Senior Consultant, DFIR, Reactive Services (Unit 42) - Weekend Shift Remote

Our Mission

At Palo Alto Networks®, we’re united by a shared mission—to protect our digital way of life. We thrive at the intersection of innovation and impact, solving real-world problems with cutting-edge technology and bold thinking. Here, everyone has a voice, and every idea counts. If you’re ready to do the most meaningful work of your career alongside people who are just as passionate as you are, you’re in the right place.

Who We Are

In order to be the cybersecurity partner of choice, we must trailblaze the path and shape the future of our industry. This is something our employees work at each day and is defined by our values: Disruption, Collaboration, Execution, Integrity, and Inclusion. We weave AI into the fabric of everything we do and use it to augment the impact every individual can have. If you are passionate about solving real-world problems and ideating beside the best and the brightest, we invite you to join us!

Job Summary

This client-facing Senior Consultant role leads and produces deliverables for reactive services engagements. You will work directly with diverse customers and key stakeholders, including C-suite executives, to manage incident response engagements from initiation to completion, guiding clients through complex security challenges.

Key Responsibilities

• Perform reactive incident response, including host-based analysis of Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs).

• Examine firewall, web, database, and other log sources to identify evidence and artifacts of malicious activity.

• Investigate data breaches using forensic tools like EnCase, FTK, X-Ways, SIFT, and Splunk to determine the source of compromise.

• Lead incident response engagements, guiding clients through forensic investigations, incident containment, and long-term remediation.

• Collaborate with and mentor junior consultants, sharing expertise in incident response and forensics best practices to empower the team.

• Operate on a weekend shift schedule from Friday to Monday (10-hour workdays, 40-hour workweek).

• Travel up to 30% as required to meet client and business demands.

Qualifications

Required Qualifications

• Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security, or a related field, or equivalent military experience.

• 4+ years of direct experience in incident response or digital forensics.

• Proficiency in host-based forensics, data breach response, and evidence handling.

• Experience with forensic tools such as EnCase, FTK, X-Ways, SIFT, Splunk, Volatility, WireShark, or TCPDump.

• Preferred Qualifications

• Prior experience in a client-facing incident response consulting role.

• Demonstrated ability to build relationships and collaborate effectively with internal teams, external partners, and sales functions.

• Executive presence with the credibility to advise senior-level stakeholders.

• Experience or interest in public speaking, conference presentations, or security-related publications.

Compensation Disclosure

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/com-missioned roles) is expected to be the annual range listed below. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found here.

Our Commitment

We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.

We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at  accommodations@paloaltonetworks.com.

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

All your information will be kept confidential according to EEO guidelines.