Principal Advanced Threat Response Analyst

Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • 10+ years in cybersecurity focusing on incident response and threat hunting.
  • Proven track record leading complex investigations into advanced threats.
  • Strong grasp of MITRE ATT&CK framework and kill chain analysis.
  • Expertise in enterprise IT and cloud security (AWS, Azure, GCP).
  • Experience with offensive security tools and red team operations.
  • Proficiency in SIEMs and EDR platforms.
  • Scripting/automation skills in Python, PowerShell, or Bash.

Responsibilities

  • Lead investigations into APTs and ransomware attacks.
  • Drive proactive threat hunting programs using behavioral analytics.
  • Execute purple team exercises to enhance detection capabilities.
  • Collaborate with red teams on tools and tactics for effective detection.
  • Lead incident command during major security events.
  • Develop custom detections and playbooks to enhance response times.
  • Mentor junior analysts and promote continuous learning.

Benefits

  • Comprehensive health and wellbeing benefits for employees and their families.
  • Personalized career development programs to support professional growth.
  • Commitment to inclusion and celebrating diversity in the workplace.
Full Job Description
Principal Advanced Threat Response Analyst

This role has been designated as 'Remote/Teleworker', which means you will primarily work from home.

Job Description:

At Hewlett Packard Enterprise (HPE), we are seeking a highly experienced and technically proficient Principal Advanced Threat response analyst to join our global security organization. The ideal candidate will have over a decade of hands-on experience in incident response, threat hunting, threat intelligence, digital forensics, malware analysis and incident management, with proven expertise in leading investigations into Advanced Persistent Threats (APT) and other complex, multi-stage intrusions, including widescale Ransomware attacks.

This role requires a blend of technical mastery, investigative acumen, and leadership capability. The candidate will drive proactive and reactive threat hunting efforts, lead critical incident response engagements, and develop both short-term containment and long-term remediation strategies to strengthen the organization's cyber defense and improve overall security posture.

This role is fully remote USA

Key Responsibilities
  • Lead complex threat investigations involving APTs, ransomware, insider threats, and nation-state activity across enterprise and cloud environments.
  • Drive proactive threat hunting programs focused on emerging TTPs, behavioral analytics, and detection gaps within EDR, SIEM, and network telemetry data.
  • Develop and execute purple team exercises, simulating advanced adversarial tradecraft to assess detection and response capabilities.
  • Collaborate with red teams and offensive security engineers to understand attacker tools, techniques, and procedures (TTPs) at a deep technical level and translate that understanding into effective detections.
  • Perform incident command during major security events - leading multidisciplinary response teams, engaging executive stakeholders, and delivering after-action reports and strategic recommendations.
  • Develop custom detections, playbooks, and automation in Splunk, Sentinel, or other platforms to improve time-to-detect and time-to-contain metrics.
  • Mentor and coach junior analysts, hunters, and incident responders - fostering an environment of continuous learning and operational excellence.
  • Contribute to threat intelligence initiatives, enriching internal intelligence feeds with context from ongoing investigations and external research.
  • Collaborate with engineering and architecture teams to harden security controls across endpoint, network, and cloud layers.
  • Conduct tabletop exercises and technical simulations to validate response readiness and identify process or technology gaps.


Required Qualifications
  • 10+ years of experience in cybersecurity roles focused on incident response, threat hunting, digital forensics, threat intelligence, or SOC operations.
  • Proven record of leading end-to-end investigations of advanced threat campaigns (APT) or other complex multi-vector attacks.
  • Strong understanding of MITRE ATT&CK framework, adversary emulation, and kill chain analysis.
  • Demonstrated expertise in both enterprise IT and cloud security (AWS, Azure, GCP) - from defensive and offensive perspectives.
  • Working knowledge of red team / offensive security operations and the ability to deconstruct offensive tools (e.g., Cobalt Strike, Empire, Metasploit, Sliver, Mimikatz, other open-source OffSec tools) to detect their presence and behaviors.
  • Deep knowledge of SIEMs (Splunk, Sentinel, ELK), EDR platforms (CrowdStrike, Carbon Black, Defender ATP), and forensics tools.
  • Strong scripting or automation experience (Python, PowerShell, Bash) for hunting, enrichment, or data manipulation.
  • Ability to design and facilitate purple team exercises and incident response tabletop simulations replicating advanced adversary techniques.
  • Excellent communication and leadership skills; ability to brief executives, collaborate across functions, and guide junior team members.


