Principal Consultant

Get AI-powered advice on this job and more exclusive features. At Palo Alto Networks, everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are. Who We Are We take our mission of protecting the digital way of life seriously. We are relentless in protecting our customers and believe that the unique ideas of every team member contribute to our collective success. Our values were crowdsourced by employees and are brought to life through each of us every day — from disruptive innovation and collaboration, to execution. We foster an environment of integrity and inclusion. As a team member, you will help shape the future of cybersecurity. We work fast, value ongoing learning, and respect each individual’s uniqueness. Our development and wellbeing programs are designed to support you, including FLEXBenefits, mental and financial health resources, and personalized learning opportunities. Job Description The Principal Consultant on the Offensive Security team focuses on assessing and challenging the security posture across a portfolio of clients. You will utilize various tools, lead client engagements, and advocate for cybersecurity best practices, providing strong recommendations. Your Impact Perform red and purple team assessments, assumed breach assessments, ransomware readiness reviews, threat analysis, and social-engineering assessments. Develop scripts, tools, and methodologies to automate and streamline processes, such as Terraform, Ansible, and custom payload generators. Conduct cloud penetration testing on AWS, GCP, Azure, containers, and other Paa S and Saa S platforms to identify and exploit vulnerabilities. Lead scoping and overview discussions with clients, articulating testing approaches to technical and executive audiences. Define processes and procedures for assignments, leading technical workstreams on complex engagements. Manage client communications, ensuring prompt responses to technical inquiries. Oversee engagement delivery, manage project timelines and budgets, and maintain high quality standards. Mentor and coach new team members, delegate tasks, and provide feedback. Travel as needed to meet business demands. Qualifications Your Experience 8+ years of cybersecurity experience focusing on Red/Purple Teaming. Deep understanding of malicious software (malware, trojans, rootkits). Ability to craft and modify exploits manually. Experience creating bypasses and weaponizing payloads for social engineering. Proven evasion techniques experience. Strong knowledge of Active Directory and attack killchain. Experience with penetration testing and troubleshooting Linux, Windows, and cloud platforms (AWS, GCP, Azure). Scripting skills in Perl, Python, Ruby, Bash, C/C++, C#, or Java. Ability to interpret malicious code and antivirus results. Experience with threat-led frameworks like CORTIE, CBEST, TIBER-EU. Track record of innovation and developing solutions for client needs. Bachelor’s degree in a related field or equivalent experience. Certifications Offensive Security Certified Expert (OSCE) Offensive Security Certified Professional (OSCP) CREST Registered Tester (CRT) GIAC Penetration Tester (GPEN) CREST Certified Attack Simulation Specialist (CCSAS) Additional Information The Team Unit 42 combines threat research with elite security consulting to create an intelligence-driven organization. They provide threat intelligence, help assess readiness, and assist in recovery efforts. Our Commitment We challenge the cybersecurity status quo, value diversity, and are committed to providing reasonable accommodations for individuals with disabilities. Palo Alto Networks is an equal opportunity employer, celebrating diversity and inclusion. All information will be kept confidential according to EEO guidelines. Seniority level: Associate Employment type: Full-time Job function: Consulting Industry: Computer and Network Security #J-18808-Ljbffr