Palo Alto Networks is hiring a Senior Consultant, Proactive Services (Unit 42)

Palo Alto Networks is hiring a Senior Consultant for its Unit 42 Proactive Services team. In this role, you will deliver strategic consulting outcomes for clients, addressing the modern cyber threat landscape across domains like Cloud Security, Security Operations, and Cyber Risk Management.

What You'll Do

• Work across proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management, and Artificial Intelligence.
• Serve large, multinational organisations in designing and implementing security operations programs, structures, and capabilities.
• Perform detailed assessments, identify areas for improvement, and make recommendations to transform an organisation's cyber security operations.
• Conduct threat hunting and/or compromise assessments to identify indicators of compromise (IoCs) or evidence of unknown threats.
• Perform cloud security advisement and risk assessments based upon industry-accepted standards.
• Perform cyber security threat & risk assessments to support the development of cyber security strategies and roadmaps.
• Strengthen existing and develop new client relationships.
• Perform travel requirements as needed to meet business demands.

What We're Looking For

• 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management.
• 4+ years of experience performing cloud security advisement and risk assessments.
• 4+ years of experience performing cyber security consulting in at least two of three domains (SOC Advisory, Principal Cloud Security, Cyber Risk Management), with SME experience in one.
• Demonstrated success with serving large, multinational organisations.
• Deep technical knowledge in SIEM platforms, SOAR technologies, EDR/XDR tools, Next GenFirewalls, Threat Intelligence and Hunting platforms.
• Deep technical knowledge in CASBs, Cloud Platforms and dependencies (WAF, SSO, Cloud Threats, API Security, Cloud Security Posture Management).
• Technical proficiency in a wide range of cyber risk management services, including cyber threat, risk and control assessments, secure software development practices, penetration testing, vulnerability assessments.
• Sound knowledge of applicable laws, compliance regulations, and industry standards as it relates to privacy, security, and compliance.
• Sound knowledge of applicable frameworks & standards, including OWASP, MITRE ATT&CK & D3FEND, CIS, NIST CSF, CSA CCM & ISO 27107.
• Strong communication and presentation skills.
• Ability to thrive in a startup environment.
• Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security OR equivalent years of professional experience or equivalent military experience.

Nice to Have

• Experience in security operations design, engineering and/or analysis and investigations, ideally in complex environments.
• Experience in improving an organisations security operations capabilities such as improvements in asset visibility, threat detection capabilities, automation techniques, case management.
• Relevant industry certifications including GIAC Defensible Security Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP.
• Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC.
• Hands-on experience with a cloud hosting provider (AWS, Azure, GCP, etc).
• Experience with a Cloud Application Security Broker - MCAS, Netskope.
• Former experience with cloud migrations (cloud to cloud, or on-prem to cloud).
• Knowledge of command-line interfaces or scripting tools in cloud environments.
• Secure software development practices, including SecDevOps.
• Relevant industry certifications including CSCP.
• Experience in threat modelling & application security risk assessments, secure software development practices, including SecDevOps.
• FAIR Open certified & experience in applying FAIR for cyber risk quantification.
• Relevant industry certifications including CISSP, CISM, CISA.

Technical Stack

• Security Incident and Event Management (SIEM) platforms
• Security Orchestration and Response (SOAR) technologies
• Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools
• Next GenFirewalls
• Threat Intelligence and Hunting platforms
• Cloud Application Security Brokers (CASBs)
• Cloud Platforms (AWS, Azure, GCP)
• WAF
• SSO
• API Security
• Cloud Security Posture Management

Team & Environment

This role is part of Unit 42 Consulting, Palo Alto Network's security advisory team.

Work Mode

This is a remote position open to candidates located in the United Kingdom.

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.