Security Engineer, SecOps

Hoxhunt·Ashby
Helsinki, FinlandFullTimeEUR 4500-6000 per monthPosted Jul 2, 2026
Open original posting

Our mission and why it matters

We are on a mission to make humans the strongest security layer.

Human risk remains one of the biggest vulnerabilities and traditional awareness training is not enough. We take a different approach by combining AI-driven personalization, real threat detection, and behavioral science to actively protect people and organizations.

We don't just simulate risks. We build the tools that detect and stop them.

Why this role matters

We're looking for a Security Engineer, SecOps to join Hoxhunt's Product Security team. Your core mission is to help mature our security monitoring into a stronger, automation-based security operations capability. We already have the foundations in place, and we want you to build on them with detection, observability and response delivered through tools and automation rather than a staffed SOC. You'll also coordinate vulnerability management across our engineering teams and write the production code and automation that makes security scale.

You'll also help keep our customer security answers accurate, working with the team on the security questionnaires and RFPs that unblock deals. This is a real and recurring part of the job, roughly 10–30% of your time depending on deal flow: reviewing and updating our existing security answers, and researching new ones where none exist yet, drawing on broad SOC 2, ISO and HIPAA knowledge, with the occasional customer call when a deal needs technical depth.

Beyond supporting deals, you'll also help turn customers' security and compliance requirements into product features and policy proposals, helping close the loop between what customers ask for and what we build. You won't start from scratch or do it alone: there's an existing library of security answers and compliance tooling (Vanta) behind you, and the team shares the load. The team's job is simple to state: address any security concern a product team or customer raises, and you'll be part of that.

This is an engineering role, not an analyst or shift-based one. You'll bring real, hands-on instinct for incident response and case management, and the job is to turn that instinct into systems: codifying it into automation, playbooks and tooling so detection and response scale without scaling headcount. Product Security is a small, high-leverage team: we work through discovery, planning and influence, and most implementation happens across the wider Technology organisation. You'll add the delivery muscle and the automation-first mindset to keep maturing our security roadmap (security observability, SIEM build-out, vulnerability management). We expect you to use modern AI tools throughout your work to expand and scale your reach.

What you'll own and drive

You’ll own security capabilities that help us detect, respond, and scale security through engineering.

Primary Responsibilities

  • Build and improve our security monitoring: own detections and alerting end-to-end (build, tune, maintain) and contribute to maturing our wider automation-based capability and SIEM build-out, with detection and response running through tools and code, not a manned SOC.

  • Build and operate our security observability: audit logging, security telemetry, and the dashboards/signals the rest of engineering relies on.

  • Coordinate vulnerability management end-to-end: triage, prioritise (CVSS plus exploitability and context), and drive remediation in partnership with the teams that own the code.

  • Strengthen our cloud security architecture: implement and help shape network segmentation and egress controls, IAM and least-privilege, secrets management and infrastructure-as-code on GCP, partnering with SRE/Platform.

  • Help connect customer requirements to what we build: turn security and compliance requirements from customers and frameworks into concrete feature and policy proposals, surfacing gaps to the team and roadmap.

  • Strengthen the secure development lifecycle: SAST, DAST, SCA, and secrets scanning across our pipelines.

  • Measure and test what we build: treat detections as code that is peer-reviewed, unit-tested and backtested against historical logs (and, where useful, validated with attack simulation), and track effectiveness quantitatively and qualitatively (MTTD, false-positive rate) to make data-driven decisions.

  • Write production-quality software and automation to streamline security processes, automate response, and reduce manual work.

Secondary Responsibilities

  • Help keep our security answers accurate: a key contributor to customer security questionnaires and RFPs, reviewing and updating existing answers and researching new ones where none exist, drawing on broad SOC 2, ISO and HIPAA knowledge and our existing answer library and tooling. You provide technical input, not the sales process.

  • Support GRC: automate compliance evidence collection and help implement security controls.

  • Contribute to threat modelling and security reviews alongside the rest of the team.

  • Help guide our external penetration-testing partners on major product use cases.

  • Support secure engineering practices and developer security awareness.

What makes you thrive here

You have:

  • Solid working knowledge of a major cloud (GCP and/or AWS) and of containers / Kubernetes.

