Senior Threat Hunting Engineer - United States - Remote
2 days ago
Job description
We're transforming the grocery industry
At Instacart, we invite the world to share love through food because we believe everyone should have access to the food they love and more time to enjoy it together. Where others see a simple need for grocery delivery, we see exciting complexity and endless opportunity to serve the varied needs of our community. We work to deliver an essential service that customers rely on to get their groceries and household goods, while also offering safe and flexible earnings opportunities to Instacart Personal Shoppers.
Instacart has become a lifeline for millions of people, and we're building the team to help push our shopping cart forward. If you're ready to do the best work of your life, come join our table.
Instacart is a Flex First team
There's no one-size fits all approach to how we do our best work. Our employees have the flexibility to choose where they do their best work—whether it's from home, an office, or your favorite coffee shop—while staying connected and building community through regular in-person events. Learn more about our flexible approach to where we work.
Overview
Join Instacart's Incident Response organization as a Senior Threat Hunting Engineer, where you'll proactively hunt for threats across our complex infrastructure, conduct deep-dive forensic investigations, and build comprehensive attack timelines. This role requires an expert-level practitioner who can identify sophisticated adversaries, analyze attack patterns, and provide critical intelligence to protect our platform and users.
You will work closely with Engineering, Detection, Red Team, Fraud, Trust & Safety, and Legal to ensure Instacart understands its threat landscape and can rapidly respond to malicious activity.
Instacart's Security team protects our products, infrastructure, and ecosystem. We combine strong technical expertise, data-driven insights, and a proactive approach to keep our platform safe. Our Threat hunting function provides strategic, operational, and tactical intelligence to support decision‑making and improve detection, response, and resilience.
About the Job
Proactive Threat Hunting
- Design and execute hypothesis-driven threat hunting campaigns across cloud infrastructure, applications, and endpoints
- Identify anomalous behaviors, TTPs (Tactics, Techniques, and Procedures), and indicators of compromise (IOCs)
- Hunt for advanced persistent threats (APTs), insider threats, and supply chain compromises
- Develop custom detection logic and hunting queries (KQL, SPL, SQL) for SIEM and EDR platforms
- Continuously improve hunting methodologies based on emerging threat intelligence
Incident Response & Forensics
- Conduct comprehensive cyber forensic investigations across Linux, Windows, macOS, containers, and cloud environments
- Perform memory forensics, disk analysis, network traffic analysis, and log correlation
- Preserve and analyze digital evidence following chain-of-custody procedures
- Determine root cause, attack vectors, and lateral movement paths
About You
Minimum Qualifications
- 6+ years in cybersecurity with 4+ years focused on threat hunting, incident response, or digital forensics
- Relevant certifications: GCFA, GCFE, GNFA, GREM, OSCP, GCIA, or similar
- Hands-on experience with major security incidents and breach investigations
- Deep understanding of attacker TTPs across the cyber kill chain
- Experience in high-scale cloud environments (AWS, GCP, or Azure)
- Understanding of e-commerce, payment systems, and mobile app security
Preferred Qualifications
- Background in offensive security or red teaming
- Experience with SOAR platforms and security automation
- Knowledge of machine learning for threat detection
Instacart provides highly market-competitive compensation and benefits in each location where our employees work. This role is remote and the base pay range for a successful candidate is dependent on their permanent work location. Please review our Flex First remote work policy here.
Offers may vary based on many factors, such as candidate experience and skills required for the role. Additionally, this role is eligible for a new hire equity grant as well as annual refresh grants. Please read more about our benefits offerings here.
For US based candidates, the base pay ranges for a successful candidate are listed below.
Similar jobs
About the role · As Threat Hunting Lead, you'll define how modern, AI-assisted threat hunting should work in practice. You will be a part of the product development organization and take deep, hands-on experience from SOC, MDR, or security engineering roles and turn it into clear ...
7 hours ago
The Senior Director of Security will lead and manage the strategy development and optimization of the global security detection response capabilities.This role responsible architecting high-fidelity scalable detection logic across cloud-based corporate infrastructure proactively ...
