About the role
Big Ideas. Real People.
At Orca, in the right environment and with the right team, talent has no boundaries. This team spirit, together with our drive to always aim high, has quickly earned us unicorn status and turned us into a global cloud security innovation leader. So if you’re ready to join an amazing team of people who inspire each other every day, now is the time to find your place in our pod.
We’re looking for driven and talented people like you to join our CTO office and our mission to change the future of cloud security. Ready to dive in and swim with our pod?
Highlights
- High-growth: Over the past seven years, we’ve consistently achieved milestones that take other companies a decade or more. During this time, we’ve significantly grown our employee base, expanded our customer reach, and rapidly advanced our product capabilities.
- Disruptive innovation: Our founders saw that traditional security didn’t work for the cloud—so they set out to carve a new path. We’re relentless pioneers who invented agentless technology and continue to be the most comprehensive and innovative cloud security company.
- Well-capitalized: With a valuation of $1.8 billion, Orca is a cybersecurity unicorn dominating the cloud security space. We’re backed by an impressive team of investors such as Capital G, ICONIQ, GGV, and SVCI, a syndicate of CISOs who invest their own money after conducting their due diligence.
- Respectful and transparent culture: Our executives pride themselves on being accessible to everyone and believe in sharing knowledge with the employees. Each employee has a place in shaping the future of our industry.
About the role
We’re looking for a Senior Security Researcher to drive high-impact research across cloud, runtime, and application environments, and translate it into product-grade detections. This is a hands-on role for someone who can lead investigations end-to-end: from understanding attacker tradecraft and vulnerabilities, through building reliable detection logic, to influencing product direction.On a typical day you'll
- Lead deep-dive research into real-world attacks, vulnerabilities, and emerging cloud and runtime techniques
- Own complex investigations (DFIR, threat hunting, root-cause analysis) and convert learnings into durable detections
- Design and implement advanced detection logic and analytics across cloud assets, containers, Kubernetes, and Linux runtime telemetry
- Build prototypes and production-ready components that improve detection accuracy, fidelity, and coverage
- Partner closely with engineering and product to shape roadmap priorities and guide implementation details
- Develop research methodologies, testing frameworks, and validation processes for new detections
- Mentor and level up other researchers and engineers through reviews, knowledge sharing, and technical guidance
- Represent the team externally through publications, technical blogs, and conference talks
About you
- 7+ years of experience in security research, detection engineering, incident response, or comparable hands-on security roles
- Demonstrated expertise in at least two of the following areas (and working knowledge in the others):
Linux internals / operating systems fundamentals
Cloud security (AWS/Azure/GCP), including common attack paths and misconfiguration patterns
DFIR, threat hunting, and investigation workflows using telemetry and logs
Vulnerability research or vulnerability management at scale (triage, prioritization, exploitation understanding)
Application and API security fundamentals - Strong programming skills in Python (Go is a strong plus); ability to produce maintainable research code and production logic
- Strong data skills: comfortable working with large telemetry datasets (SQL and log analytics platforms such as Elastic or similar)
- Ability to reason about attacker behavior, build threat models, an
Aplyr's read
Orca Security excels in cloud security, offering cutting-edge solutions for identifying vulnerabilities. Ideal for tech-savvy professionals passionate about cybersecurity innovation.
What's promising
- •Orca Security offers a pioneering platform for cloud security, enhancing visibility and protection.
- •The company is rapidly expanding, with numerous senior roles in product management and engineering.
- •Strong focus on AI and data security, attracting top talent in these fields.
What to watch
- •High competition in the cybersecurity market may challenge Orca's growth.
- •Rapid expansion can strain resources and affect company culture.
- •Limited public information about financial stability and long-term viability.
Why Orca Security
- •Orca Security's platform provides comprehensive visibility across entire cloud infrastructures.
- •The company emphasizes AI integration in its security solutions.
- •Orca Security attracts talent with specialized roles in cutting-edge security research.
Aplyr’s read is generated by AI from public sources. Was it useful?
About Orca Security
Orca Security is a cloud security company that provides comprehensive visibility and protection for cloud environments. Their innovative platform enables organizations to identify and remediate security vulnerabilities across their cloud infrastructure, enhancing overall security posture and compliance.