Certifications
  • Advanced SANS certifications such as GCFA, GREM, GCIA, GNFA, GCTI, GSEC, or GCIH.
  • Offensive certifications such as OSCP, OSEP, OSED, or CRTO.
  • Recognition from hands-on platforms (e.g., Hack The Box, Cyber Defenders, TryHackMe) demonstrating technical proficiency.
  • Cloud security certifications (AWS Security Specialty, Azure Security Engineer, GCP Professional Cloud Security Engineer) are a plus.


#cybersecurity

What We Can Offer You:

Health & Wellbeing

We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing.

Personal & Professional Development

We also invest in your career because the better you are, the better we all are. We have specific programs catered to helping you reach any career goals you have - whether you want to become a knowledge expert in your field or apply your skills to another division.

Unconditional Inclusion

We are unconditionally inclusive in the way we work and celebrate individual uniqueness. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good.

Let's Stay Connected:



#unitedstates

#cybersecurity

Job:
Information Technology
Job Level:
TCP_05

The expected salary/wage range for this position is provided below. Actual offer may vary from this range based upon geographic location, work experience, education/training, and/or skill level.
- United States of America: Annual Salary USD 120,500 - 276,500 in Texas
The listed salary range reflects base salary. Variable incentives may also be offered.

Information about employee benefits offered in the US can be found at https://myhperewards.com/main/new-hire-enrollment.html

About Hewlett Packard Enterprise Development LP

Hewlett Packard Enterprise Development LP Careers

Joining Hewlett Packard Enterprise Development LP presents an unparalleled opportunity to advance a career in technology alongside some of the industry's most innovative minds. Hewlett Packard Enterprise Development LP stands as a beacon of innovation, leadership, and professional growth, offering a plethora of job opportunities that cater to a diverse range of skills and experiences.

Explore Career Opportunities

Hewlett Packard Enterprise Development LP is actively hiring, seeking passionate, creative, and solution-driven team players. Explore open positions that align with your skills and interests in areas ranging from engineering to marketing, and sales to IT. Each position at Hewlett Packard Enterprise Development LP not only boosts professional growth but also contributes to the company's culture of innovation and leadership.

Internship Programs

Kickstart your career with Hewlett Packard Enterprise Development LP’s internship programs. These opportunities allow interns to work on real projects, gaining hands-on experience and insights into the company's operations. Internships are a gateway to full-time employment, offering invaluable networking opportunities and a chance to build a professional resume.

Employee Benefits and Culture

Hewlett Packard Enterprise Development LP is committed to fostering a workplace where diversity and inclusion are integral to the company culture. Employees enjoy a range of benefits designed to support their physical, financial, and emotional well-being. From health insurance to retirement plans and flexible working conditions, the company ensures that team members have what they need to succeed.

Professional Development and Growth

The commitment to employee growth is evident through comprehensive training and development programs that encourage continuous learning and career advancement. Leadership development and diversity training are pillars of the company's strategy, ensuring that all team members have the opportunity to lead and innovate.

Networking and Innovation

At Hewett Packard Enterprise Development LP, networking goes hand in hand with innovation. Employees are encouraged to connect with colleagues and leaders through various professional networks and company-sponsored events. This culture of collaboration drives the development of groundbreaking solutions and services, reinforcing the company's position at the forefront of the technology sector.

Join the Hewlett Packard Enterprise Development LP Team

Search for job opportunities that match your skills and interests. Hewlett Packard Enterprise Development LP looks for individuals eager to drive innovation and lead in the digital era. Prepare your resume, hone your interview skills, and get ready to join a team that values growth and leadership.

Stay Connected with Hewlett Packard Enterprise Development LP Careers

Keep up to date with career tips, insider perspectives, and industry-leading insights you can put to use today—all from the professionals who work at Hewlett Packard Enterprise Development LP.

Sign Up for Job Alerts

Personalize your subscription to receive job alerts, latest news, and insider tips tailored to your preferences. Discover the exciting and rewarding career opportunities that await at Hewlett Packard Enterprise Development LP.
Learn more about Hewlett Packard Enterprise Development LP

Similar Jobs

More Jobs at Hewlett Packard Enterprise Development LP

More Information Technology Jobs

Find similar Principal Advanced Threat Response Analyst jobs: