Technical Support Engineer - Threat Specialist

Palo Alto Networks Inc. Reston , VA 20190

Posted 1 week ago

Our Mission

At Palo Alto Networks everything starts and ends with our mission: protecting our way of life in the digital age by preventing successful cyberattacks. It's not a small goal. It isn't simple either, but we aren't in this for the easy answer. As a company with a foundation in challenging the way things are done, we're looking for innovators with a dedication to best. In return, your career will have a tangible impact one that's working toward technology that affects every level of society.

Our mission doesn't happen by treading softly no, it happens by defining an industry. It means building products that haven't been thought of. It means selling products with a solutions mindset. It means supporting the infrastructure of a company that moves at an incredible speed intentionally to stay ahead of the world's next cyberthreat.

Your Career

You will provide post sales technical support to Palo Alto Networks End User Customers and Partners via phone, e-mail and web. A strong, deep understanding of the dynamic and evolving threat landscape is required to diagnose and solve complex technical issues related to threat mitigation and response. Regularly updating support cases to record progress of calls in call tracking system and documenting technical solutions and product information in the knowledge base is required. Work to reproduce customer issues and qualify escalations. Work with Development, Sales, QA and Marketing to build a positive customer experience.

Your Impact

  • Provide Technical Support to customers and partners

  • Provide configurations, troubleshooting and best practices to customers

  • Managing support cases to ensure issues are recorded, tracked, resolved, and follow ups are done in a timely manner

  • Provide fault isolation and root cause analysis for threat related issues

  • Publish Technical Support Bulletins and other technical documentation in the Knowledge Base

  • Travel may be required to customer sites in the event of a critical situation to expedite resolution

  • Provide on-call support 24x7 on an as needed basis

  • Technical resource for all threat related products and features of the Palo Alto Networks product line

  • Collaborate with engineering and product management to resolve product defect issues in a timely manner

Your Experience

  • BS/MS or equivalent experience required

  • 5+ years of related experience

  • Expert level knowledge of the threat landscape, technologies, and techniques; knowledge of malware and exploit behaviors, zero trust network model

  • Security role experience, such as handling of malware responses

  • Firewall administration

  • Excellent written and verbal communication skills

  • Wireshark/TCPDump packet capture troubleshooting specifically with HTTP/SSL/SMB

  • Linux familiarity

  • Windows OS functionality (debugging, how applications make calls, registry editing)

  • Expert knowledge in TCP/IP, HTTP, PKI & SSL, intrusion detection/prevention

  • High level knowledge in regular expressions and evasion/obfuscation techniques, URL filtering

  • Virtualization experience (vsphere, virtualbox, hyper-v, etc)

  • Programming experience, shell/perl/python scripting, understanding of malnets, security clearance

The Team

Our technical support team is critical to our success and mission. As part of this team, you enable customer success by providing support to clients after they have purchased our products. Our dedication to our customers doesn't stop once they sign it just evolves. Our technical team provides the behind-the-scenes support to meet our customer's needs. As threats and technology evolve, we stay in step to accomplish our mission. You'll be involved in implementing new products, transitioning from old products to new, and will fix integrations and critical issues as they are raised in fact, you'll seek them out to ensure our clients are safely supported. We fix and identify technical problems, with a pointed focus of providing the best customer support in the industry.

We're a fast-growing, immensely successful organization because of our people and products (built and supported by our people). We work the frontlines against cyberthreats and attacks, protecting every day transactions in the digital environment. It means we're good at scaling quickly to new threats, get fulfillment from resolving new problems, and think about things just plain differently.

Our Commitment

We're trailblazers that dream big, take risks, and challenge cybersecurity's status quo. It's simple: we can't accomplish our mission without diverse teams innovating, together. To learn more about our dedication to inclusion and innovation, visit our Life at Palo Alto Networks page and our diversitywebsite.

