← all jobs

[Remote] Principal Advanced Threat Response Analyst

Work from home Full-time role Hiring

Note: The job is a remote job and is open to candidates in USA. Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. The Principal Advanced Threat Response Analyst will lead global incident response and threat hunting initiatives, drive proactive and reactive responses for APT, ransomware, and insider threats, and collaborate with cross-functional teams to shape cybersecurity strategy.

Responsibilities

  • Lead complex threat investigations involving APTs, ransomware, insider threats, and nation-state activity across enterprise and cloud environments
  • Drive proactive threat hunting programs focused on emerging TTPs, behavioral analytics, and detection gaps within EDR, SIEM, and network telemetry data
  • Develop and execute purple team exercises, simulating advanced adversarial tradecraft to assess detection and response capabilities
  • Collaborate with red teams and offensive security engineers to understand attacker tools, techniques, and procedures (TTPs) at a deep technical level and translate that understanding into effective detections
  • Perform incident command during major security events — leading multidisciplinary response teams, engaging executive stakeholders, and delivering after-action reports and strategic recommendations
  • Develop custom detections, playbooks, and automation in Splunk, Sentinel, or other platforms to improve time-to-detect and time-to-contain metrics
  • Mentor and coach junior analysts, hunters, and incident responders — fostering an environment of continuous learning and operational excellence
  • Contribute to threat intelligence initiatives, enriching internal intelligence feeds with context from ongoing investigations and external research
  • Collaborate with engineering and architecture teams to harden security controls across endpoint, network, and cloud layers
  • Conduct tabletop exercises and technical simulations to validate response readiness and identify process or technology gaps

Skills

  • 10+ years of experience in cybersecurity roles focused on incident response, threat hunting, digital forensics, threat intelligence, or SOC operations
  • Proven record of leading end-to-end investigations of advanced threat campaigns (APT) or other complex multi-vector attacks
  • Strong understanding of MITRE ATT&CK framework, adversary emulation, and kill chain analysis
  • Demonstrated expertise in both enterprise IT and cloud security (AWS, Azure, GCP) — from defensive and offensive perspectives
  • Working knowledge of red team / offensive security operations and the ability to deconstruct offensive tools (e.g., Cobalt Strike, Empire, Metasploit, Sliver, Mimikatz, other open-source OffSec tools) to detect their presence and behaviors
  • Deep knowledge of SIEMs (Splunk, Sentinel, ELK), EDR platforms (CrowdStrike, Carbon Black, Defender ATP), and forensics tools
  • Strong scripting or automation experience (Python, PowerShell, Bash) for hunting, enrichment, or data manipulation
  • Ability to design and facilitate purple team exercises and incident response tabletop simulations replicating advanced adversary techniques
  • Excellent communication and leadership skills; ability to brief executives, collaborate across functions, and guide junior team members
  • Advanced SANS certifications such as GCFA, GREM, GCIA, GNFA, GCTI, GSEC, or GCIH
  • Offensive certifications such as OSCP, OSEP, OSED, or CRTO
  • Recognition from hands-on platforms (e.g., Hack The Box, Cyber Defenders, TryHackMe) demonstrating technical proficiency
  • Cloud security certifications (AWS Security Specialty, Azure Security Engineer, GCP Professional Cloud Security Engineer) are a plus

Benefits

  • We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing.
  • We also invest in your career because the better you are, the better we all are. We have specific programs catered to helping you reach any career goals you have — whether you want to become a knowledge expert in your field or apply your skills to another division.
  • We are unconditionally inclusive in the way we work and celebrate individual uniqueness. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs.
  • Variable incentives may also be offered.

Company Overview

  • Official LinkedIn of Hewlett Packard Enterprise, the global edge-to-cloud company. Sharing our passion and purpose through technology and innovation. It was founded in 1939, and is headquartered in Tokyo, Tokyo, JPN, with a workforce of 10001+ employees. Its website is http://www.hpe.com.
  • More open positions

    [Remote] Principal Network Sales Engineer – Service Provider

    Work from home Full-time role

    [Remote] Director of Sales Operations

    Work from home Full-time role

    [Remote] Vice President of Sales (US Staffing – MSP Business Development)

    Work from home Full-time role

    [Remote] Identity and Access Management (IAM) Analyst

    Work from home Full-time role

    [Remote] Paid Media Coordinator: Instagram, Pinterest & Google Ads

    Work from home Full-time role

    UPS Job Openings Application (Reviewer) $220/Da…

    Work from home Full-time role

    Content Editor Contract

    Work from home Full-time role

    Consultant of Regional Synthesis on Governance, Climate Risk, and Human Mobility CN

    Work from home Full-time role

    Sales Development Representative

    Work from home Full-time role

    Sr CRA I - Guangzhou

    Work from home Full-time role

    Fully Remote Occupational Therapist (Washington Residents Only)

    Work from home Full-time role

    AVP, Maternal Child Health Clinical Operations - REMOTE

    Work from home Full-time role

    Lead Software Engineer, Fullstack

    Work from home Full-time role

    Pet Helpline Representative job at Animal Humane Society in Saint Paul, MN

    Work from home Full-time role

    Legal Counsel - Prediction and Capital Markets

    Work from home Full-time role

    Remote Customer Service Representative – careerzynith Home‑Based Client Support Specialist (US)

    Work from home Full-time role

    [Remote] Remote | Network Data & Automation Engineer — $40–$60/hour

    Work from home Full-time role

    General Manager, New Business (VP of Product) - US-Based

    Work from home Full-time role

    Experienced Customer Solutions Manager – careerzynith Social Media Support (Full-Time, Entry-Level)

    Work from home Full-time role

    AI Engineer

    Work from home Full-time role

    Experienced Remote Customer Service Representative – Delivering Exceptional Experiences at careerzynith

    Work from home Full-time role