Principal Consultant, DFIR, Reactive Services (Unit 42) - Weekend Shift jobs in United States
cer-icon
Apply on Employer Site
company-logo

Palo Alto Networks · 5 hours ago

Principal Consultant, DFIR, Reactive Services (Unit 42) - Weekend Shift

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
money$151K/yr - $208K/yr
date6+ years exp

Palo Alto Networks is committed to protecting our digital way of life through innovation and collaboration. As a Principal Consultant for reactive services, you will lead incident response engagements, manage critical cybersecurity incidents, and provide strategic guidance to clients for long-term remediation.

Agentic AICloud SecurityCyber SecurityNetwork SecuritySecurity
check
Growth OpportunitiesbadNo H1Bnote

Responsibilities

Lead and manage complex incident response engagements, including scoping work, guiding clients through forensic investigations, and containing security incidents
Perform reactive incident response functions, including host-based analysis of Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs)
Investigate data breaches by leveraging advanced digital forensics tools (e.g., EnCase, FTK, X-Ways, SIFT, Splunk) to determine the source and scope of compromises
Examine and analyze firewall, web, database, and other log sources to identify evidence of threat actor activity
Collaborate with clients and internal teams to provide strategic guidance and recommendations for long-term remediation and security posture improvement
Develop and produce high-quality, client-facing deliverables, including detailed reports and executive summaries
Provide mentorship and guidance to junior team members on incident response and forensics best practices, empowering others to develop their skills

Qualification

Incident responseDigital forensicsForensic toolsTechnical consultingLeadership skillsPublic speakingMentoring

Required

Bachelor's Degree in Information Security, Computer Science, Digital Forensics, Cyber Security, or a related field, or equivalent military experience
6+ years of direct incident response or digital forensics consulting experience
Proficiency with host-based forensics, data breach response, and forensic tools such as EnCase, FTK, X-Ways, SIFT, Splunk, Volatility, or WireShark
Demonstrated experience managing the full lifecycle of a technical consulting engagement
Ability to travel as needed to meet business demands, averaging approximately 20%

Preferred

Experience leading complex, multi-faceted engagements, from initial scoping to technical execution and client interfacing
Strong leadership skills with experience in mentoring or managing team members
Proven ability to establish credibility and executive presence with senior-level client stakeholders
Public-facing contributions to the cybersecurity community, such as public speaking, conference presentations, or publications

Benefits

Restricted stock units
Bonus

Company

Palo Alto Networks

twittertwittertwitter
Glassdoor4.1
company-logo
Palo Alto Networks is a cybersecurity company that offers cybersecurity solutions for organizations.
dateFounded in 2005
location
Santa Clara, California, USA
people-size10001+ employees
web-link
http://www.paloaltonetworks.com

Funding

Current Stage
Public Company
Total Funding
$65M
Key Investors
Icon VenturesLehman HoldingsGlobespan Capital Partners
2012-07-20IPO
2008-11-03Series C· $10M
2008-08-18Series C· $27M

Leadership Team

leader-logo
Helmut Reisinger
CEO EMEA
linkedin
leader-logo
Nikesh Arora
Chairman CEO
linkedin

Recent News

ION Analytics
Richard Seewald, founder of Evolution Equity Partners, on identifying trends in the cybersecurity space.
2026-01-25
The Register
Best of British: UK's infosec envoys include Cisco, Palo Alto, and Accenture
2026-01-22
The Motley Fool
2 Top Cybersecurity Stocks to Buy in January
2026-01-22
Company data provided by crunchbase