Consulting Director Dfir Reactive Services Unit - jobs at Palo Alto in United States, New York

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

This is a highly influential position that blends strategic thought leadership, creative problem-solving, and technical credibility to make a tangible difference.

Your Impact

• Serve as the primary liaison for Professional Services, ensuring service delivery exceeds customer expectations through proactive feedback management and corrective actions.

• Champion a customer-first approach across Global Customer Services teams to improve engagement and satisfaction.

• Ensure your team deeply understands customer technical needs and builds lasting, trusted relationships.

• Partner with Sales to provide strategic input during customer negotiations and ensure smooth collaboration throughout the customer lifecycle.

• Drive accurate resource planning and staffing to meet project milestones and quarterly business targets.

• Participate in Quarterly Service Reviews (QSRs), sharing insights and gathering client feedback.

• Provide clear, timely updates on key activities, escalations, and issues to customers and internal teams.

• Build strong partner relationships focused on aligned goals and shared customer success.

• Oversee team utilization, revenue forecasting, and approvals for timesheets and expenses.

• Contribute to the strategic alignment of Professional Services offerings.

• Lead team operations including hiring, career development, mentorship, and training.

Your Experience

• 5+ years of experience leading and building high-performing teams of networking and security technologies such as SASE, Next-Generation Firewall (NGFW), and related solutions.

• Demonstrated understanding of technical concepts such as internet security concepts, products, and implementation strategies. You should be able to translate this complex information into clear, understandable terms for both technical and non-technical stakeholders.

• Demonstrated success in end-to-end project lifecycle management , from pre-sales engagement and SOW creation through project execution and closeout.

• Strong track record of cross-functional collaboration , partnering with Sales, Product, and Services peers to deliver aligned customer outcomes.

• Recognized for clear, persuasive communication and executive presence, with the ability to influence across all levels of an organization.

• Skilled at translating complex technical concepts for diverse audiences, including executives and non-technical stakeholders.

• Valued industry certifications like CISSP, PMP, or vendor-specific certifications (e.g., Palo Alto Networks certifications) and strong project management skills are a plus.

• Willingness to travel up to 10% for customer engagements and internal business meetings.

• Bachelor’s degree in a relevant technical discipline (Computer Science, Information Systems, Electrical Engineering) or comparable professional experience, including military service.

As threats and technology evolve, we stay in step to accomplish our mission. You’ll be involved in implementing new products, transitioning from old products to new, and fixing integrations and critical issues as they are raised. But you won’t wait for them to be raised, you’ll seek them out, too. We fix and identify technical problems with a pointed focus of providing the best customer support in the industry.

Compensation Disclosure

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between $151,000 - $208,000YR. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found .

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

This role is client-facing and requires the Principal Consultant to lead and produce deliverables based on reactive services client engagements. The Principal Consultant will work directly with multiple customers and key stakeholders (Admins, C-Suite, etc) to manage incident response engagements and provide guidance on longer term remediation.

Your Impact

• Perform reactive incident response functions including but not limited to: host-based analysis functions through investigating Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs)
• Examine firewall, web, database, and other log sources to identify evidence of malicious activity
• Investigate data breaches leveraging forensics tools including Encase, FTK, X-Ways, SIFT, Splunk, and other investigation tools to determine source of compromises and malicious activity that occurred in client environments
• Manage incident response engagements to scope work, guide clients through forensic investigations, contain security incidents, and provide guidance on longer term remediation recommendations
• Ability to perform travel requirements as needed to meet business demands (on average 20%)
• Mentorship of team members in incident response and forensics best practices

Your Experience

• 6+ years of incident response or digital forensics consulting experience with a passion for cyber security
• Strong leadership skills including experience managing a team or individuals
• Experience with leading complicated engagements including scoping, interfacing with the client, and have executed on a technical front
• Proficient with host-based forensics and data breach response
• Experienced with EnCase, FTK, X-Ways, SIFT, Splunk, Redline, Volatility, WireShark, TCPDump, and open source forensic tools

• Identified ability to grow into a valuable contributor to the practice and, specifically:

  • have an external presence via public speaking, conferences, and/or publications;

  • have credibility, executive presence, and gravitas;

  • be able to have a meaningful and rapid delivery contribution;

  • have the potential and capacity to understand all aspects of the business and an excellent understanding of PANW products;

  • be collaborative and able to build relationships internally, externally, and across all PANW functions, including the sales team.

