Towards the end of our interview process is an in-person interview.

Do you want to help make the world safe from cyber attack?

At Corelight, we believe that the best approach to cybersecurity risk starts with the network. Attackers can evade endpoint detection, firewalls and many other technologies - but they can’t avoid leaving digital footprints on the networks they traverse. Built on open-source innovations from Zeek, Suricata and YARA and refined through years of real-world use, Corelight transforms network footprints from physical, virtual and cloud networks into actionable insights. Our customers use these insights to speed incident response and proactively hunt for threats.

Role Overview

As a Product Manager – Threat Detection, you will be responsible for driving the development of Corelight’s Network Detection and Response (NDR) capabilities. You will work closely with security researchers, engineers, and open-source contributors to ensure Corelight’s solutions remain at the forefront of network-based threat detection. Your role will focus on enhancing threat detection capabilities across Corelight’s platform, integrating emerging threat intelligence, and defining the product roadmap to keep security teams ahead of adversaries.

This position is ideal for someone with strong networking and cybersecurity experience, deep knowledge of network security analytics, and a passion for building security products that detect real-world threats.

Key Responsibilities

• Define, prioritize, and execute the product strategy for Corelight’s threat detection capabilities, with a primary focus on Machine Learning (ML), Artificial Intelligence (AI), and agentic solutions.
• Clarify and lead the data requirements necessary to support ML/AI detection capabilities, providing direct input into the Corelight Detection Schema.
• Research adversary tactics and techniques to identify and prioritize detection opportunities, specifically focusing on how ML/AI can be applied across all monitoring sources.
• Lead the Threat R&D, Data Science, and Engineering to operationalize research and champion model fidelity, performance, and explainability to drive customer adoption and trust.
• Act as the primary technical liaison between customers, internal research teams, and engineering, while monitoring the industry and competitors for market indicators and key differentiators.

Required Qualifications

• 7+ years in cybersecurity, with at least 3+ years in a technical product management, security research, or detection engineering leadership role.
• Proven experience defining product strategy and managing a backlog for a technical security product.
• Expert-level understanding of network protocols, network security principles, and intrusion detection methodologies.
• Strong, practical experience with detection frameworks and a proven ability to build a detection strategy around it.
• Deep experience with NDR data sources, especially Zeek, Suricata, and/or Snort.
• Experience with network forensics, packet analysis, and identifying anomalous or malicious network behavior.
• Excellent analytical skills, with the ability to translate complex technical challenges and threat intelligence into clear, prioritized product requirements.
• Bachelor's degree in Computer Science, Cybersecurity, or equivalent practical experience.

Preferred Qualifications

• MBA or advanced degree in Cybersecurity or related field.
• Background in hands-on threat hunting or threat intelligence is a strong plus.
• Experience in developing or managing products related to behavioral detection models, network anomaly detection, or AI/ML-based security analytics.
• Direct experience working with security operations teams (SOC), threat hunters, or forensic analysts to understand their needs and workflows.
• Experience contributing to open-source security initiatives.

Fueled by investments from top-tier venture capital organizations such as Crowdstrike, Accel and Insight, Corelight is the fastest growing network detection and response platform in the industry. Our customers trust us to protect mission-critical assets in leading enterprises, government, and research institutions worldwide. We are leading the way with AI-assisted workflows, machine learning models, cloud security and SaaS-based solutions to arm defenders with the tools and knowledge they need to disrupt cyber attacks. Our team of passionate innovators are dedicated to solving some of the toughest challenges in cybersecurity, while fostering a collaborative, inclusive, and growth-oriented culture.

Corelight is committed to a geographically distributed yet connected employee base with employees working from home and office locations around the world. At Corelight, we take pride in the diversity of our backgrounds and perspectives, and we are committed to fostering an inclusive environment that strengthens our company.

We are looking forward to meeting you. Check us out at www.corelight.com