Principal Consultant, Security Operations

Summary

Join Palo Alto Networks' Unit 42 Consulting team as a Principal Consultant, leading client-facing cyber risk management engagements. You will work directly with clients and stakeholders to prioritize security operations. Responsibilities include leading security audits, analyzing monitoring and alerting, conducting risk assessments using various frameworks, and advising on SOC initiatives. You will also scope new opportunities and develop proposals. This role requires significant experience in information security advisement, consulting, and SIEM administration. A strong technical background in security tools and platforms is essential. The position offers a competitive salary, potential for bonuses and stock units, and the opportunity to contribute to a leading cybersecurity firm.

Requirements

• 6-9+ years of experience performing information security advisement and risk assessments based upon industry-accepted standards
• 3+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management serving large, multinational organizations
• Knowledge or certification in the MITRE ATT&CK framework
• Hands-on experience with SIEM engineering or management
• Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms
• Former experience with Security Operations or Cyber Defense Operations
• Demonstrates a track record in strengthening existing and developing new client relationships
• Ability to perform travel requirements as needed to meet business demands (on average 30%)
• Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security OR equivalent years of professional experience to meet job requirements and expectations

Responsibilities

• Lead security audits of client’s security operations program, processes, and technology
• Analyze the current level of monitoring and alerting within the enterprise and provide a gap analysis on log coverage
• Conduct general cyber risk assessments using framework or standards like MITRE ATT&CK, NIST 800-61r2, NIST CSF, ISO 27001/2, PCI, CIS Top 2, CMMD, or other industry measurement tools
• Utilize command-line interfaces or graphical user interfaces (GUI) of security tools to conduct technical and control set validation
• Assess client implementations of security monitoring and endpoint/network protection tooling to understand the technical implementations of security controls
• Advise and develop SOC initiative roadmaps for clients to further secure their environments
• Scope new opportunities with prospective clients, including drafting statements of work and proposals

Preferred Qualifications

• Former professional services and consulting experience preferred
• Experience managing a team of consultants and large engagements
• Knowledge of command-line interfaces or scripting tools in security tools is a plus
• Identified ability to grow into a valuable contributor to the practice and, specifically
• Have an external presence via public speaking, conferences, and/or publications
• Have credibility, executive presence, and gravitas
• Be able to have a meaningful and rapid delivery contribution
• Have the potential and capacity to understand all aspects of the business and an excellent understanding of PANW products
• Be collaborative and able to build relationships internally, externally, and across all PANW functions, including the sales team

Benefits

• The starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between $151,000 - $208,000/YR
• The offered compensation may also include restricted stock units and a bonus