Full-Time
Principal Consultant
Offensive Security
Posted on 9/23/2025
Palo Alto Networks
10,001+ employees
Firewall and cloud security provider
No salary listed
Munich, Germany
Remote
 IT & Security (1) |
|---|
- 8+ years of professional experience with cyber security tools, technologies, and methods focused on Red/Purple Teaming
- Demonstrate a deep understanding of how malicious software works (i.e.malware, trojans, rootkits, etc.)
- Ability to modify known and/or craft custom exploits manually without dependence on consumer tools
- Ability to create bypasses to security tools, and weaponize payloads for delivery on social-engineering engagements
- Demonstrable experience of evasion techniques
- Strong experience with Active Directory and attack killchain
- Experience with penetration testing, administering, and troubleshooting major flavours of Linux, Windows, and major cloud IaaS, PaaS, and SaaS providers (i.e., AWS, GCP, and Azure)
- Experience with scripting and editing existing code and programming using one or more of the following - Perl, Python, ruby, bash, C/C++, C#, or Java
- Ability to read and use the results of mobile code, malicious code, and anti-virus software
- Demonstrable experience of threat-intelligence led red teaming frameworks such as CORIE, CBEST, TIBER-EU
- Track record of championing innovation and improvement initiatives for your area of expertise, identifying emerging trends and technologies and developing leading solutions to address client needs
- Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security, or equivalent years of professional experience or equivalent military experience to meet job requirements and expectations
- Professional industry certifications such as: Offensive Security Certified Expert (OSCE)
- Offensive Security Certified Professional (OSCP)
- CREST Registered Tester (CREST CRT)
- GIAC Penetration Tester (GPEN)
- CREST Certified Simulated Attack Specialist (CCSAS)
- Perform red and purple team assessments (with and without industry regulator oversight), assumed breach assessments (red team engagements with a pre-deployed implant), ransomware readiness reviews (assessing susceptibly to modern ransomware threats), threat analysis and social-engineering assessments
- Develop scripts, tools, and methodologies to automate and streamline internal processes and engagements - Examples include Terraform and Ansible, custom payload generators / loaders
- Conduct cloud penetration testing engagements to assess specific workloads (i.e., AWS, GCP, Azure, containers, or other PaaS and SaaS instances) for vulnerabilities and subsequently attempt to exploit identified weakness after receiving permission from client stakeholders
- Lead scoping and services overview conversations with clients for prospective engagements in area of expertise, presenting with credibility and authority, clearly articulating various testing approaches and methodologies to audiences ranging from highly technical to executive personnel
- Determines processes and procedures to be followed on assignments - On large and complex engagements, lead technical workstreams with guidance and oversight as required
- Leads communications with clients on engagements, including highly technical matters, ensuring client inquiries are responded to promptly
- Ability to lead engagement delivery through to completion, manage engagement economics to deliver projects on time and on budget and uphold high standards of quality
- Mentor and coach new team members and lead by example, demonstrating technical skills and procedures during engagements - Delegate tasks and provide feedback to empower team members to produce high-quality results
- Ability to perform travel requirements as needed to meet business demands
Palo Alto Networks provides hardware, software, and subscription-based security solutions to protect organizations from cyber threats. Its products include network firewalls (Strata), cloud security (Prisma Cloud), and AI-powered security operations (Cortex), which work together to secure on-premises and cloud environments, manage identity and access, and detect threats. The company differentiates itself by offering an integrated, end-to-end security stack that combines hardware, software licenses, and ongoing services across enterprises, SMBs, and government clients. Its goal is to deliver comprehensive protection for networks, data, and applications as organizations move between data centers and cloud environments.
Company Size
10,001+
Company Stage
IPO
Headquarters
Santa Clara, California
Founded
2015
Simplify's Take
What believers are saying
- Next-Generation Security ARR hits $6.30 billion, up 33% year-over-year in Q2 FY2026.
- CyberArk $25B acquisition boosts identity security, driving 17% profit margin.
- Armadin partnership adds AI agentic attack validation to Unit 42 defenses.
What critics are saying
- Zscaler erodes Prisma dominance with faster cloud security revenue growth.
- CyberArk integration fails, causing customer churn in 6-12 months.
- 94x earnings valuation triggers 30% stock drop if growth misses in 3-6 months.
