Simplify Logo

Full-Time

IT Helpdesk Engineer 2

Multiple Teams

Posted on 8/29/2025

ExtraHop

ExtraHop

501-1,000 employees

Real-time network monitoring and security analytics

Compensation Overview

$65k - $75k/yr

+ Bonus + Benefits

Seattle, WA, USA

In Person

Category
IT & Security
Requirements
  • 3+ years of IT Admin and Support experience.
  • Proficiency in MacOS, Windows, and cloud services (SaaS).
  • Excellent communication and interpersonal skills for effective user support and team collaboration
  • Must be available to work in the corporate office on a regular basis
  • Occasional travel to provide on-site IT support at conferences and events
  • Experience with IT security best practices and endpoint protection.
  • Strong customer service orientation and ability to train end users
  • Demonstrable desktop systems troubleshooting skills
  • Critical analysis and creative problem solving
  • Excellent written communication and documentation skills
Responsibilities
  • Provide Level 2 and 3 support for helpdesk requests, resolving escalated hardware, software, and network issues for end users
  • Administer and support IT services and applications, such as Okta and Google Workspace
  • Utilize endpoint management tools (e.g., Kandji, InTune ) to deploy software, manage updates, and enforce security policies across devices
  • Support onboarding and offboarding processes, including account creation, access management, and workstation setup
  • Collaborate with EHIT SA team members on projects, system upgrades, and infrastructure improvements
  • Provide support for SaaS and Desktop applications
  • Escalate unresolved or complex issues to senior IT staff as needed
Desired Qualifications
  • Experience and familiarity with Linux operating systems.
  • Experience in provisioning in IaaS environments such as AWS, GCP, and Azure
ExtraHop

ExtraHop

View
Website

ExtraHop provides cybersecurity and IT operations analytics to large enterprises, helping them monitor and secure their networks in real time. Its products give visibility into network activity, detect anomalies, and enable rapid threat response. The portfolio includes security solutions, cloud performance monitoring, and application analytics, sold mainly via a subscription model that includes professional services and training. Compared with competitors, ExtraHop combines real-time network visibility with analytics across security, cloud performance, and applications, targeting sizable enterprise customers across industries like healthcare, finance, and retail. The company’s goal is to help customers protect sensitive data, maintain smooth IT operations, and continually update its offerings to guard against evolving cyber threats while maintaining a steady, recurring revenue stream.

Company Size

501-1,000

Company Stage

Growth Equity (Venture Capital)

Total Funding

$1.1B

Headquarters

Seattle, Washington

Founded

2007

Simplify Jobs

Simplify's Take

What believers are saying

  • ExtraHop doubled EMEA Global 2000 sales in 2024, expanding to Nordics and Benelux.
  • Nearly 50% YoY customer growth in Middle East via AstroLabs Saudi partnership.
  • Named Leader in Gartner NDR Magic Quadrant 2025 for real-time hybrid threat detection.

What critics are saying

  • CrowdStrike native NDR erodes ExtraHop integration channel within 12-24 months.
  • AI SOC capabilities fail ROI demands, triggering churn in 9-18 months.
  • Kubernetes parity with Datadog, Wiz undercuts premium pricing in 12-18 months.

What makes ExtraHop unique

  • ExtraHop decrypts 100 Gbps traffic across 90+ protocols for encrypted threat detection.
  • RevealX integrates Entra ID, Active Directory, Okta for identity-enriched network telemetry.
  • ExtraHop Query Language enables AI agents to query network data via APIs and MCP.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Health Insurance

Dental Insurance

Vision Insurance

Unlimited Paid Time Off

401(k) Company Match

Pet Insurance

Parental Leave

Hybrid Work Options

Educational Reimbursement

FSA and Dependent Care Accounts

Paid Volunteer Time

Annual Discretionary Bonus Plan

Growth & Insights and Company News

Headcount

6 month growth

3%

1 year growth

3%

2 year growth

8%
MSP Channel Insights
Feb 25th, 2026
ExtraHop expands platform capabilities to support AI-driven SOCs