• Incident response consulting experience required
• Ability to perform travel requirements as needed to meet business demands (on average 20%).
• Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security or related field

Compensation Disclosure

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between $151000/YR - $208000/YR. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found .

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

Curiosity is core to the Solutions Consultant role, and you see complex problems as opportunities to learn and deliver innovative solutions! You define your impact by:

• Meeting and exceeding sales quotas by building and implementing strategic, technical account plans that target cross-platform solutions.

• Understands Key customer business requirements and has the ability to position, demonstrate and create high level designs across the entire PANW portfolio solutions creating business value for customers.

• Ability to drive customer adoption of Palo Alto Networks Platform. Building customer relationships by helping customers achieve increased productivity, operational efficiency, security efficacy, and greater flexibility to innovate.

• Conducting discovery to understand and articulate the key technical, operational, and commercial imperatives of your prospects and customers

• Working closely with Professional Services, Customer Success and Specialist teams to ensure overall customer implementation and adoption of solutions.

• Demonstrating strong communication skills, influencing through effective presentations and customer-specific demos, and conducts technical engagements and workshops that are clear and impactful, simplifying complex ideas for various audiences

• Leading successful technical validation efforts based on best practices to ensure technical win in assigned opportunities.

• Demonstrates Cross functional leadership driving collaboration and orchestrating supporting resources (Specialists, Channel Resources, Customer Support) to ensure a one-team approach that demonstrates a cohesive strategy.

• Promoting end-to-end solutions that include PANW and/or partner professional services to ensure customers realize business value sooner

• Understanding the competitive landscape and effectively differentiating PANW's leadership in the cybersecurity space

• Continuously investing in yourself to develop technical and professional skills that drive your ever-increasing contributions to success of our customers while actively participating within the Solutions Consultant community and at industry events

• Identifying technical stakeholders and cultivating relationships with key personas to build and drive a security architecture transformation roadmap

Your Experience

• 3+ years experience in pre-sales/sales engineering or graduate of Palo Alto Networks Academy Program

• Skilled in at least one of the following Networking, Network Security, Cybersecurity, Private/Public Cloud Security, SOC/Endpoint or SASE.

• Experience in delivering cybersecurity solutions that solve technical challenges and influence new business initiatives is preferred

• Influencing and gaining buy-in from key stakeholders, either in a customer-facing or internal role; prior experience in a pre-sales role is ideal

• Creating and delivering technical presentations, workshops, or technical validation engagements

• Experience in selling, designing, implementing, or managing one or more of the following solutions: Network Security, SASE, SaaS, CNAPP and/or SOC Transformation Technologies

• Partnering with Customer Support functions to ensure successful implementation and adoption of sold solutions

• Understanding of sales processes with multiple buying centers and multi-product solutions are preferred

• This is a field sales position where travel requirements may be required to support in person customer meetings, please discuss with the recruiter on the specifics for this position.

• Proficient in English

Compensation Disclosure

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between $173000 - $237500/YR. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found .

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Responsible for complete software development process including requirement analysis, design, development, deployment, and support

• Collaborate with other cross functional teams in order to create tight integrations of product features and infrastructure

• Write clean, testable, readable, scalable and maintainable code that scales and performs well for thousands of customers

• Participate actively and be a factor to design and development discussions

• Identify areas for improvement within the team and actively push for positive change through new initiatives or optimizations

• Ability to troubleshoot issues in production environment and continuously improve the code and process to reduce the impact

Your Experience

• 7+ years of solid experience in programming, design and development

• Extensive hands-on (expert level) programming skills in Golang and Python

• Extensive experience working on public cloud platforms like GCP and AWS, with good understanding of cloud networking, IAM roles and policies, and experience using cloud native services like pubsub, cloud storage and Big Query

• Exposure to CI/CD pipelines and tooling such as Gitlab, etc.

• Experience in delivering application performance monitoring visualizations with any of the following - Grafana / ELK / Cloud monitoring.

• In depth understanding of DNS protocols, extensions, DNS resolution infrastructure and ecosystem.

• Knowledge of Networking and Routing protocols like BGP, TCP/IP, HTTPS, SSL/TLS, etc

• M.S./B.S. degree in Computer Science or Electrical Engineering

Compensation Disclosure

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between: $185,000 - $210,000/YR. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

Consulting Director, Reactive Services is a senior-level consulting position. The individual will provide expert-level guidance on all areas of cybersecurity and data breach response to Unit 42 clients across a wide array of industries, geographies, and organizational structures. They will be the client’s advocate for cybersecurity and will provide strategic and technical leadership in this area.

