Full-Time Senior DFIR Consultant - Remote
Palo Alto Networks is hiring a remote Full-Time Senior DFIR Consultant - Remote. The career level for this job opening is Experienced and is accepting Saudi Arabia based applicants remotely. Read complete job description before applying.
Palo Alto Networks
Job Title
Posted
Career Level
Career Level
Locations Accepted
Share
Job Details
Your CareerThis role is client-facing and requires the Senior Consultant to help lead and produce deliverables based on reactive services client engagements. The Senior Consultant will work directly with multiple customers and key stakeholders (Admins, C-Suite, etc) to lead incident response incidents and guide clients through the engagement from start to finish.
Your Impact
- Perform reactive incident response functions including but not limited to - host-based analysis functions through investigating Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs)
- Examine firewall, web, database, and other log sources to identify evidence and artifacts of malicious and compromised activity
- Investigate data breaches leveraging forensics tools including Encase, FTK, X-Ways, SIFT, Splunk, and custom Unit 42 investigation tools to determine source of compromises and malicious activity that occurred in client environments
- Lead incident response engagements to guide clients through forensic investigations, contain security incidents, and provide guidance on longer term remediation recommendations
- Mentorship of Incident Response Consultants in incident response and forensics best practices
Ability to perform light travel requirements as needed to meet business demands (on average 30%)
Weekend Shift: Friday-Monday
Your Experience4+ years of incident response or digital forensics experience with a passion for cyber security Proficient with host-based forensics and data breach responseExperienced with EnCase, FTK, X-Ways, SIFT, Splunk, Volatility, WireShark, TCPDump, and open source forensic toolsIdentified ability to grow into a valuable contributor to the practice and, specificallyhave an external presence via public speaking, conferences, and/or publicationshave credibility, executive presence, and gravitasbe able to have a meaningful and rapid delivery contributionhave the potential and capacity to understand all aspects of the business and an excellent understanding of PANW productsbe collaborative and able to build relationships internally, externally, and across all PANW functions, including the sales teamIncident Response Consulting preferredBachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security or related field or equivalent military experience requiredFluent in Arabic and elligable to work in Saudi Arabia