Principal Consultant, Security Operations

Summary

Join Palo Alto Networks' Unit 42 Consulting team as a Principal Consultant, leading client-facing cyber risk management engagements. You will work directly with clients and stakeholders to prioritize security operations. Responsibilities include conducting security audits, analyzing monitoring and alerting, performing risk assessments using various frameworks, and advising on SOC initiatives. This role requires extensive experience in information security advisement, consulting, and SIEM administration. The ideal candidate possesses strong technical skills, excellent communication abilities, and a proven track record of client relationship management. Compensation includes a competitive salary, restricted stock units, and a bonus, along with additional benefits.

Requirements

• 6+ years of experience performing information security advisement and risk assessments based upon industry-accepted standards
• 3+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management serving large, multinational organizations
• Knowledge or certification in the MITRE ATT&CK framework
• Hands-on experience with SIEM engineering or management
• Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms
• Demonstrates a track record in strengthening existing and developing new client relationships
• Ability to perform travel requirements as needed to meet business demands (on average 30%)
• Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security OR equivalent years of professional experience or equivalent military experience to meet job requirements and expectations

Responsibilities

• Lead security audits of client’s security operations program, processes, and technology
• Analyze the current level of monitoring and alerting within the enterprise and provide a gap analysis on log coverage
• Conduct general cyber risk assessments using framework or standards like MITRE ATT&CK, NIST 800-61r2, NIST CSF, ISO 27001/2, PCI, CIS Top 2, CMMD, or other industry measurement tools
• Utilize command-line interfaces or graphical user interfaces (GUI) of security tools to conduct technical and control set validation
• Assess client implementations of security monitoring and endpoint/network protection tooling to understand the technical implementations of security controls
• Advise and develop SOC initiative roadmaps for clients to further secure their environments
• Scope new opportunities with prospective clients, including drafting statements of work and proposals

Preferred Qualifications

• Former professional services and consulting experience preferred
• Experience managing a team of consultants and large engagements
• Knowledge of command-line interfaces or scripting tools in security tools is a plus
• Identified ability to grow into a valuable contributor to the practice and, specifically - have an external presence via public speaking, conferences, and/or publications
• Have credibility, executive presence, and gravitas
• Be able to have a meaningful and rapid delivery contribution
• Have the potential and capacity to understand all aspects of the business and an excellent understanding of PANW products
• Be collaborative and able to build relationships internally, externally, and across all PANW functions, including the sales team
• Former experience with Security Operations or Cyber Defense Operations

Benefits

• Restricted stock units
• A bonus