[Hiring] Senior Consultant - CRM, Proactive Services @Palo Alto Networks

Role Description

As a Senior Consultant in Unit 42, you will have the opportunity to work across a number of proactive cyber security domains including:

• Cloud Security
• Security Operations
• Cyber Risk Management
• Artificial Intelligence in cyber security

We are seeking an individual who is passionate about cyber security, curious with a demonstrated track record of continuous learning, and has the technical acumen to embrace data, technological and innovative approaches to deliver the best consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape.

Qualifications

• 3+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management.
• Deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next Gen Firewalls, Threat Intelligence and Hunting platforms.
• Experience in security operations design, engineering and/or analysis and investigations, ideally in complex environments.
• Ability to perform detailed assessments, identify areas for improvement and make recommendations to transform an organisation's cyber security operations.
• Experience in conducting threat hunting and/or compromise assessments.
• Relevant industry certifications including GIAC Defensible Security Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP.
• Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC.
• 3+ years of experience performing cloud security advisement and risk assessments.
• Hands-on experience with a cloud hosting provider (AWS, Azure, GCP, etc).
• Experience with a Cloud Application Security Broker - MCAS, Netskope.
• Deep technical knowledge in CASBs, Cloud Platforms and the dependencies around such an environment.
• Former experience with cloud migrations (cloud to cloud, or on-prem to cloud).
• Knowledge of command-line interfaces or scripting tools in cloud environments is a plus.
• Secure software development practices, including SecDevOps.
• Sound knowledge of applicable frameworks & standards, including OWASP, MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM & ISO 27107.
• Experience in performing cyber security threat & risk assessments.
• Technical proficiency in a wide range of cyber risk management services.
• Sound knowledge of applicable laws, compliance regulations, and industry standards.
• Strong communication and presentation skills.
• Experience in threat modelling & application security risk assessments.
• FAIR Open certified & experience in applying FAIR for cyber risk quantification.
• Relevant industry certifications including CISSP, CISM, CISA.

Requirements

• 3+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management.
• Deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next Gen Firewalls, Threat Intelligence and Hunting platforms.
• Experience in security operations design, engineering and/or analysis and investigations, ideally in complex environments.
• Ability to perform detailed assessments, identify areas for improvement and make recommendations to transform an organisation's cyber security operations.
• Experience in conducting threat hunting and/or compromise assessments.
• Relevant industry certifications including GIAC Defensible Security Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP.
• Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC.
• 3+ years of experience performing cloud security advisement and risk assessments.
• Hands-on experience with a cloud hosting provider (AWS, Azure, GCP, etc).
• Experience with a Cloud Application Security Broker - MCAS, Netskope.
• Deep technical knowledge in CASBs, Cloud Platforms and the dependencies around such an environment.
• Former experience with cloud migrations (cloud to cloud, or on-prem to cloud).
• Knowledge of command-line interfaces or scripting tools in cloud environments is a plus.
• Secure software development practices, including SecDevOps.
• Sound knowledge of applicable frameworks & standards, including OWASP, MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM & ISO 27107.
• Experience in performing cyber security threat & risk assessments.
• Technical proficiency in a wide range of cyber risk management services.
• Sound knowledge of applicable laws, compliance regulations, and industry standards.
• Strong communication and presentation skills.
• Experience in threat modelling & application security risk assessments.
• FAIR Open certified & experience in applying FAIR for cyber risk quantification.
• Relevant industry certifications including CISSP, CISM, CISA.

Benefits

• We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo.
• Commitment to providing reasonable accommodations for all qualified individuals with a disability.
• Equal opportunity employer celebrating diversity in the workplace.