Principal Consultant, Cyber Risk Management Advisory, Proactive Services (Unit 42) - Remote

Job Description

Our Mission

At Palo Alto Networks, everything starts and ends with our mission: being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and more secure than the one before. We are a company built on challenging and disrupting the way things are done, and we’re looking for innovators committed to shaping the future of cybersecurity.

We take our mission seriously. We are relentless in protecting our customers and believe that the unique ideas of every team member contribute to our success. Our values, crowdsourced from employees, are reflected daily through disruptive innovation, collaboration, integrity, and inclusivity.

As part of our team, you will help shape the future of cybersecurity. We work fast, value ongoing learning, and respect each individual’s uniqueness. Our development and wellbeing programs, including FLEXBenefits, mental and financial health resources, and personalized learning, are designed to support you.

The Principal Consultant, Cyber Risk Management Advisory for Proactive Services, leads our Governance, Risk, and Compliance team across various clients. You will assess security risks across multiple frameworks, serve as a technical team member in client engagements, and advocate for cybersecurity risk management with strong recommendations.

1. Establish security standards within professional services.
2. Apply industry knowledge of cybersecurity best practices in GRC to improve client security posture and maturity.
3. Lead advisory engagements such as Tabletop Exercises, Risk Assessments, Incident Response Plans, and Breach Readiness Reviews.
4. Work across frameworks and standards like NIST CSF, CIS20, ISO, GDPR, CCPA, NYDFS, SOX, and HIPAA.
5. Manage teams, monitor progress, track budgets, manage risks, and communicate with stakeholders, defining impacts and mitigation strategies.
6. Identify security risks and vulnerabilities proactively through interviews, documentation review, testing, and control validation.
7. Ensure controls meet legal, regulatory, privacy, policy, standards, and security requirements.
8. Communicate audit, assessment, or compliance results effectively to stakeholders.
9. Scope new opportunities, draft statements of work, and proposals.
10. Perform travel as needed (~30%).

1. 6+ years of experience in information security and risk assessments based on accepted standards.
2. Professional services and consulting experience.
3. Experience managing a team of consultants.
4. Knowledge of GRC tools, technology, and implementation.
5. Experience with security assessments, audits, findings, recommendations, and risk scoring.
6. Proven ability to develop and strengthen client relationships.
7. Knowledge of forensic tools, technologies, and methods.
8. Bachelor’s Degree in relevant fields or equivalent experience.

Unit 42 Consulting is Palo Alto Networks' security advisory team, specializing in incident response, risk management, and digital forensics. Our experts work quickly to provide cybersecurity solutions, attack readiness, and long-term security improvements.

Salary ranges from $151,000 to $208,000/year, depending on qualifications and location. Compensation may include stock units and bonuses. Benefits details are available here.

We value diversity and inclusion. If accommodations are needed, contact us at accommodations@paloaltonetworks.com. We are an equal opportunity employer, considering all qualified applicants regardless of protected characteristics.