×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Consultant, DFIR, Reactive Services; Unit - Remote

Remote / Online - Candidates ideally in
Santa Clara, Santa Clara County, California, 95053, USA
Listing for: Palo Alto Networks
Remote/Work from Home position
Listed on 2026-01-04
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 102000 - 139500 USD Yearly USD 102000.00 139500.00 YEAR
Job Description & How to Apply Below
Position: Consultant, DFIR, Reactive Services (Unit 42) - Remote

Consultant, DFIR, Reactive Services (Unit 42) – Remote

Our Mission

At Palo Alto Networks® everything starts and ends with our mission:
Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

Who We Are

This role is remote, but distance is no barrier to impact. Our hybrid teams collaborate across geographies to solve big problems, stay close to our customers, and grow together. You will be part of a culture that values trust, accountability, and shared success where your work truly matters.

Job Description

Your Career

This role is client-facing and requires the Consultant to produce deliverables based on reactive services client engagements. The Consultant will work directly with multiple customers and key stakeholders (Admins, C‑Suite, etc.) to lead incident response incidents and guide clients through the engagement from start to finish.

Your Impact

  • Perform reactive incident response functions including host‑based analysis of Windows, Linux and Mac OS X systems to identify indicators of compromise (IOCs).
  • Examine firewall, web, database and other log sources to identify evidence and artifacts of malicious and compromised activity.
  • Investigate data breaches leveraging forensics tools (Encase, FTK, X‑Ways, SIFT, Splunk and custom Unit 42 investigation tools) to determine the source of compromises and malicious activity in client environments.
  • Serve an active role on Unit 42 incident‑response engagements – guiding clients through digital forensics investigations, containment of security incidents and providing guidance on tactical remediation recommendations.
  • Ability to perform light travel requirements as needed to meet business demands (on average 30%).

Qualifications

Your Experience

  • 2+ years of incident response or digital forensics experience with a passion for cybersecurity.
  • Proficiency with host‑based forensics and data breach response.
  • Experience with EnCase, FTK, X‑Ways, SIFT, Splunk, Volatility, Wire Shark, TCPDump and open‑source forensic tools.
  • Ability to grow into a valuable contributor to practice, including:
  • Having an external presence via public speaking, conferences and/or publications.
  • Having credibility, executive presence and gravitas.
  • Being able to deliver meaningful and rapid contributions.
  • Having the potential and capacity to understand all aspects of the business and an excellent understanding of PANW products.
  • Being collaborative and building relationships internally, externally and across all PANW functions, including the sales team.
  • Incident Response Consulting is highly preferred.
  • Bachelor’s Degree in Information Security, Digital Forensics, Cyber Security, Computer Science, related field, or equivalent experience required.

Additional Information

The Team

Unit 42 Consulting is Palo Alto Network's security advisory team. Our vision is to create a more secure digital world by providing the highest quality incident response, risk management and digital forensics services to clients of all sizes. Our team is composed of recognized experts and incident responders with deep technical expertise and experience in investigations, data breach response, digital forensics and information security.

With a highly successful track record of delivering mission‑critical cybersecurity solutions, we are experienced in working quickly to provide an effective incident response, attack readiness and remediation plans with a focus on long‑term support to improve our clients’ security posture.

Compensation Disclosure

The compensation offered for this position depends on qualifications, experience and work location. For candidates who receive an offer at the posted level, the starting base salary (for non‑sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between $102,000 – $139,500 / YR. The offered compensation may also include restricted stock units and a bonus. A…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search