דרושים Technical Director Proactive Services Dfir Unit ב-Palo Alto

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

This role reports to Devops Director, Cortex product

You will be expected to be versed in the technical domains and be able to engage with an experienced cross-disciplinary staff . We are looking for someone with strong critical thinking and analytical skills, who is a self-starter, a great communicator and has demonstrated ability to build consensus at all levels, and is passionate about driving change in a dynamic fast-paced environment.

Your Impact

• Work closely with DevOps, SRE and platform engineering teams to orchestrate end-to-end delivery of complex infrastructure and product capabilities across multiple services and environments.

• Serve as the primary integration point between DevOps and development teams, ensuring smooth alignment on architecture, deployment models, CI/CD processes, reliability targets, and production readiness.

• Partner with product management to translate high-level requirements into technical execution plans, define realistic timelines, and track cross-team commitments.

• Maintain a system-level understanding of all moving parts: production change process, infra upgrades, migrations, capacity plans and rollout constraints.

• Identify and flag technical dependencies early, particularly those affecting infrastructure, deployment flows, monitoring, and scaling requirements.

• Drive and define change-management processes: release planning, rollout strategies, maintenance windows, gating criteria, risk assessments, observability readiness, and post-launch validations.

• Coordinate sprint plans, milestones, and execution cycles across DevOps and development organizations, ensuring teams deliver aligned increments that fit into broader program roadmaps.

• Provide regular communication to senior engineering leadership on execution status, blockers, architectural risks, and operational concerns.

• Work hand-in-hand with technical leads/architects to understand deep technical topics such as Kubernetes upgrades, multi-region deployments, data-store migrations, networking changes, or infra cost optimizations.

Your Experience

• 8+ years of engineering or technical program management experience, including 4+ years managing cross-functional infra/DevOps delivery programs at scale.
  

• Deep, hands-on understanding of SaaS DevOps domains: release orchestration, multi-region deployments, environment promotion flows, maintenance windows, incident lifecycle, change-management, and production readiness standards.
  

• Strong familiarity with Agile methodologies, sprint/iteration planning, and running large cross-team delivery cycles across infra and development organizations.
  

• Demonstrated ability to work with engineering teams to translate product and architectural requirements into detailed technical execution plans, functional specifications, test/validation criteria, and deployment strategies.
  

• Comfortable presenting program status, architecture risks, and operational considerations to SVP/VP-level leaders; able to convert complex technical execution into clear, actionable communication.

• Bachelor’s/Master’s degree in a technical discipline (Computer Science, Software Engineering, Information Systems)

• Hands-on experience with JIRA and Confluence.

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

This role is client-facing and requires the Principal Consultant to lead and produce deliverables based on reactive services client engagements. The Principal Consultant will work directly with multiple customers and key stakeholders (Admins, C-Suite, etc) to manage incident response engagements and provide guidance on longer term remediation.

Your Impact

• Perform reactive incident response functions including but not limited to - host-based analysis functions through investigating Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs)
• Examine firewall, web, database, and other log sources to identify evidence of malicious activity
• Investigate data breaches leveraging forensics tools including Encase, FTK, X-Ways, SIFT, Splunk, and custom Crypsis investigation tools to determine source of compromises and malicious activity that occurred in client environments
• Manage incident response engagements to scope work, guide clients through forensic investigations, contain security incidents, and provide guidance on longer term remediation recommendations
• Ability to perform travel requirements as needed to meet business demands (on average 20%)
• Mentorship of team members in incident response and forensics best practices

Your Experience

• 8+ years of incident response or digital forensics consulting experience with a passion for cyber security
• Strong leadership skills including experience managing a team or individuals
• Experience with leading complicated engagements including scoping, interfacing with the client, and have executed on a technical front
• Proficient with host-based forensics and data breach response
• Experienced with EnCase, FTK, X-Ways, SIFT, Splunk, Redline, Volatility, WireShark, TCPDump, and open source forensic tools
• Incident response consulting experience required
• Identified ability to grow into a valuable contributor to the practice and, specifically
• have an external presence via public speaking, conferences, and/or publications
• Have credibility, executive presence, and gravitas
• Able to have a meaningful and rapid delivery contribution
• Have the potential and capacity to understand all aspects of the business and an excellent understanding of PANW products
• Collaborative and able to build relationships internally, externally, and across all PANW functions, including the sales team
• Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security or related field or equivalent military experience required

All your information will be kept confidential according to EEO guidelines.

