campaigns to test the organization's ability to withstand and recover from attacks
CSIRT Readiness: Own the Incident Response capability for the company. Drive continuous improvement in incident response through rigorous drilling and automation
Drift Management: Implement automated systems to measure and remediate Configuration Drift and Detection Drift across the enterprise
Purple Teaming: Institutionalize collaboration among Offensive Security Analysts, CSIRT analysts, the broader Security Department, and other parts of the company to validate and tune detection logic in real time
Secure Infrastructure: Direct the security architecture for our cloud-native environment (AWS and Azure), ensuring immutable infrastructure and strict IAM governance
Vulnerability Management (VM): Oversee a risk-based VM program that prioritizes remediation based on exploitability and asset criticality
Regulatory Alignment: Ensure the product architecture supports SOC 2 and other regulatory requirements through partnership with our Governance team
AppSec Integration: Champion the use of automated security testing (SAST/DAST/SCA) within our engineering pipelines

Qualification

Offensive SecurityCloud-Native SecurityVulnerability ManagementIncident ResponseSecure Software Development LifecyclePurple TeamingTalent DevelopmentBoard-Level CommunicationRegulatory AlignmentCross-Functional Collaboration

Required

Minimum of 10+ years of progressive experience in Information Security, with at least 5 years in a senior leadership role (Director/VP) managing multi-disciplinary teams (e.g., Offensive Security, AppSec, Incident Response)
Demonstrable experience developing and executing a multi-year security roadmap that aligns technical controls with enterprise business objectives and risk tolerance
Proven ability to communicate complex technical risks and metrics (e.g., detection coverage, drift rate, remediation velocity) to executive leadership (ELT) and the Board of Directors, effectively translating security posture into business language
Deep, hands-on experience leading and maturing an Offensive Security (Red Team) function, specifically conducting Adversary Simulation and Threat-Led Defense operations
Expertise in Cloud-Native Security Architecture across major providers (AWS and/or Azure)
Extensive experience designing, implementing, and running a risk-based Vulnerability Management (VM) program at scale
Comprehensive knowledge of Secure Software Development Lifecycle (SSDLC) principles, including the successful implementation and integration of automated security testing tools (SAST, DAST, SCA) into CI/CD pipelines
Expert-level understanding of Incident Response (IR) and CSIRT operations, including owning the IR process, coordinating complex incidents, and driving continuous improvement through post-mortem analysis and rigorous drilling
Direct experience with 'Purple Teaming' methodologies to improve the efficacy of detection and response capabilities in collaboration with security engineering and operations teams
Exceptional talent acquisition, development, and retention skills, with a focus on mentoring high-performing, specialized security professionals in highly competitive domains (e.g., Offensive Security, AppSec)
Demonstrated ability to build a positive, high-trust team culture that emphasizes psychological safety, continuous learning, and cross-functional collaboration
Proven ability to drive consensus and influence change across engineering and product organizations without direct authority
Experience in aligning security practices with regulatory and compliance frameworks such as SOC 2, ISO 27001, or similar

Benefits

100% remote work environment - since our founding in 2015
Generous paid time off policy, including vacation, sick time, and paid holidays
12 weeks of paid parental leave
Highly competitive and comprehensive medical, dental, and vision benefits plans
401(k) with a 5% contribution regardless of employee contribution
Life and Disability insurance plans
Stock options for all full-time employees
One-time $500 reimbursement for building/upgrading home office
Annual allowance for education and professional development assistance
$75 USD/month digital reimbursement
Access to the BetterUp platform for coaching, personal, and professional growth

Company

Huntress

twittertwittertwitter
company-logo
Huntress is the enterprise-grade, people-powered cybersecurity solution for all businesses, not just the 1%.
dateFounded in 2015
location
Columbia, Maryland, USA
people-size501-1000 employees
web-link
https://huntress.com

H1B Sponsorship

Huntress has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (1)

Funding

Current Stage
Late Stage
Total Funding
$309.76M
Key Investors
Sapphire VenturesCIBC Innovation BankingJMI Equity
2024-06-18Series D· $150M
2023-05-16Series C· $60M
2022-09-07Debt Financing· $40M

Leadership Team

leader-logo
Kyle Hanslovan
CEO & Co-Founder
linkedin
leader-logo
John Ferrell
Co-Founder
linkedin

Recent News

Crunchbase News
Crunchbase Predicts: 15 Companies That Could Go Public In 2026 As The IPO Market Gains Momentum
2026-01-06
Built In
At Huntress, Hitting Milestones Is Part of the Daily Grind
2025-12-07
Huntress Labs
Huntress Ranked 149 Fastest Growing Company in North America on the 2025 Deloitte Fast 500™
2025-11-24
Company data provided by crunchbase