Principal Advanced Threat Response Analyst

Hewlett Packard Enterprise is seeking a Principal Advanced Threat Response Analyst to join their global security organization. The ideal candidate will have over a decade of experience in incident response, threat hunting, threat intelligence, digital forensics, malware analysis, and incident management, with a proven track record of leading investigations into Advanced Persistent Threats (APT) and other complex, multi-stage intrusions.

Requirements

• 10+ years of experience in cybersecurity roles focused on incident response, threat hunting, digital forensics, threat intelligence, or SOC operations
• Proven record of leading end-to-end investigations of advanced threat campaigns (APT) or other complex multi-vector attacks
• Strong understanding of MITRE ATT&CK framework, adversary emulation, and kill chain analysis
• Demonstrated expertise in both enterprise IT and cloud security (AWS, Azure, GCP) — from defensive and offensive perspectives
• Working knowledge of red team / offensive security operations and the ability to deconstruct offensive tools (e.g., Cobalt Strike, Empire, Metasploit, Sliver, Mimikatz, other open-source OffSec tools) to detect their presence and behaviors
• Deep knowledge of SIEMs (Splunk, Sentinel, ELK), EDR platforms (CrowdStrike, Carbon Black, Defender ATP), and forensics tools
• Strong scripting or automation experience (Python, PowerShell, Bash) for hunting, enrichment, or data manipulation
• Ability to design and facilitate purple team exercises and incident response tabletop simulations replicating advanced adversary techniques
• Excellent communication and leadership skills; ability to brief executives, collaborate across functions, and guide junior team members

Benefits

• Generous Paid Time Off
• 401k Matching
• Retirement Plan
• Unconditional Inclusion