Professional Services Consultant

As one of the most established cybersecurity companies in the world, we at NetWitness are dedicated to helping our customers and partners protect their organizations from cyberattacks. Our products and incident response services are used within most large enterprises, governments, and militaries for incident response and threat hunting.

We are looking for a candidate who leverages in-depth industry knowledge of the business environment and technical solutions to assist customers in gaining market share and increasing operational efficiencies. The role involves providing technical and consultative leadership for complex engagements, focused on specific industry or service offerings.

Responsibilities

• Provide technical and consultative services on NetWitness solutions across various complex consulting projects.
• Conduct workshops, analyze requirements, develop solution designs, document findings, and deliver training on NetWitness solutions.
• Collaborate with project managers, team members, and clients to ensure smooth project implementation and transition.
• Deliver services independently and in team settings, working closely with sales and other personnel.
• Manage multiple work streams on complex projects, define deliverables, and adhere to project methodologies, margins, and SOWs.
• Lead quality assurance activities, including technical reviews, and ensure proper escalation and change procedures.
• Possibly manage or serve as technical lead on small to medium projects, understanding customer challenges and providing strategic solutions.
• Analyze large datasets, produce logical options, and generate comprehensive documentation to ensure customer satisfaction.
• Maintain activity and progress reports, keep stakeholders informed, and complete end-of-project reports.
• Develop detailed project plans, review statements of work, and categorize requirements appropriately.

Technical Responsibilities

• Assist customers in enhancing their threat detection and hunting capabilities.
• Track threat actors and associated TTPs.
• Identify threat actor groups and their techniques, tools, and procedures.
• Contribute to cybersecurity best practices, especially in threat intelligence, hunting, and analysis using NDR, EDR, and SIEM tools.
• Develop detection content and use cases within NetWitness for various data sources.
• Create advanced queries and alerts for threat detection.
• Design dashboards and reports to identify threats and anomalies.
• Assess visibility gaps and recommend improvements.
• Support customers in increasing detection capabilities and investigating attacks.
• Assist in sales scoping and provide technical guidance.
• Contribute to the development of training courses and assessments.
• Participate in lab content QA and maintain instructional documentation.
• Help gather and build lab use-cases and assist with deployments and upgrades.
• Deliver webinars biannually and participate in customer training events as needed.

Required Experience / Qualifications

• Understanding of logging mechanisms for standard network, security solutions, servers, and databases.
• Strong knowledge of networking and security infrastructure.
• Ability to detail data flow in network topologies.
• Excellent communication skills, both verbal and written.
• Analytical and problem-solving skills.
• Understanding of logs, events, packets, and incidents.
• Experience with collection methodologies like Syslog, SNMP, ODBC, LEA, FTP, SFTP.
• Knowledge of security threats, trends, and policies.
• Excellent presentation and facilitation skills.
• Professional-level English proficiency.
• Federal security clearance is a plus.