Key Responsibilities

• Strategic Technical Leadership: Act as the highest level of technical authority. You will hold peer-to-peer conversations with Engineering and Customers to drive permanent resolution on complex architectural issues, ensuring supportability is a key consideration in organizational and product decisions
• AI & Automation Strategy: Drive AI-led workflow improvements and automation efforts across GCS. Your goal is to achieve specific, measurable outcomes including significant Case Avoidance and Case Deflection, while drastically reducing Time to Resolution (TTR) and Time to Connect (TTC)
• Champion Serviceability & Scalability: Influence the product development lifecycle by advocating for improved serviceability and scalability in new and existing products. Collaborate closely with Product Management and Engineering to incorporate critical support requirements early in the design phase
• Engineer Enablement: Develop and deliver cutting-edge training programs, technical deep dives, and enablement content for our Technical Assistance Center (TAC) engineers, ensuring the global team is ready to expertly support complex Cloud and SASE architectures
• Root Cause Elimination: Systematically analyze root causes of recurring, high-impact issues. Collaborate directly with Engineering to implement permanent product fixes and process improvements, minimizing customer impact and elevating the overall support experience

Required Qualifications

• Professional Experience: 10+ years of progressive experience in technical support, engineering, or a related field within the networking and security industry
• Core Domain Expertise: Deep and comprehensive understanding of TCP/IP, routing protocols (BGP, OSPF), and complex LAN/WAN architectures
• Expertise in network security concepts and technologies, including firewalls, VPNs (IPSEC, SSL), PKI, and intrusion prevention systems
• Extensive, hands-on background in SASE and SD-WAN technologies.
• Cloud & Deployment Fluency: Significant exposure to solutions deployed across major Public Clouds (e.g., AWS, Azure, GCP) and Private Clouds
• Proven track record of leading, managing, and implementing successful, high-impact technical projects
• Operational Background: Proven experience working in Security, Network, and/or IT Operations environments
• Experience developing and implementing Technical Support strategy and successfully mentoring Senior Technical Staff
• Automation & AI Skills: Demonstrated experience applying AI/ML concepts to operational workflows or support processes for tangible business outcomes
• Expertise with scripting languages (e.g., Python) for Automation and utilizing effective tools to achieve Case Avoidance and Deflection targets
• Soft Skills & Authority: Exceptional communication skills with the ability to articulate complex technical concepts clearly and persuasively to both highly technical and non-technical executive audiences.
• Proven ability to influence product direction by effectively collaborating with Product Management and Engineering teams

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

As a Technical Product Owner, you will be responsible for designing and reviewing integrations with various information technology and security tools.

Good quality integrations that support customers’ use cases are the core of our platform. You’ll develop and execute operational engineering processes and help scale from early access through full launch.

Your Impact

• Create and review technical design requirements for third-party integrations
• Work closely with peers across different teams and disciplines to shape solutions and integrate with other parts of the product
• Work closely with Software Developers and Security Architects to design, research, and scope integrations
• Work closely with Customers, External Partners, Business Development, and Product to scope use cases and workflows
• Support cross-functional teams in the full software development life-cycle of integrations from design through implementation

Your Experience

• 4-5 years of experience as a Backend Developer / Technical Product Owner or technical-related field
• Hands-on experience with with at least one major cloud platform (e.g. AWS, GCP, Azure)
• Solid understanding of modern AI tools and platforms designed for software development (e.g., GitHub Copilot, OpenAI APIs, CodeWhisperer, etc.) and ability to effectively utilize AI-powered tools to enhance productivity and development workflows
• Solid background in working with third-party APIs and integrations
• Proven experience writing design/requirement documents for engineering teams
• Familiarity with scripting, debugging, or software development (Python - preferably)
• Thorough understanding of software development lifecycle from conception to delivery
• Excellent communication, organization, and influence skills
• Ability to resolve conflicts and drive issues to resolution and escalate when necessary
• Self-starter who enjoys problem-solving with little direct supervision - Ability to learn quickly and just in time

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Lead a team of 5-10 engineers building high-scale backend services and modern frontend applications, ensuring seamless integration between client and server.
• Own project delivery across the full software lifecycle—from frontend user experience and design systems to backend scalability, reliability, and monitoring.
• Drive technical strategy and architecture for core PAB services, including data ingestion, processing, and real-time user interactions.
• Partner with Product, Architecture, Design, and SRE teams to ensure performance, reliability, security, and usability at scale.
• Encourage engineering best practices in CI/CD, observability, automated testing, and accessibility.
• Grow and mentor a high-impact full-stack engineering team through coaching, feedback, and career development.
• Promote a culture of innovation, inclusion, and continuous improvement within the team.
• Identify opportunities to improve system performance, frontend usability, and cross-stack development workflows.