1 month ago
· cFocus Software seeks a Threat Hunter to join our program supporting the Department of Health and Human Services (HHS) This position is remote. This position requires the ability a Public Trust clearance. · Qualifications:Bachelor's degree in Cybersecurity, Information Technol ...
2 days ago
The Senior Detection and Response Engineer is a critical technical role responsible for driving the organization's defensive security capabilities across detection engineering, security orchestration automation response SOAR threat hunting program. · ...
1 week ago
+SentinelOne's Vigilance DFIR team conducts digital forensic investigations and threat hunting operations for global clients. · ++Accountable to ensure excellence in every engagement, to include scoping, forensic analysis, reporting, hunting remediation consulting and client comm ...
1 week ago
· UltraViolet Cyber is seeking a skilled Cybersecurity Threat Hunter to proactively identify, investigate, and mitigate advanced cyber threats targeting our customer environments. · ...
4 weeks ago
We are seeking a Cybersecurity Operations Manager to lead our SOC team and drive enhancements to SOC capabilities, lead major investigations, measure operational effectiveness through KPIs and SLAs. · ...
1 week ago
About the role · The Security Engineer will own investigation quality and be primarily responsible for ensuring that our AI SOC Analyst is generating accurate, timely reports. This role is pivotal in continuing to maintain and expand our investigation quality lead over the compet ...
7 hours ago
Blackpoint Cyber es la principal proveedora de tecnología mundial para la caza, detección y remediación de amenazas cibernéticas. Fundada por expertos en operaciones cibernéticas del National Security Agency (NSA) que aplicaron sus conocimientos para traer soluciones tecnológicas ...
1 week ago
In this role, you will work on the product design of umbrelOS, some of our first-party umbrelOS apps, and the website. · We hope you: · Like to spend your days staring at artboards in Figma · Are obsessed with creating delightful micro-interactions and animations · Are willing t ...
2 days ago
Every day NuHarbor Security improves the cybersecurity of our clients by making it stronger and easier to understand. Our comprehensive suite of security services provides an organizational view of security that is focused on results and recommendations valuable for both business ...
1 week ago
We are looking for an experienced Threat Hunter to join our Threat Hunting team. This is a remote role, reporting to the Manager, Threat Hunting in the Engineering department. · Identify, scope, and manage ongoing customer incidents while developing remediation plans to improve s ...
1 week ago
We value high-quality execution ownership strong morals with us principles are never tested we do right by our customers If you re a driven professional with a passion for learning contributing towards the best Blackpoint welcomes you Our team is energetic collaborative maintaini ...
1 week ago
· About Zscaler · Zscaler is a pioneer and global leader in zero trust security. The world's largest businesses, critical infrastructure organizations, and government agencies rely on Zscaler to secure users, branches, applications, data & devices, and to accelerate digital tran ...
2 days ago
+Job summary · As an MDR Analyst SkillBridge Intern at Blackpoint Cyber, you will analyze and evaluate anomalous network and system events in a 24x7x365 Security Operation Center (SOC) environment via conducting lead-less threat hunting.Analyze and evaluate anomalous network and ...
1 month ago
We are looking for a proactive, self-starting individual with a developer-minded approach to facilitate the seamless integration of partner technologies. · ...
6 days ago
MDR Analyst Skillbridge Intern - Swing Shift (4pm - 12am ET)
Only for registered members
Lorem ipsum dolor sit amet, · consectetur adipiscing elit, · sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.Analyze and evaluate anomalous network and system events in a 24x7x365 Security Operation Center (SOC) environment via conducting lead-less threat huntin ...
5 days ago
As a member of Numeral's Senior Account Executive team you will work closely with our Head of Sales and other senior Numeral leaders focused on sourcing new clients and generating net-new revenue. · ...
1 month ago
As a member of Numeral's Senior Account Executive team, you will work closely with our Head of Sales and other senior Numeral leaders focused on sourcing new clients and generating net-new revenue. · Experience selling a fast-evolving product into Large Market organizations ...
1 week ago
Director of Engineering, Endpoint Detection and Response
Only for registered members
Huntress seeks an experienced leader to elevate our Endpoint Detection and Response (EDR) teams and deliver purpose-built products for all businesses. · ...
4 weeks ago