​Lumen is seeking a Principal Security Engineer to join its Black Lotus Labs Research & Analysis team. This highly specialized role leverages petabyte-scale data and global internet visibility to perform cutting-edge threat research, focusing on tracking nation-state and cybercriminal threat actors (APTs). The role involves serving as a Subject Matter Expert (SME), leading projects, and driving thought leadership.

• ​Location: Remote, United States of America.
• ​Compensation: Salary ranges from $149,084 to $218,657 based on location and experience.
• ​Required Experience: 5+ years of experience in the Intelligence Community (IC), Department of Defense (DoD), or similar tracking and defending against nation-state threat activity.
• ​Security Clearance: Active TS/SCI clearance with poly is required.
• ​Focus: Advanced Persistent Threat (APT) tracking, technical security research, automating detection (Python), threat hunting methodology leadership, and executive communication.

​The Main Responsibilities: Leadership, Research, and Automation

​The Principal Engineer sets the strategic direction for threat intelligence generation and distribution.

• ​Threat Research Leadership: Serve as a Threat Research Subject Matter Expert (SME), setting priorities for threat analysis, identifying knowledge gaps, and mentoring team members.
• ​Advanced Tracking: Use industry-leading technical knowledge to define, develop, and implement techniques to lead the team in tracking sophisticated adversaries.
• ​Data Fusion & Automation: Conduct research across technical datasets, fusing Black Lotus Labs telemetry with third-party data to automate detection of the latest attacker tools, techniques, and procedures (TTPs). Build prototype threat hunting solutions and large data analysis tools with Python or equivalent languages.
• ​Strategic Insights: Provide expert analysis and strategic insights on emerging threats and vulnerabilities, translating complex technical information into actionable intelligence for executive leadership.
• ​Thought Leadership: Spearhead thought leadership initiatives by leading Black Lotus Lab’s voice at security conferences and internal executive briefings.

​Required Qualifications

• ​Threat Hunting Proven Track Record: Proven experience in threat hunting and in-depth technical security research, successfully identifying, tracking, and disrupting nation-state and cybercriminal actors.
• ​Experience: 5+ years of experience in the IC, DoD, or similar environment tracking nation-state activity.
• ​Clearance: Active TS/SCI clearance with poly (Mandatory).
• ​Technical Proficiency: Deep understanding of advanced threat hunting methodologies, attacker TTPs, and experience building prototype hunting solutions with Python.
• ​Communication: Exceptional communication and presentation skills to convey complex information to technical and non-technical audiences (executives, board members, conference attendees).

​Well-Experienced Candidates May Also Have

• ​Proficiency in malware reverse engineering and incident response.
• ​Software development experience in Docker and big data technologies like Hadoop, Spark, and TensorFlow.
• ​Experience leading teams of technical threat discovery professionals.