Your Experience

• 6+ years of experience in software engineering (backend + frontend), with at least 2+ years in engineering leadership roles.
• Proven success managing cloud-native applications on GCP/AWS/Azure, especially with Kubernetes.
• 2+ years of experience working in a SaaS company that delivered a multi-tenant offering via Continuous Delivery (CD) practices.
• Solid background in modern frontend frameworks (React, TypeScript, modern JavaScript) and delivering high-quality, performant user experiences.
• Proficiency in programming languages such as Go, Python, and TypeScript
• Knowledge of networking, security, and scaling strategies for both backend services and secure browser-based applications.
• Strong people leadership and team-building skills; ability to recruit, onboard, grow talent and drive high-performing teams.

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

Technical Director, Reactive Services is a senior-level consulting position. The individual will provide expert-level guidance on all areas of cybersecurity and data breach response to Unit 42 clients across a wide array of industries, geographies, and organizational structures. They will be the client’s advocate for cybersecurity and will provide strategic and technical leadership in this area.

Your Impact

• Experience with forensic processes and procedures (chain of custody, computer acquisition techniques, and memory acquisition techniques)
• Maintain hyper-current knowledge of extant vulnerabilities and threat landscape
• Experience using forensics tools such as EnCase, FTK, SleuthKit, Volatility, etc.
• Analysis experience and operational understanding of one or more major operating systems (Microsoft Windows, Linux, or Mac)
• Knowledge of common malware persistence mechanisms
• Experience identifying and triaging malware

Your Experience

• 10+ years of incident response or digital forensics consulting experience with a passion for cyber security
• Strong leadership skills including experience managing a team or individuals
• Experience with leading complicated engagements including scoping, interfacing with the client, and have executed on a technical front
• Proficient in enterprise-wide, mass data acquisition and analysis on the host and network level as well as solutions for cyber forensic and Incident Response scenarios
• Experience with working efficiently on the command line and creating automation for Incident Response scenarios
• Incident response consulting experience required
• Identified ability to grow into a valuable contributor to the practice and, specifically
• Have an external presence via public speaking, conferences, and/or publications
• Have credibility, executive presence, and gravitas
• Able to have a meaningful and rapid delivery contribution
• Have the potential and capacity to understand all aspects of the business and an excellent understanding of PANW products
• Collaborative and able to build relationships internally, externally, and across all PANW functions, including the sales team
• Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security or related field or equivalent military experience required

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Hire for and lead a team of MDR Analysts working globally, guide the team, create and improve processes, methodologies and capabilities that the team requires to work effectively
• Lead a team that analyzes incidents from real customer environments to identify ongoing threats to customer environments
• Provide critical feedback to the different product, research and engineering and threat hunting teams to help improve the products for the entire Palo Alto Networks’ customer base
• Work closely with Security Research, Threat Intelligence and Threat Hunting teams to remediate and detect new emerging threats

Your Experience

• Great interpersonal skills and a proven experience collaborating with customers
• Understanding of the threat landscape in terms of the tools, tactics, and techniques of attacks, as well as networking and security fundamentals
• Basic hands-on coding skills (e.g. Python)
• Excellent written and oral communication skills in English
• Experience investigating targeted, sophisticated or hidden threats
  • Background in forensic analysis and incident and response tools to identify a threat and determine the extent and scope of a compromise
  • Experience with investigative technologies such as SIEM, packet capture analysis, host forensics, and Endpoint Detection and Response tools
  • Understanding of how APTs operate and the attack cycle – different attack vectors, propagation and data exfiltration, lateral movement, persistence mechanism, etc.
  • Understanding of how organizations protect themselves from cyber-attacks, what tools are used and what remediation techniques are leveraged
• Advantages
  • Having worked in SOC analysis or an investigation environment
  • Having worked in Incident Response environment

All your information will be kept confidential according to EEO guidelines.