Your Impact

• You are an Industry-recognized inspiring leader with media and public speaking experience, deeply embedded in information security community

• Experience with forensic processes and procedures (chain of custody, computer acquisition techniques, and memory acquisition techniques)

• Maintain hyper-current knowledge of extant vulnerabilities and threat landscape

• Experience using forensics tools such as EnCase, FTK, SleuthKit, Volatility, etc.

• Analysis experience and operational understanding of one or more major operating systems (Microsoft Windows, Linux, or Mac)

• Knowledge of common malware persistence mechanisms

• Experience identifying and triaging malware

• Experience leading technical breach response teams in fast-paced environment

• 10 years of hands-on consulting experience in digital forensics, and incident response

Your Experience

• Strategic mindset but also detail-oriented and hands-on ability to lead high-level discussion on DFIR technology strategy and approach both internally and externally

• Demonstrated self-starter with intellectual curiosity and ability to adapt to change

• Ability to work quickly, willingness to work on ad hoc assignments, work independently or leading teams as needed

• Strong written and verbal communication skills

• Ability to develop unique and creative solutions to problems on the fly

• Willingness to learn new technologies and techniques to solve complex customer issues

• Ability to manage clients, lead meetings, and manage multiple project teams concurrently

• Ability to quickly develop and maintain rapport with clients

• Demonstrated ability to cross-sell or upsell existing clients and generate new business

• Experience managing complex budgets

• Ability to allocate staff to various projects quickly and efficiently

• Willingness to travel as required (up to 20%) to support leadership, customer briefings, planning and other activity as needed

Compensation Disclosure

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between $183,000 - $252,000/YR. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found .

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

As the '' you will lead the GTM strategy & partner sales execution for a set of large systems integrators () for Palo Alto Networks. In this role you will work with in-region core and specialist sales teams, working closely with their partner counterparts to promote joint sales plays and drive net-new business and incremental market share. The role will focus on delivering measurable results, including increased bookings and increased net-new customer acquisition through sales and marketing efforts. You will collaborate with cross-functional internal and partner teams to drive sales, marketing, and partner enablement activities. You will prepare and deliver weekly reporting on pipeline and bookings, quarterly business reviews, and annual partner plans to grow and evolve the partnership.

Your Impact

• Develop and own the North America business plan with clear execution steps, provide weekly forecasts, and lead monthly, quarterly, and annual partner business reviews to achieve revenue targets
• Build and strengthen relationships with executive, vertical, and account leaders in partner organizations, ensuring alignment between Palo Alto Networks and partner field sales teams
• Drive field and partner interlock by engaging sales leadership effectively and creating winning outcomes for customers and stakeholders
• Serve as the subject matter expert on repeatable sales plays, joint solutions, marketing activities, and partner routes to market (MSSP, Resell, Influence)
• Support joint pipeline progression at the deal level, including pricing strategies, order processing, procurement, and timely deal closure
• Lead and collaborate on partner enablement programs with SEs and Partner Development Managers to expand capacity and demand generation
• Document partner activities, communicate outcomes and next steps, and ensure consistent follow-up on joint pursuits
• Apply strong sales skills (listening, qualifying, negotiating, closing, etc.) to consistently achieve targets and drive results
• Collaborate cross-functionally, share best practices, and maintain customer focus while operating with integrity under Palo Alto Networks’ Channel Rules of Engagement
• Travel as needed to regional partner teams to expand relationships, enable pipeline growth, and demonstrate a mission-driven, adaptable, growth-oriented mindset

Your Experience

• Proven success managing and scaling GSI partnerships with or at HCL and Wipro , including growing OEM/ISV relationships from $10M to $50M, with strong executive-level relationships and CxO engagement.
• 10+ years of partner or direct sales experience in hi-tech, with expertise in consulting and managed services partnerships; cybersecurity background preferred
• Skilled in platform selling, multiple routes to market (MSSP, Resell, Influence), and structured sales techniques across the full cycle from opportunity identification to account management
• Strong record of execution, delivering measurable business outcomes against stretch targets while navigating channel conflict and complex relationships
• Experienced in leveraging and influencing cross-functional teams (product, marketing, sales, channel) in a matrixed environment to execute GTM strategies and close deals
• Excellent communication and presentation skills with the ability to influence senior leaders, supported by strong collaboration, leadership, and team-player qualities
• Mission-driven, results-oriented, and adaptable, with the maturity to thrive in fast-paced, dynamic environments

Compensation Disclosure

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/com-missioned roles) is expected to be between $356000/YR - $415250/YR. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found .

