Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Palo Alto Networks

Principal Consultant, Cloud DFIR

Palo Alto Networks

Principal Consultant leading cloud-focused incident response and digital forensics for Palo Alto Networks. Working with cross-functional teams to ensure security and guide recovery efforts.

Posted 6/11/2026full-timeRemote • Pennsylvania • 🇺🇸 United StatesLead💰 $151,000 - $208,000 per yearWebsite

Tech Stack

Tools & technologies
AWSAzureCloudCyber SecurityGoogle Cloud PlatformLinuxMacOS

About the role

Key responsibilities & impact
  • Lead cloud-focused incident response and digital forensics engagements.
  • Investigate attacks involving cloud infrastructure, identity compromise, ransomware, data theft, and unauthorized access.
  • Analyze cloud telemetry, including audit logs, IAM activity, network traffic, storage access, containers, and endpoint data.
  • Conduct forensic acquisition and analysis across cloud, hybrid, and enterprise environments.
  • Serve as a technical lead during active investigations, guiding strategy and client communications.
  • Deliver clear findings, executive-ready reporting, and remediation guidance.
  • Support development of cloud investigation methodologies, playbooks, and tooling.
  • Mentor team members and contribute to knowledge sharing across Unit 42.

Requirements

What you’ll need
  • 6–8+ years of experience in DFIR, incident response, cloud security, or related cybersecurity disciplines.
  • 3+ years of hands-on experience securing, operating, or investigating AWS, Azure, or GCP environments.
  • Experience leading investigations involving cloud breaches, ransomware, advanced intrusions, or data compromise incidents.
  • Strong understanding of cloud architecture, IAM, networking, logging, and security controls.
  • Experience analyzing cloud-native telemetry such as AWS CloudTrail, Azure Activity Logs, Microsoft Entra ID, or Google Cloud Audit Logs.
  • Hands-on experience with industry-standard DFIR and investigative tools.
  • Experience investigating Windows, Linux, macOS, cloud workloads, and hybrid environments.
  • Strong client-facing communication and consulting skills.

Benefits

Comp & perks
  • Employee benefits may be found here.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
DFIRincident responsecloud securitycloud architectureIAMnetworkingloggingsecurity controlscloud-native telemetryforensic acquisition
Soft Skills
client-facing communicationconsultingmentoringknowledge sharingleadershipstrategy guidance