Principal Consultant, SOC Advisory, Proactive Services (unit 42) - Remote - Remote Eligible

Principal Consultant, Soc Advisory, Proactive Services (Unit 42)- Remote

This role is client-facing and requires the Principal Consultant to lead and produce deliverables based on cyber risk management (CRM) client engagements. The Principal Consultant will work directly with multiple customers and key stakeholders (Admins, C-Suite, etc) to drive the security priorities of the security operations management, security operations center (SOC) staff, and Information Security team.

Principal Consultants will help drive Proactive Consulting Services with SOC assessments. This individual will be the trusted advisor to grow partnerships and assist customers to get and stay healthy from a cyber security perspective.

Lead security audits of client's security operations program, to include security organization and functions, processes, and technology.

Analyze the current level of monitoring and alerting within the enterprise and provide a gap analysis on visibility of assets, log coverage, and detection effectiveness.

Conduct general cyber risk assessments using framework or standards like MITRE ATT&CK, NIST 800-61r2, NIST CSF, ISO 27001/2, PCI, CIS Top 2, CMMD, or other industry measurement tools.

Utilize command-line interfaces or graphical user interfaces (GUI) of security tools to conduct technical and control set validation.

Assess client security architecture, implementations and integration of security monitoring and endpoint/network and cloud protection tooling to understand the technical implementations of security controls.

Assess SOC effectiveness of Vulnerability Management and threat exposure mitigation.

Advise and develop SOC initiative roadmaps and recommendations for clients to further secure their environments.

Scope new opportunities with prospective clients, including drafting statements of work and proposals.

6-9+ years of experience performing information security advisement and risk assessments based upon industry-accepted standards.

3+ years of consulting experience in SOC, security engineering, SIEM administration, or and incident management serving large, multinational organizations.

Knowledge or certification in the MITRE ATT&CK framework.

Former professional services and consulting experience preferred.

Experience managing a team of consultants and large engagements.

Hands-on experience with SIEM engineering or management.

Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Vulnerability Management, Threat Intelligence and Hunting platforms.

Former experience with Security Operations or Cyber Defense Operations.

Demonstrates a track record in strengthening existing and developing new client relationships.

Knowledge of command-line interfaces or scripting tools in security tools is a plus.

Ability to perform travel requirements as needed to meet business demands (on average 30%)

Identified ability to grow into a valuable contributor to the practice and, specifically:

• have an external presence via public speaking, conferences, and/or publications
• have credibility, executive presence, and gravitas
• be able to have a meaningful and rapid delivery contribution
• have the potential and capacity to understand all aspects of the business and an excellent understanding of PANW products
• be collaborative and able to build relationships internally, externally, and across all PANW functions, including the sales team

Bachelor's Degree in Information Security, Computer Science, Digital Forensics, Cyber Security, or related degree, OR equivalent years of professional experience to meet job requirements and expectations