Principal Consultant, Offensive Security, Proactive Services (Unit 42) - Remote

1 day ago Be among the first 25 applicants

Lensa is the leading career site for job seekers at every stage of their career. Our client, Palo Alto Networks, is seeking professionals. Apply via Lensa today!

Our Mission

At Palo Alto Networks, everything starts and ends with our mission:
Being the cybersecurity partner of choice, protecting our digital way of life.

Our vision is a world where each day is safer and more secure than the one before. We are a company built on challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

Who We Are

We take our mission of protecting the digital way of life seriously. We are relentless in protecting our customers and believe that the unique ideas of every team member contribute to our collective success. Our values, crowdsourced by employees, are reflected daily in our actions — from disruptive innovation and collaboration to integrity and inclusion.

As a team member, you will shape the future of cybersecurity. We work fast, value ongoing learning, and respect each individual’s needs. Our development and wellbeing programs, including FLEXBenefits, mental and financial health resources, and personalized learning, support your growth and health.

Your Career

The Principal Consultant on the Offensive Security team assesses and challenges client security postures. You will utilize various tools, lead client engagements, and advocate for cybersecurity best practices with strong recommendations.

Your Impact

• Develop internal infrastructure for offensive security research, development, and testing.
• Conduct network scans to identify vulnerabilities.
• Perform client penetration testing, utilizing open-source, custom, and commercial tools.
• Assist in scoping engagements, clearly articulating methodologies to technical and executive audiences.
• Generate reports communicating testing results and remediation strategies.
• Develop scripts, tools, and methodologies to automate processes.
• Conduct application testing, systems analysis, and support for IT systems.
• Perform threat hunting and compromise assessments using Unit 42 tools and techniques.
• Contribute to security standards development and recommend enhancements.
• Conduct cyber risk assessments using industry frameworks like NIST, ISO, PCI, CIS, or CMMC.
• Perform cloud penetration testing on AWS, GCP, Azure, and other platforms.
• Advise clients on security measures, monitoring, and response strategies.
• Travel as needed, approximately 30% of the time.

Your Experience

• 6+ years in risk assessment, information assurance, network security, or vulnerability assessments.
• Experience managing consulting teams.
• Deep understanding of malware and exploit craft without relying solely on consumer tools.
• Proficiency with penetration testing tools and techniques.
• Experience with web application security, code auditing, and security standards.
• Knowledge of Linux, Windows, and cloud environments (AWS, GCP, Azure).
• Scripting skills in Perl, Python, Ruby, Bash, C/C++, C#, or Java.
• Familiarity with assessment tools like Nessus, OpenVAS, MobSF, Metasploit, Burp Suite, Cobalt Strike, BloodHound, Empire.
• Understanding of application, database, and network security design.
• Ability to read and analyze malicious code and antivirus results.
• Skill in scoping opportunities, drafting SOWs, and proposals.
• Knowledge of digital forensics tools and methods.
• External presence via speaking, publications, or conferences is a plus.
• Strong credibility, executive presence, and rapid delivery capability.
• Capacity to understand business aspects and PANW products.
• Collaborative mindset to build internal and external relationships.
• Bachelor’s Degree in relevant fields or equivalent experience, including military experience.