Goremotejob
Back to All Jobs
Bullhorn, Inc. logo

Incident Response Manager & Lead Threat Hunter

Bullhorn, Inc.

Job Overview

Location

Remote - NOAM

Job Type

Full-time

Category

Software Engineering

Date Posted

June 6, 2026

Full Job Description

📋 Description

  • Lead proactive, intelligence-driven threat hunting initiatives using EDR, SIEM, and network traffic analysis to identify advanced threats that evade existing security controls.
  • Manage and direct Incident Response (IR) activities for complex security incidents, providing technical leadership during containment, eradication, and post-incident analysis as part of the CSIRT.
  • Develop and validate threat hypotheses grounded in the MITRE ATT&CK Framework and cyber kill chain to guide hunting operations and improve detection coverage.
  • Integrate external and internal threat intelligence feeds into hunting workflows to prioritize and tailor investigations against current adversary Tactics, Techniques, and Procedures (TTPs).
  • Collaborate with security engineering teams to convert findings from threat hunts into durable, automated detection rules and alerts that reduce future dwell time and risk exposure.
  • Mentor and develop junior security analysts by establishing technical standards, reviewing work, and fostering a culture of continuous learning and improvement in threat detection.
  • Evaluate emerging AI and automation tools for applicability in threat hunting and incident response workflows, recommending and implementing approved solutions to enhance efficiency and accuracy.
  • Analyze security logs and telemetry from cloud environments including AWS, Azure, GCP, and specifically Wiz, to detect anomalies, misconfigurations, and malicious activity.
  • Perform deep forensic analysis using KQL and SQL to query large-scale log datasets and uncover hidden adversarial behaviors across hybrid and cloud-native infrastructures.
  • Automate repetitive investigative tasks using Python and PowerShell scripts to increase throughput and reduce manual effort in threat detection and response processes.
  • Communicate technical findings and strategic recommendations to stakeholders, including leadership and cross-functional teams, to drive security posture improvements.
  • Maintain up-to-date knowledge of evolving threat landscapes and adversary behaviors to ensure hunting strategies remain effective against emerging risks.
  • Ensure all incident response and threat hunting activities align with Bullhorn’s Core Values: Ownership, Energy, Speed & Agility, Service, and Being Human.

🎯 Requirements

  • 5-8 years of experience in security operations, threat hunting, or incident response
  • Proficiency in EDR tools (CrowdStrike, NeuVector), SIEM platforms (XSIAM), and network forensics
  • Deep understanding of the MITRE ATT&CK Framework and cyber kill chain
  • Strong query skills in SQL and KQL, with scripting ability in Python and PowerShell
  • Knowledge of AWS, Azure, and/or GCP security logging and controls, including GuardDuty, CloudTrail, and Wiz
  • Experience mentoring junior security analysts and defining technical standards for hunting workflows

🏖️ Benefits

  • Benefits eligibility effective DAY ONE including Medical, Dental, Vision, 401(k), and 401(k) Match
  • Unlimited Planned Paid Time Off
  • Global Mental Health Support
  • On-Demand Learning & Development
  • Quarterly paid volunteer days
  • Lucrative Employee Referral Program (eligible prior to first day)

Skills & Technologies

Python
AWS
Azure
GCP
Senior
Remote
$130k-170k

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

Bullhorn, Inc. logo
Bullhorn, Inc.
Visit Website

About Bullhorn, Inc.

Bullhorn is a cloud-based software company that provides customer relationship management and applicant tracking systems for the global staffing and recruiting industry. The platform automates workflows across the entire recruitment lifecycle, from candidate sourcing and engagement to placement and back-office management. Founded in 1999 and headquartered in Boston, Massachusetts, Bullhorn serves thousands of recruitment agencies worldwide, integrating email, voice, text, and analytics tools to improve recruiter productivity and client service. The company also offers marketplace integrations and AI-driven insights to help agencies scale operations and increase revenue.

View Company Profile
Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Newsletter

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.

Similar Opportunities

Expired
Gramian logo
Field Engineer - California

Gramian

San Francisco, California, United States
Contract
Expired May 4, 2026
Linux
Android
Onsite

3 months ago

Apply
Expired
Alternative Payments Ltd. logo
Lead Software Engineer

Alternative Payments Ltd.

São Paulo
Full-time
Expired Feb 19, 2026
Java
Go
PostgreSQL
+6 more

6 months ago

Apply
Expired
A Medium Corporation logo
Staff Applied Machine Learning Scientist

A Medium Corporation

Remote
Full-time
Expired Dec 27, 2025
Senior
Remote

7 months ago

Apply
NTST, Inc. logo
OASIS QA Reviewer

NTST, Inc.

Remote - Other
Full-time
Expires Jul 16, 2026
Remote

21 days ago

Apply