What makes Palo Alto Networks unique
- Strata platform unifies network, cloud, and endpoint security across environments.
- Idira secures human, machine, and AI identities with zero standing privileges.
- Cortex leverages AI for automated threat detection and response operations.
Help us improve and share your feedback! Did you find this helpful?
Benefits
FLEXBenefits
Healthcare
Wellness
Development
Financial: Traditional & Roth 401(k) options
Time Off
Other Perks
Growth & Insights and Company News
6 month growth
↓ -6%1 year growth
↓ -6%2 year growth
↓ -6%Wall Street strategists are viewing recent tech stock volatility as a buying opportunity following a two-week Iran ceasefire. The iShares Expanded Tech-Software Sector ETF has fallen 12% over the past month, despite the S&P 500 rising slightly. Ben Emons of FedWatch noted "a bit of an overreaction", whilst Mark Gibbens of Gibbens Capital said it's "time to jump in". Strategists highlighted opportunities in Palantir Technologies, Palo Alto Networks, and Oracle, despite recent share price declines. Nvidia has dropped from recent highs to trade at 21 times forward earnings. Tiffany McGhee of Pivotal Advisors praised Oracle's cash flow and enterprise contracts, whilst Gradient Investments' Keith Gangl called Palo Alto a rare opportunity to buy quality "on sale". Strategists cautioned that volatility remains, but emphasised AI as a powerful catalyst.
Palo Alto Networks has received a Buy initiation from Benchmark with a $200 price target, based on the company's trajectory towards achieving Rule of 60 profitability status in FY2026 through 22–23% revenue growth and 37% adjusted free cash flow margin. The cybersecurity firm reported Q2 FY2026 revenue of $2.594 billion, beating estimates, with non-GAAP EPS of $1.03 surpassing the 93 cent estimate. Next-Generation Security ARR reached $6.30 billion, up 33% year-over-year. Despite the stock trading down 10.33% year-to-date and below its 200-day moving average, 44 analysts rate it Buy or Strong Buy with a consensus target of $206.97. However, investors should consider the elevated 42x forward P/E valuation and integration risks from pending acquisitions.
Morgan Stanley identified five top cybersecurity stocks after attending the RSA Conference 2026: Microsoft, Palo Alto Networks, CrowdStrike, SailPoint and SentinelOne. The firm believes these companies are well-positioned to benefit from growing AI security demand as businesses deploy AI agents. Microsoft has 1.6 million security customers and a $20 billion revenue run rate, with analyst Keith Weiss setting a $650 price target, implying 80% upside. Analyst Meta Marshall gave Palo Alto Networks a $223 target (50% upside), noting its broad AI portfolio and advantageous position despite a 20% year-to-date decline. CrowdStrike received a $510 target (38% upside) and was upgraded to a top pick based on its strong endpoint franchise and AI-driven security capabilities.
Palo Alto Networks shares rose 5% on Monday to close at $154.35 following news that CEO Nikesh Arora purchased an additional stake worth $10 million in the company. According to a regulatory filing, Arora acquired 68,085 shares on 27 March at prices ranging from $146.87 to $147.48. The cybersecurity firm also unveiled Prisma AIRS 3.0, a new security platform designed to protect the entire agentic AI lifecycle. The product addresses security challenges in AI-powered enterprises by discovering AI agents across cloud environments, assessing risks continuously and providing real-time protection at scale. Palo Alto Networks said the platform enables enterprises to move beyond simply monitoring AI interactions to safely authorising autonomous execution, closing visibility gaps in AI operations.
Palo Alto Networks has received a buy rating from Freedom Capital Markets, which reduced its price target from $230 to $210 whilst maintaining its recommendation. The cybersecurity firm reported strong second-quarter fiscal 2026 results, with earnings of $1.03 per share beating estimates of $0.94, and revenue of $2.6 billion exceeding expectations of $2.58 billion. Freedom Capital attributed the performance to growing demand for cybersecurity platform integration and successful acquisitions of CyberArk and Chronosphere. The company's third-quarter forecast also surpassed expectations, driven by merger and acquisition activity. The analyst raised revenue forecasts but lowered diluted non-GAAP earnings per share estimates, citing the transitional period of merger integration. Palo Alto Networks provides cybersecurity solutions including firewalls, malware protection and cloud security.