Professional Services Consultant

As one of the most established cybersecurity companies in the world, we at NetWitness are dedicated to helping our customers and partners protect their organizations from cyberattacks. Our products and incident response services are used by large enterprises, governments, and militaries for incident response and threat hunting.

We are seeking a candidate with in-depth industry knowledge of the business environment and technical solutions to assist our customers in gaining market share and increasing operational efficiencies. The role involves providing technical and consultative leadership on complex engagements, focusing on specific industries or service offerings.

Responsibilities

• Provide technical and consultative services on NetWitness solutions across various complex projects.
• Conduct workshops, analyze requirements, develop solution designs and recommendations, document processes, and deliver training on NetWitness solutions.
• Collaborate closely with project managers, team members, and customers to ensure smooth project implementation and transition.
• Deliver services independently and as part of a team, working with sales, other personnel, and clients.
• Manage multiple work streams on complex projects, define and produce deliverables, and adhere to approved methodologies, margins, planning, and SOW requirements.
• Lead quality assurance activities, including technical reviews, and ensure proper escalation and change control procedures are followed.
• Possibly manage or serve as the technical lead on small to medium projects, understanding customer challenges and providing strategic solutions.
• Analyze large datasets, create documentation, and produce quality work products to ensure customer satisfaction.
• Maintain activity and progress reports, keep stakeholders informed, and complete end-of-project documentation.
• Develop detailed project plans within project management standards, review SOWs, and categorize requirements.

Technical Responsibilities

• Assist customers in enhancing their threat hunting and detection capabilities.
• Track threat actors and their TTPs.
• Identify threat actor groups and their techniques, tools, and processes.
• Provide input on cybersecurity best practices related to threat intelligence, hunting, and analysis using NDR, EDR, and SIEM technologies.
• Develop detection content and use cases within the NetWitness platform.
• Create advanced queries and alerts to detect adversary actions.
• Design dashboards and reports to identify threats and suspicious activities.
• Assess visibility gaps and recommend next steps.
• Support customers in increasing visibility and detection, collaborating with incident response teams.
• Contribute to sales project scoping and provide technical guidance.
• Assist in developing training content, knowledge checks, and assessments.
• Participate in lab and content quality assurance activities.
• Maintain instructor documentation, including visuals, notes, questions, and tips.
• Assist in lab use-case development and deployments/upgrades.
• Deliver webinars and participate in customer training events as needed.

Required Experience / Qualifications

• Understanding of logging mechanisms for network, security solutions, servers, and databases.
• Good knowledge of networking and security infrastructure.
• Ability to detail data flow in network topologies.
• Strong communication skills, including verbal, written, listening, and presentation abilities.
• Analytical and problem-solving skills.
• Proficiency in differentiating logs, events, packets, and incidents.
• Knowledge of collection methodologies such as Syslog, SNMP, ODBC, LEA, FTP, SFTP.
• Awareness of current threats, security trends, and policies.
• Excellent presentation and facilitation skills.
• Professional proficiency in English (spoken and written).
• Federal security clearance is an advantage.