Lead Security Developer

Arctic Wolf, with its unicorn valuation, is the leader in security operations in an exciting and fast-growing industry—cybersecurity. We have won countless awards for our excellence in security operations and remain dedicated to providing an industry-leading customer and employee experience.

Our mission is simple: End Cyber Risk. We’re looking for a Lead Security Developer to be a part of making this happen.

About the role:

As a Security Developer on Arctic Wolf’s Security Posture (SP) team, you get the opportunity to work as both a cybersecurity researcher and a Detections/Vulnerability developer. You’ll identify areas to improve the platform’s threat and vulnerability and configuration risk detection capabilities. Your overarching goal is to improve security posture for Arctic Wolf’s clients. This role works cross-functionally with Product Management, Security Services, and various other specialists to continuously improve the coverage and efficacy of their Managed Risk solution.

What you’ll be doing:

• Leading team members to continuously improve coverage, efficiency and deliver customer-facing and internal services.

• Participate in the full software development lifecycle.

• Build well-designed, testable, efficient, secure vulnerability and misconfiguration detection code in the following areas:

• Classic Endpoint Vulnerability and Config Management:

• Host based vulnerabilities (OVAL based)

• Network-based vulnerability tests (NVTs)

• Configuration Benchmark automations development (i.e. CIS)

• Cloud Config and Posture Management:

• Dev of security policy in cloud service providers

• Pipeline hardening checks and policy development.

• Assist in operational teams to resolve unexpected results, receive feedback and improve detection efficacy.

Arctic Wolf offers a culture of sharing, so every team can share their work with the entire department during our team and SP-wide demos. Once a year they hold a department-wide Hackathon, teaming up across all R&D teams over four days to collaborate and build cool ideas outside the normal project scope.

What we are looking for:

• 7+ years with competency in at least one backend language (any of Go, Python, Java, Javascript preferred)

• A full understanding/application of secure development practices.

• Security minded practitioners experienced in operational or security engineering roles with an emphasis in vulnerability and misconfiguration detection tooling.

• Full understanding and use of DevOps methods and practices

• Understanding and ability to work with test-driven development.

• Experience with AWS, Docker, Kubernetes, IaC an asset

Bonus considerations for:

• Experience with 3rd Party Vulnerability Management tools (Qualys, Nessus, Rapid7, OpenVAS)

• Experience with Cloud-based configuration and Security Posture Management tools (Azure Security Centre, AWS Security Hub, Sonrai, Cloudsploit, Prisma Cloud)

• A background working with open-source vulnerability and pen-testing platforms such as Nmap, OpenVAS, Burp, or Metasploit

• IT Deployment backgrounds in particular leveraging deployment automation tools such as Salt or Ansible

Note: Even if you haven’t worked with all the specific technologies listed above, you bring a diverse knowledge base that you use to help the team solve complex technical problems. You have comprehensive knowledge of software development practices and mastery of overwriting and debugging code. You’ll receive all the security training you need during our onboarding process and through additional training on the job.

About Arctic Wolf

At Arctic Wolf we’re cultivating a collaborative and productive work environment that welcomes a diversity of backgrounds, cultures, and ideas to make our teams even stronger as we grow globally. We’ve been named one of the 50 Most Innovative Companies in the world for 2022 (Fast Company)—and the 2nd Most Innovative Security Company. We have won countless awards for our excellence in security operations and remain dedicated to providing an industry-leading customer and employee experience including:

• Top Workday USA (2021-2024)

• Great Place to Work (2022-2024) & Best Workplaces for Women (2024) in Canada

• Best Workplaces in Tech & For Women in the UK (2023)

• Top Company by Kununu in Germany (2024)

Our Values

Arctic Wolf recognizes that success comes from delighting our customers, so we work together to ensure that happens every day. We believe in diversity and inclusion, and truly value the unique qualities and unique perspectives all employees bring to the organization. And we appreciate that—by protecting people’s and organizations’ sensitive data and seeking to end cyber risk— we get to work in an industry that is fundamental to the greater good. 

We celebrate unique perspectives by creating a platform for all voices to be heard through our Pack Unity program. We encourage all employees to join or create a new alliance. See more about our Pack Unity here.

Arctic Wolf is an Equal Opportunity Employer and considers applicants for employment without regard to race, color, religion, sex, orientation, national origin, age, disability, genetics, or any other basis forbidden under federal, provincial, or local law. Arctic Wolf is committed to fostering a welcoming, accessible, respectful, and inclusive environment ensuring equal access and participation for people with disabilities. As such, we strive to make our entire employee experience as accessible as possible and provide accommodations as required for candidates and employees with disabilities and/or other specific needs where possible. Please let us know if you require any accommodations by emailing recruiting@arcticwolf.com.

Security Requirements

• Conducts duties and responsibilities in accordance with AWN’s Information Security policies, standards, processes, and controls to protect the confidentiality, integrity and availability of AWN business information (in accordance with our employee handbook and corporate policies).

• Background checks are required for this position.