Professional Services Consultant

As one of the most established cybersecurity companies in the world, we at NetWitness are dedicated to helping our customers and partners protect their organizations from cyberattacks. Our products and incident response services are used by large enterprises, governments, and militaries for incident response and threat hunting.

We are seeking a candidate who leverages in-depth industry knowledge and technical solutions to assist customers in gaining market share and increasing operational efficiencies. The role involves providing technical and consultative leadership on complex engagements, focusing on specific industries or service offerings.

Responsibilities

• Provide technical and consultative services on NetWitness solutions across various complex projects.
• Conduct workshops, analyze requirements, develop solution designs and recommendations, document, and deliver training on NetWitness solutions.
• Collaborate closely with project managers, team members, and customers to ensure smooth project implementation and transition.
• Deliver services independently and collaboratively, working with sales, personnel, and clients.
• Manage multiple work streams on complex projects, define deliverables, and adhere to approved methodologies, margins, planning, and SOW requirements.
• Lead project quality assurance activities, including technical reviews, and follow escalation and change control procedures.
• Analyze customer requirements, propose solutions, and create documentation to meet evolving client needs.
• Possibly manage or serve as technical lead on small to medium projects or workstreams within larger projects.
• Prepare and submit activity and progress reports, maintain documentation, and ensure stakeholder communication.
• Develop detailed project plans, validate SOW, and categorize requirements.

Technical Responsibilities

• Assist customers in enhancing their threat detection and hunting capabilities.
• Track threat actors and associated TTPs.
• Identify threat actor groups and their techniques, tools, and processes.
• Provide input on cybersecurity best practices, especially related to threat intelligence, hunting, and analysis using NDR, EDR, and SIEM tools.
• Develop detection content and use cases within NetWitness for various data sources.
• Create advanced queries and alerts to detect adversary actions.
• Design dashboards and reports to identify threats and suspicious activities.
• Assess visibility gaps and recommend next steps.
• Work with incident response teams to increase detection capabilities and investigate potential attacks.
• Support sales scoping and provide guidance to clients.
• Contribute to the development of technical courses, assessments, and content quality assurance.
• Maintain instructor documentation and develop lab use-cases and deployments.
• Participate in webinars and customer training events.

Required Experience / Qualifications

• Understanding of logging mechanisms for network, security solutions, servers, and databases.
• Strong knowledge of networking and security infrastructure.
• Ability to analyze data flow in network topologies.
• Excellent communication skills, including verbal, written, listening, and presentation abilities.
• Analytical thinking and problem-solving skills.
• Understanding of logs, events, packets, and incidents.
• Experience with collection methods like Syslog, SNMP, ODBC, LEA, FTP, SFTP.
• Knowledge of current threats, security trends, and security policies.
• Excellent presentation and workshop facilitation skills.
• Professional proficiency in English.
• Federal security clearance is an advantage.