Full-Time Principal Consultant, Incident Response

Job Overview
As a Principal Consultant in Unit 42, manage incident response engagements with largest clients and complex engagements.
Be a go-to expert for high-priority incidents, providing strategic guidance and technical oversight. Focus on product integration and incident response lifecycle.

Responsibilities

• Lead high-profile, high-stakes incident response engagements.
• Provide expert-level incident response services to clients, delivering findings to CxOs/Board.
• Partner with Unit 42 Directors, executive team, and service line leaders to develop and execute DFIR practice strategy.
• Drive innovation in reactive offerings, bring new capabilities and services to market leveraging Palo Alto Networks products.
• Ensure service consistency, quality, and high-level customer service.
• Integrate threat intelligence into services, deepening feedback loop with Threat Intelligence team.
• Recruit and onboard top Incident Response talent.
• Support consultant professional growth and development.
• Foster a culture of excellence and attracting talent.
• Identify and execute service development, enablement, and process strategies.
• Cultivate relationships with key clients.
• Amplify Unit 42 presence through thought leadership (speaking, articles, whitepapers).

Qualifications

• 6+ years experience in incident response, 3+ in client-facing consulting.
• Success leading large-scale incident response engagements.
• Experience managing and motivating consultants.
• Ability to travel and split time across various activities.
• Strong presentation and communication skills (CxO/Board level).
• Expert knowledge of laws, compliance regulations, and industry standards.
• Deep technical experience with major operating systems (Windows, Linux, Mac).
• Proficiency in host-based forensics, network forensics, cloud incident response.
• Endpoint Detection and Response (EDR), threat hunting, log analysis, and triage forensics.
• Collection and analysis of host and cloud forensic data at scale.
• Client services mindset and top-notch client management skills.
• Demonstrated writing ability for technical reports, business communication, and thought leadership.
• Champion innovation and improvement initiatives.
• External presence (speaking, conferences, publications).
• Credibility, executive presence, and gravitas.
• Understanding of all aspects of the business, and Palo Alto Networks products.
• Collaboration and relationship-building skills.
• Bachelor's in Information Security, Computer Science, or equivalent experience.
• Certifications such as GIAC Certified Forensic Analyst (GCFA), GIAC Certified Forensic Examiner (GCFE), GIAC Incident Handler (GCIH).

What is the last date for applying to the job?

Which countries are accepted for this remote job?