Principal Consultant, DFIR, Reactive Services

🔥 10 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Palo Alto Networks

WebsiteLinkedInAll Job Openings

10,000+ employees

🔒 Cybersecurity

🏢 Enterprise

💰 $1M Seed Round - Morta Security on 2013-02

Cybersecurity • Enterprise

Palo Alto Networks is a global cybersecurity company that provides AI-driven platforms, products, and services to protect networks, cloud workloads, endpoints, and applications. Its portfolio includes next-generation firewalls, SASE and Prisma Cloud (CNAPP) offerings, the Cortex security operations suite (XDR, XSOAR, XSIAM), and Unit 42 threat intelligence and incident response services. Palo Alto Networks helps enterprises secure AI deployments, automate SOC workflows, and prevent, detect, and respond to sophisticated threats across hybrid and multi-cloud environments.

📋 Description

• Manage and lead incident response engagements, including scoping work, guiding clients through forensic investigations, and containing security incidents. • Perform reactive incident response and host-based analysis on Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs). • Examine firewall, web, database, and other log sources to identify evidence of malicious activity and attack vectors. • Investigate data breaches using forensic tools like EnCase, FTK, X-Ways, SIFT, and Splunk to determine the source and scope of compromises. • Provide clients with clear, actionable recommendations for long-term remediation and security posture improvement. • Collaborate with internal teams and external stakeholders to ensure alignment and deliver comprehensive solutions. • Act as a mentor for junior team members, sharing expertise in incident response and digital forensics best practices.

🎯 Requirements

• Bachelor's degree with 8 years of experience, or Master's degree with 6 years of experience, or PhD with 3 years of experience in Information Security, Computer Science, Digital Forensics, or a related field. • Must speak English and Spanish, Portuguese is a plus • Direct experience in incident response or digital forensics consulting. • Proficiency with host-based forensics and data breach response methodologies. • Hands-on experience with forensic tools such as EnCase, FTK, X-Ways, SIFT, Splunk, Redline, Volatility, or WireShark. • Ability to travel as needed to meet business demands, averaging up to 20%.

🏖️ Benefits

• Health insurance • Retirement plans • Paid time off • Flexible work arrangements • Professional development