  • Hands-on experience building security monitoring through automation: logging and telemetry, detections, alerting, and automating response (a detection-as-code / infrastructure-as-code mindset).

  • Experience with vulnerability management and coordinated remediation.

  • Broad working knowledge of the security compliance frameworks Hoxhunt operates under (SOC 2, ISO 27001, ISO 42001 and HIPAA), enough to answer customer security questions confidently and support audits, plus awareness of the wider control-framework and regulatory landscape (NIST CSF, CIS, NIS2).

  • Clear written and verbal communication; able to work across teams.

  • Comfortable using modern AI tools to expand your impact, automate repetitive work, and scale your effectiveness.

  • Self-motivated, continuous learning is a must: you actively teach yourself new tools, threats and techniques and keep your skills current.

  • Ability to write production-quality software as part of a team in at least one real programming language (JavaScript, Python or Go) for cloud deployment.

You don't need to meet every qualification on day one. If you're a strong engineer with the right instincts and you're excited to grow into the rest, we'd still like to hear from you.

Bonus points if you also:

  • Detection engineering and/or SIEM build-out experience.

  • A front-line SOC or incident-response background is a plus: you've done hands-on detection and response and now want to automate and scale it rather than do manual triage.

  • Familiarity with secure-development tooling (SAST, DAST, SCA, secrets scanning) and core concepts such as OWASP and threat modelling.

  • Hands-on experience implementing controls or running audits, and automating compliance evidence (e.g. with a GRC platform such as Vanta).

  • Distributed / large-scale systems experience.

  • Bug-bounty experience; contributions to the open-source or security community (CVEs, talks).

  • Understanding of SaaS and cloud-native business models.

What makes this role unique

This is a rare opportunity to combine building, breaking, and operating in a broad security engineering role. You’ll write production code, design how we detect and respond through automation, and act as a force multiplier for security across the engineering organization. You’ll report to the Director of Product Security and work closely with experienced colleagues across Product Security, SRE, and the product teams, with plenty of opportunity to shape how we build, operate, and scale security.

What you can expect from us

  • Compensation: Monthly salary of €4,500–€6,000 per month depending on your experience.

  • Working ways: We work in a flexible, hybrid work setting. You are expected to visit the Helsinki office weekly.

  • High performance meets high humanity: We bring an incredibly driven, high-impact energy to our work, but we leave our egos at the door. You will be surrounded by wildly talented, dedicated colleagues in an environment built on extreme kindness, support, and psychological safety.

  • Authentic trust & autonomy: We hire great people and trust them to do great work. You will find a culture free of micromanagement, giving you the autonomy to take real ownership, drive impact, and shape things early on.

  • A product you can be proud of: It is incredibly rare in cybersecurity to build a product that end-users genuinely love. You will join a fast-paced, technically sophisticated team making a real, measurable impact against cybercrime.

  • The perks that matter: Alongside this amazing community, you will enjoy extensive healthcare with other benefits and our beautiful office in Helsinki (complete with a gym and swimming pool!).

Recruitment Process

We want to get to know you and how you think! Our process includes:

  1. Screening call with Talent Acquisition (30 min, remote)

  2. Interview with the Director of Product Security (60 min, remote)

  3. Technical interview (60-90 min, onsite)

  4. Reference checks and final offer

About Hoxhunt

Hoxhunt was founded in 2016 by four visionaries. Today we are a global team of +270 amazing Hoxhunters advancing a truly AI-native category leader in human risk management, with key hubs in the United States, the United Kingdom, Singapore, and Finland. We are proud to be an award-winning, fast-growing software company, recognized by G2 and Gartner, named to TIME Magazine's list of the World's Top EdTech Companies, and featured for our innovation in major publications like Fast Company, TechCrunch, Forbes, and Inc.

As a multi-product company, Hoxhunt goes beyond traditional security awareness. We don't just educate employees through frequent, personalized, and behavior-changing cybersecurity training - we also actively build real threat intelligence and response tools that protect organizations against malicious cyberattacks every single day.

Be among the first to know about our open positions. Drop your details in our Talent Community, and we will reach out when there is a match!

Want jobs like this matched to you?

Swoopd scores fresh postings against your résumé so you only see the matches that matter.

Get started free