Principal Advanced Threat Response Analyst

Hewlett Packard Enterprise

Remote Actively hiring
Remote, USA Posted 60 days ago $120,500$276,500 / year
View original post Log in to save

At a glance

AI generated

TL;DR

Hewlett Packard Enterprise seeks a Principal Advanced Threat Response Analyst to join its global security team. This senior-level role demands over a decade of experience in incident response and threat hunting, with expertise in leading investigations into APTs and ransomware attacks across enterprise and cloud environments. The analyst will drive proactive threat hunting programs using EDR, SIEM, and network telemetry data, develop custom detections in Splunk or Sentinel, mentor junior staff, and collaborate with engineering teams to enhance security controls. Essential skills include deep knowledge of the MITRE ATT&CK framework, proficiency in Python or PowerShell for automation, and experience with offensive tools like Cobalt Strike and Metasploit. The role involves leading multidisciplinary response teams during major incidents and contributing to threat intelligence initiatives to improve overall cyber defense strategies.

Skills

MITRE ATT&CK Python Splunk Sentinel CrowdStrike Carbon Black Defender ATP Mitre Attck AWS Azure GCP PowerShell Bash CI/CD SIEM EDR Red Team Offensive Security Cobalt Strike Metasploit Purple Team Exercises

What you'll do

  • Lead complex threat investigations involving APTs and ransomware across enterprise environments.
  • Drive proactive threat hunting programs using EDR, SIEM, and network telemetry data.
  • Develop custom detections and playbooks to improve time-to-detect and contain metrics.
  • Mentor junior analysts and foster an environment of continuous learning and excellence.
  • Collaborate with engineering teams to harden security controls at endpoint and cloud layers.

What we're looking for

  • Over 10 years of experience in incident response and threat hunting.
  • Proven leadership in investigating advanced persistent threats (APT) campaigns.
  • Expertise in MITRE ATT&CK framework and kill chain analysis.
  • Deep knowledge of SIEMs, EDR platforms, and digital forensics tools.
  • Strong scripting skills with Python, PowerShell, or Bash for security tasks.
  • Experience leading purple team exercises and incident response simulations.
  • Advanced SANS certifications such as GCFA, GREM, GCIH, or equivalent.

Market check

Salary context

This $120,500–$276,500 range sits above 83% of similar postings on FindRole.

Peer median band

$112,800$198,000

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$129,787$184,900

Middle half of comparable postings.

Based on 239 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About Hewlett Packard Enterprise

Hewlett Packard Enterprise (HPE) is a global enterprise technology company providing servers, storage, networking, and hybrid cloud solutions along with advisory and operational services to enterprises worldwide. Industry: Enterprise Technology & Cloud Computing

Hewlett Packard Enterprise currently has 14 open roles on FindRole.

Listed pay typically runs $152,000–$306,750 across 14 roles with salary data.

Most-posted roles

View all roles at Hewlett Packard Enterprise

More like this

Similar roles

Cyber Defense Response Analyst II

CME Group

New York - 300 Vesey Street, US 87 days ago $103,200$172,000
Python Pandas REST APIs AWS GCP Azure SIEM Splunk Qradar Sentinel Chronicle ArcSight KAPE EnCase Cellebrite FTK Magnet_Axiom Autopsy Ghidra Ida_Pro PEStudio x64dbg

Information Security Principal (Environment Threat Assessment)

Salesforce

Remote (California - San Francisco, US) 51 days ago $197,300$313,700
AWS GCP Azure Cyber Kill Chain Diamond Model MITRE ATT&CK STRIDE Cloud Security OWASP Top 10 Threat Modeling Incident Response Threat Intelligence Log Analysis Security Architecture Tactical Threat Insights Collaboration Automation AI Tooling
Remote

Director, Threat Operations & Penetration Testing

McDonald’s Corporation

Chicago, Illinois, US 16 days ago $195,371$244,214
AWS Azure GCP SIEM SOAR Cobalt Strike Burp Suite Metasploit MITRE ATT&CK UEBA EASM Python CI/CD Kubernetes Terraform

Principal Cybersecurity Analyst

Northrop Grumman

Flta01, US 130 days ago $79,300$118,900
Splunk SIEM Python PowerShell Linux Windows Network security controls routers switches firewalls DoD 8570 Certification IAT Level II DoD 8570 Certification IAT Level III

Principal Cybersecurity Analyst

Northrop Grumman

Ilrm03, US 15 days ago $108,800$163,200
RMF NIST DCSA DAAG ACAS Nessus Splunk STIG compliance configuration management tools POA&M PKI MFA DEERS RAPIDS CAC DoD 8570 IAM CISSP CCISO CISM CASP+ SecurityX CE CAP CGRC

Principal Cybersecurity Analyst

Northrop Grumman

Remote (Vaukee, US) 16 days ago $103,600$155,400
CMMC NIST 800-171 NIST 800-172 NIST 800-53 NIST CSF ISO 27001 DoD frameworks ServiceNow MS Office AI PowerPlatform
Remote