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

Additionally, we are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or an accommodation due to a disability or special need, please contact us at

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Technical Threat Intelligence Researcher


Posted 2 weeks ago

VIEW JOBS 3/5/2019 12:00:00 AM 2019-06-03T00:00 FireEye is the leader in intelligence-led security-as-a-service. Working as a seamless, scalable extension of customer security operations, FireEye offers a single platform that blends innovative security technologies, nation-state grade threat intelligence, and world-renowned FireEye Mandiant® consulting. With this approach, FireEye eliminates the complexity and burden of cyber security for organizations struggling to prepare for, prevent, and respond to cyber attacks. FireEye has over 7,000 customers across 67 countries, including more than 45 percent of the Forbes Global 2000. FireEye Mandiant Consulting is seeking a Technical Threat Intelligence Researcher with analytic capabilities and a proven record of identifying and tracking threats. The successful candidate is a seasoned researcher who has knowledge of state-sponsored cyber espionage along with a technical understanding of the tools, techniques and procedures used by these threat actors. A Technical Threat Intelligence Researcher is expected to work with minimal guidance against a broad set of research objectives to handle a variety of complex assignments and situations and must demonstrate full knowledge of fundamental concepts across a wide range of intelligence disciplines. Within established priorities and deadlines, she/he will exercise independent judgment in selecting and applying appropriate work methods, procedures, techniques and practices. We encourage giveback to the community and strongly support sharing of expertise by authoring whitepapers and speaking at conferences. FireEye Mandiant Consulting is looking for talented and cleared individuals like you for our Government Recruiting, Expertise, and Talent Development (GREAT) Program. As part of this program you will receive in-depth training and hands-on experience from leaders in the cybersecurity space. After serving in and gaining valuable skills from our commercial business, you will be have the opportunity to operate in defense of national security and utilize your expertise for dedicated government service. Responsibilities: * Gather raw intelligence from sensors, incident response engagements, and other sources to condense into customer reports * Automate tracking and discovery of threats leveraging internal and external data sources * Analyze malware, extracting relevant host and network-based indicators (HBI/NBI) malware samples * Investigate impact to customers to determine if new detections or compromise notifications are necessary * Recommend computer network defense (CND) actions to counter adversary activity * Correlate collected intelligence, in order to build upon a larger knowledge base of tracked threat activity * Respond to prioritized research requests and distill key findings in order to enable production of finished intelligence * Correlate data collected during hunt or incident response engagements against FireEye's intelligence repository * Utilize Mandiant, FireEye, or customer technology to conduct investigations and example endpoint and network-based sources of evidence * Recognize and codify attacker tools, tactics, and procedures (TTPs) in indicators of compromise (IOCs) that can be applied to current and future investigations * Develop scripts, tools, or methodologies to enhance the customer's and Mandiant's incident investigation process * Develop comprehensive and accurate reports and presentations for both technical and executive audiences leveraging multiple intelligence sources * Prepare predictive analysis reports detailing threat groups that are likely to target a specific customer, including their TTPs and motives * Provide training and mentorship, present to small groups, and speak in public in venues such as conferences Requirements: * Minimum of 2-5 years of comparable experience * Minimum TOP SECRET security clearance, TOP SECRET / SCI preferred * Experience identifying, analyzing and interpreting trends or patterns in complex data sets * Experience conducting analysis of electronic media, packet capture, log data, and network devices in support of intrusion analysis or enterprise level information security operations * Experience conducting static and dynamic malware analysis on a variety of platforms (Windows, Linux, Mobile, MacOS) * Experience with programming and scripting languages (e.g., Python, C++, C#) and exposure to back-end technologies (e.g., MySQL, Elastic Search) * Strong understanding of communication protocols (HTTP, DNS, TCP/UDP) as well as the various techniques utilized by malware within on operating system for persistence and data collection * Strong understanding of attacker methodology and methodologies used to hunt for adversarial activity * Ability to deliver technical training, advisory, and mentorship on complex topics in a classroom or operational environment Additional Qualifications: * Bachelor's degree in a technical field * Fundamental knowledge of current events and international politics * Ability to think critically and properly qualify analytic assessments * Ability to recognize and appropriately handle sensitive data * Ability to interface and establish rapport with internal operations * Ability to work with little direct oversight * Ability to document and explain technical details in a concise, understandable manner All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. Fireeye Reston VA

Technical Support Engineer - Threat Specialist

Palo Alto Networks Inc.