Incident Response Manager & Lead Threat Hunter

Bullhorn's core purpose is to create an incredible customer experience, and the organization has a sharp focus on delivering very high quality products and services to its customers. The company culture is shaped by five Core Values: Ownership, Energy, Speed & Agility, Service, and Being Human. Each value, and its underlying definition, serves as a behavioral guide for employees as they interact with customers and fellow coworkers and is an embedded way of operating across our organization.

Bullhorn is a fast-paced and dynamic environment where hard work and outstanding results are rewarded and celebrated. We value those that exhibit an eagerness to learn and a strong natural desire for continuous improvement and we encourage team members to stretch themselves, acknowledge challenges and learn from them. With a strong focus on growth, we provide ample opportunities for career development and prioritize promoting from within. We believe that leaders should care deeply about the development of their employees at all levels, emphasizing emotional intelligence and accountability. Our leaders collaborate closely to ensure the success of their teams, and we work together to achieve shared goals, creating a challenging and rewarding workplace for everyone.

About the Role

This role leads proactive, intelligence-driven hunting to uncover advanced threats while managing critical Incident Response (IR) activities. The Lead will develop hypotheses based on MITRE ATT&CK, analyze logs/EDR data to minimize dwell time, and mentor staff to strengthen the overall security posture and detection capabilities. The Lead will examine new AI tools and determine which if any, bring value to the process and help implement any approved solutions.

A typical day will include...​

• Proactive Threat Hunting: Develop and execute hypothesis-driven hunts using EDR, SIEM, and network traffic analysis to find threats bypassing existing defenses.

• Incident Response Leadership: Lead complex investigations and CSIRT activities, providing technical expertise during containment, eradication, and post-incident analysis.

• Threat Intelligence Integration: Analyze adversary Tactics, Techniques, and Procedures (TTPs) and integrate intelligence feeds to drive targeted hunting scenarios.

• Detection Engineering: Collaborate with security engineering to convert hunting discoveries into permanent actionable alerts, reducing future risk.

• Mentorship & Strategy: Mentor junior analysts, define the technical standards for hunting workflows, and report findings to stakeholders.

This job might be a fit if you have...

• Experience: 5-8 years of experience in security operations, threat hunting, or incident response.

• Technical Skills: Proficiency in EDR tools ( CrowdStrike, NeuVector, SIEM platforms (XSIAM), and network forensics.

• Frameworks: Deep understanding of the MITRE ATT&CK Framework and cyber kill chain.

• Languages: Strong query skills (SQL, KQL) and scripting ability (Python, PowerShell) for automation.

• Cloud Security: Knowledge of AWS, Azure, and/or GCP security logging and controls (e.g., GuardDuty, CloudTrail). Bullhorn also is a heavy Wiz user in cloud environments.

The annual base salary range for this position is $130,000 - $170,000. In addition, this role is eligible for an annual target bonus & a comprehensive benefits package.

Compensation and Transparency Statement

The posted range represents the good-faith estimate of what we expect to pay for this role at the time of this posting. We may ultimately pay more or less than the posted range, and the range may be modified in the future. Actual pay within the range will be based on factors such as, but not limited to, experience, skills, qualifications, geographic location, internal equity, and business or organizational needs and affordability. In accordance with state and local pay transparency laws we disclose salary ranges in all job postings and provide additional information upon request.

What we offer...

• Benefits eligibility effective DAY ONE including Medical, Dental, Vision, 401(k), 401(k) Match, and more

• Unlimited Planned Paid Time Off

• Global Mental Health Support

• On-Demand Learning & Development

• Quarterly paid volunteer days

• Lucrative Employee Referral Program (eligible for prior to your first day)

• Company-wide mentor program

Bullhorn's core purpose is to create an incredible customer experience, and the organization has a sharp focus on delivering very high quality products and services to its customers. The company culture is shaped by five Core Values: Ownership, Energy, Speed & Agility, Service, and Being Human. Each value, and its underlying definition, serves as a behavioral guide for employees as they interact with customers and fellow coworkers and is an embedded way of operating across our organization.

We are a people-first culture where everyone’s contribution is valued and respected. We're looking for smart, forward-thinking individuals who aren't afraid to challenge the status quo and bring fresh perspectives to the table.  If you're someone who thrives in a casual, yet fast-paced and agile environment, we'd love to have you join us.