ExtraHop expands platform capabilities to support AI-driven SOCs. ExtraHop introduces advanced capabilities to equip security operations centres with autonomous AI, improving threat detection and response. * Wednesday, 25th February 2026 Posted 2 hours ago in by Sophie Milburn Security operations centres (SOCs) are increasingly integrating artificial intelligence (AI) to manage the rising complexity of cybersecurity threats. Recognising a gap in actionable insights, ExtraHop has unveiled a suite of enhancements aimed at empowering SOCs with autonomous AI capabilities. AI-driven SOCs can now leverage ExtraHop's advanced visibility and forensic capabilities. The platform aims to deliver deep network, identity, and Kubernetes telemetry, allowing AI agents to not only detect anomalies but also respond autonomously, minimising reliance on human intervention. The new capabilities utilise ExtraHop's network telemetry to deliver comprehensive, contextual insights. This seeks to ensure AI agents can identify and correlate activities across devices, users, applications, and identities. As a result, security teams can address threats at machine speed, enhancing overall efficiency. ExtraHop has reinforced its platform by embedding it with identity systems such as Entra ID, Active Directory, and Okta. This integration aims to enrich data on user interactions, providing SOC teams with the essential context for quick threat investigation and response, ultimately reducing Mean-time-to-Response (MTTR). The enhancements extend to cloud-native applications, allowing full visibility into Kubernetes environments. The platform seeks to enable SOC teams to capture, decrypt, and analyse Kubernetes traffic, providing data to inform AI-based decisions. With the introduction of the ExtraHop Query Language (EQL), AI agents can query voluminous network data to extract necessary information, fostering threat detection and automated responses via APIs and Model Context Protocol (MCP) servers. These developments aim to improve data visibility for modern SOCs and support the use of AI in threat detection and response as organisations expand their AI-driven cybersecurity strategies.

Business Wire
Feb 17th, 2026
ExtraHop expands into Saudi Arabia with AstroLabs, sees 50% customer growth in Middle East

ExtraHop, a network detection and response leader, has expanded into Saudi Arabia, partnering with business expansion platform AstroLabs. The move follows nearly 50% year-over-year growth in net new customers across the Middle East, particularly in government, financial services and transportation sectors. The company is scaling investment in Saudi Arabia with localised technical resources to support its channel partner ecosystem. ExtraHop's expansion aims to serve the Kingdom's largest enterprises and critical infrastructure providers as they pursue Saudi Vision 2030's digital transformation goals. ExtraHop is recognised as a leader in Gartner's Magic Quadrant for Network Detection and Response 2025. The company's platform provides real-time threat detection, automated response capabilities and compliance support for hybrid environments.

The Associated Press
Feb 12th, 2026
ExtraHop enhances NDR platform with Kubernetes visibility and identity integration for autonomous AI agents

ExtraHop, a network detection and response provider, has announced new capabilities designed to support AI-driven security operations centres. The company is providing network intelligence and forensic tools to enable AI agents to operate autonomously in threat detection and response. The platform now integrates with identity systems including Entra ID, Active Directory and Okta, combining user data with network telemetry. ExtraHop has also added visibility into Kubernetes environments and introduced the ExtraHop Query Language, allowing AI agents to query network data through APIs and Model Context Protocol servers. The updates aim to provide the contextual data required for AI agents to triage and respond to cyberthreats independently, addressing what the company describes as a critical gap in autonomous security operations.

Business Wire
Feb 12th, 2026
ExtraHop enhances network detection with identity integration and Kubernetes visibility for autonomous AI agents

ExtraHop, a network detection and response provider, has announced new visibility and forensic capabilities designed to support autonomous AI agents in security operations centres. The company is addressing the challenge of providing AI agents with contextual insights needed to operate independently against cyber threats. The platform now integrates with identity systems including Entra ID, Active Directory and Okta, combining identity attributes with network telemetry. ExtraHop has also added full visibility into Kubernetes environments and introduced the ExtraHop Query Language, enabling AI agents to query network telemetry at machine speed. The company uses deep protocol analysis to correlate activity across devices, users, applications and identities, providing context for AI agents to autonomously triage and respond to threats. ExtraHop positions network data as essential fuel for enterprise agentic operations.

SecurityInfoWatch
Feb 12th, 2026
ExtraHop Expands NDR Platform to Fuel Autonomous SOC Operations

ExtraHop expands NDR platform to fuel autonomous SOC operations. New identity integrations, Kubernetes visibility and query capabilities aim to close context gaps for AI-driven security teams Source SecurityInfoWatch.com Related To: Feb. 12, 2026 Key highlights. * Enhanced integration with identity platforms like Microsoft Entra ID, Active Directory, and Okta provides clearer insights into user actions and reduces ambiguity for AI agents. * New Kubernetes visibility features decrypt traffic and analyze resource metadata, closing security gaps in containerized and cloud-native environments. * Secure API and Query Language (EQL) access enable AI agents to perform real-time data queries, improving automated detection and response capabilities. * ExtraHop emphasizes the importance of high-fidelity, contextual data as a foundation for effective autonomous security operations. ExtraHop has rolled out new visibility and forensic capabilities designed to support the rise of the "agentic SOC," where AI agents augment or automate key elements of threat detection and response. The Seattle-based network detection and response (NDR) provider said the enhancements are intended to deliver the high-fidelity network intelligence required for autonomous security operations to function effectively, particularly as AI-assisted attacks increase in scale and sophistication. As organizations deploy AI agents to help offset staffing shortages and operational complexity, many are discovering that automation alone is not enough. Without comprehensive, contextual data on anomalous and malicious activity, AI-driven workflows can stall or generate unreliable outcomes.

INACTIVE