All your information will be kept confidential according to EEO guidelines.

This role may require travel to and from Palo Alto Networks, Inc. business meetings and events and requires reliable transportation to do so. If a hire chooses to drive in connection with company business, the hire for this role must maintain a valid driver’s license.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Conduct comprehensive security assessments of AI systems and tools using frameworks such as:

  • MITRE ATLAS for adversarial tactics and techniques.

  • OWASP Top 10 for LLMs to identify vulnerabilities in AI/ML models.

  • NIST AI Risk Management Framework (AI RMF) for risk analysis and mitigation.

• Develop and execute assessment plans tailored to foundational models, base models, and SaaS-based AI tools.

• Analyze model architectures, training data pipelines, and deployment environments to identify potential security gaps and vulnerabilities.

• Provide expert guidance on securing AI systems, including:

  • Adversarial ML defenses.

  • Data poisoning prevention.

  • Privacy-preserving AI techniques (e.g., differential privacy).

• Evaluate compliance with regulatory requirements and standards (e.g., GDPR, HIPAA, or emerging AI-specific regulations).

• Collaborate with the client’s cross-functional teams, conducting stakeholder interviews, interactive workshops, and meetings with technical teams (data scientists, developers, DevOps engineers) and leadership teams to ensure a thorough understanding of system architecture, security requirements, and business objectives for the assessment.

• Stay up-to-date on the evolving threat landscape in AI and contribute to the development of innovative security solutions.Assisting Unit 42 Consulting Leadership in the development of Risk Management, Compliance, and Security standards within professional services

• Maintaining industry knowledge of and experience with cybersecurity best practices within theGovernance, Risk and Compliance (GRC) field to provide recommendations to proactively improve our client’s security posture and maturity

• Maintaining an understanding of the comprehensive threat intelligence landscape, key threat actors, MITRE ATT&CK TTPs, threat intelligence platforms, zero-day and other vulnerabilities, and other threat-led cybersecurity intelligence information

• Maintaining an understanding of Artificial Intelligence (AI) platforms and security best practices as well as threat to foundational, base, and other AI models and tools

• Leading or supporting cybersecurity risk assessments, audits, program and policy maturation and development, incident response tabletop exercises, configuration reviews, breach readiness reviews, and expert witness cases in accordance with industry best practices, regulations, standards, and company policies and procedures

• Maintaining the ability to work across multiple frameworks and regulatory standards including, but not limited to, NIST, CIS 18, ISO, GDPR, CCPA, SOX, and HIPAA

• Managing the team, monitoring progress, tracking budget, mitigating risks, and ensuring key stakeholders are kept informed about progress and expected outcomes while defining potential impacts and creating an effective mitigation strategy for multiple projects at a given time

• Identifying security risks and vulnerabilities while eliminating cybersecurity threats via stakeholder interviews, documentation review, and deep-dive testing and control validation

• Evaluating client controls for compliance with legal, regulatory, privacy, policy, standards and security requirements

• Effectively documenting and communicating audit, assessment, or compliance results, findings, and recommendations to stakeholders

• Effectively communicating with external stakeholders in a professional manner

• Scoping new opportunities with prospective clients, including drafting statements of work and proposals

• Meeting travel requirements as needed to meet business demands (on average ~30%)

Your Experience

• 6-9+ years of experience performing information security and risk assessments based upon industry-accepted standards.

• Former professional services and consulting experience preferred

• Experience managing a team of consultants

• Experience with GRC tools, technology, and implementation

• Experience with security assessments/audits, drafting findings and recommendations, and prioritizing recommendations via quantitative risk scoring

• Experience with securing AI systems within cloud environments (e.g., AWS, Azure, Google Cloud).

• Experience with the lifecycle management of AI/ML models, including development, deployment, monitoring, and maintenance.

• Strong verbal and written communication skills, particularly in conveying complex technical information to non-technical stakeholders.

• Demonstrate a track record in strengthening existing and developing new client relationships

• Knowledge of computer forensic tools, technologies and methods

• Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security or equivalent years of professional experience to meet job requirements and expectations

Compensation Disclosure

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between $151000 - $208000/YR. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found .

All your information will be kept confidential according to EEO guidelines.