Our Mission At Palo Alto Networks®, we’re united by a shared mission—to protect our digital way of life. We thrive at the intersection of innovation and impact, solving real-world problems with cutting-edge technology and bold thinking. Here, everyone has a voice, and every idea counts. If you’re ready to do the most meaningful work of your career alongside people who are just as passionate as you are, you’re in the right place. Who We Are In order to be the cybersecurity partner of choice, we must trailblaze the path and shape the future of our industry. This is something our employees work at each day and is defined by our values: Disruption, Collaboration, Execution, Integrity, and Inclusion. We weave AI into the fabric of everything we do and use it to augment the impact every individual can have. If you are passionate about solving real-world problems and ideating beside the best and the brightest, we invite you to join us! This role is remote, but distance is no barrier to impact. Our hybrid teams collaborate across geographies to solve big problems, stay close to our customers, and grow together. You will be part of a culture that values trust, accountability, and shared success where your work truly matters. Job Summary A Cortex Domain Consultant is a subject matter expert for the Cortex portfolio. Their primary function is to provide deep, product-specific technical expertise for qualified sales opportunities. They play a pivotal role in defining technical solutions that secure a customer's critical business imperatives and evangelize our industry-leading SecOps solutions. The DC role is aligned to a specific domain—in this case, Cortex—and operates in a flexible capacity, being brought into opportunities based on technical needs. Key Responsibilities Cortex Domain Consultants are responsible for a range of activities focused on securing the technical win for their specific product area. Core Responsibilities include: - Advanced Discovery and Qualification: Leading in-depth discovery sessions to identify client needs. - Solutioning and Architecture: Architecting solutions to help customers improve their security posture, detect threats, and remediate issues. - Product-specific Pitch & Demo: Delivering advanced, product-focused pitches and demonstrations that showcase the unique value proposition. - Running Proof of Value (POV): Scoping and leading POV projects for prospective customers to ensure a technical win. - Securing the Technical Win: Holding responsibility for achieving the technical win for their specific product. - Scoping & Bill of Materials (BOM) Validation: Reviewing and validating the BOM to ensure all components are accurate. - Handoff to Post-Sales (GCS): Ensuring a smooth transition from the pre-sales to post-sales teams. - RFI/RFP Support: Assisting with responses to RFIs and RFPs, serving as the main technical point of contact for the Cortex portfolio. Collaboration and Engagement Model The way a DC engages depends on the customer segment. - For large accounts (e.g., Strategic, Majors, Enterprise): The Solutions Consultant (SC) leads the account-based pursuits and partners with the DC for deep, product-specific expertise on qualified opportunities. The SC is accountable for the full customer lifecycle, while the DC is brought in for their specialized knowledge. - For smaller accounts (e.g., Commercial, Regional): The Account Executive (AE) owns the business and technical relationship. The DC partners directly with the AE to provide technical expertise and guidance on qualified opportunities. In this "opportunity-centric" model, the DC has technical accountability and responsibility on the opportunity. Required Expertise and Capabilities As subject matter experts, Cortex DCs are expected to have deep technical knowledge in the SecOps domain. Technical Knowledge Areas: - SecOps (Required) - SIEM (Security Information and Event Management) - Incident Response and EDR/XDR - Threat Management - SOAR (Security Orchestration, Automation, and Response) In addition to technical skills, all DCs are expected to be proficient in foundational areas such as building trust, demonstrating awareness of customer challenges, and showing resilience and flexibility when problem-solving. Qualifications Compensation Disclosure The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/com-missioned roles) is expected to be the annual range listed below. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found here. - /yr Our Commitment We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together. We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com. Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics. All your information will be kept confidential according to EEO guidelines. Is role eligible for Immigration Sponsorship? No. Please note that we will not sponsor applicants for work visas for this position.

Title: Senior Cyber Security Operations Engineer Location: Hampton-NH Job Description: Full-Time Regular Full-TimeProfessional Hampton-NH, Hampton, NH, US Requisition ID: 1818 Salary Range:$108,301.00 To $121,839.00 Annually Position is available to work in a hybrid work from home capacity. The manager will discuss this in more detail at time of interview. Candidates will need to be local to the Hampton area. If not, they will need to relocate to the area to be considered for this role. Our Company More than a utility company, Unitil provides energy for life. Our work helps keep homes comfortable, businesses thriving and communities connected. Unitil is an investor-owned public utility proudly serving Maine, Massachusetts and New Hampshire. We are dedicated to delivering energy to our customers safely and reliably. Unitil is committed to creating an inclusive environment that welcomes and values the differences among all of our employees, customers, suppliers and the communities in which we live and conduct business. The continued success of Unitil is enhanced through initiatives that promote diversity and value our employees.   Take advantage of a comprehensive benefits package. Unitil offers competitive salaries, a consumer-driven health plan, dental and vision coverage, flexible work, company-paid holidays, a, robust, highly competitive retirement plan and educational assistance. *Note: Benefit offerings may differ between union and non-union employee groups Position Purpose Utilizes security software and practices to secure systems. Develops, tests and validates solutions and/or processes to remediate exploitable conditions on servers and other infrastructure assets. Implements software patches and configuration changes to address system vulnerabilities. Assists in the monitoring of IT compliance with SOX, NERC/CIP, Mass. Privacy and other legal and regulatory authorities. Provides back up for cyber team members, as needed. Principal Accountabilities % of time End Results 60% Data Security - Perform activities that ensure the security of corporate data, privacy, and record confidentiality - Participate in periodic risk assessments, to ensure compliance with security standards - Manage processes to assess cyber risk, and facilitate the application of fixes, patches and updates. Coordinate with IT Infrastructure the installation of manual patching of servers - Implement compliance activities with IT Policies, procedures and tests including the Written Information Security, Asset Management, Disaster Recovery, Change Management, Problem Management, and Security Plans   20% Compliance - Assist in coordination of cyber drills, exercises and assessments with internal and external stakeholders - Identifies security risks and exposures, and participate in response activities - Provide reporting needed for IT Control monitoring and responses to external audits, external penetration tests and vulnerability assessments. Fulfill audit requests by providing supporting evidence. - Evaluates vendor security assessments and assists in managing the program - Report on compliance activities related to IT NERC, SOX, MA Privacy, PCI and other IT compliancy programs for the company.  - Follow IT policies and procedures to ensure the security of information assets against unauthorized or accidental modification, destruction, or disclosure. Work with Application Owners to obtain proper documentation for system/application changes  15% Identity, Credential & Access Management - Work with Application Owners to define critical security groups and process for maintaining ‘least privileged’ access to systems - System access security administration of critical financial and key critical business systems 5% Assist the Director of Information Security, and other Subject Matter Experts, in the evaluation and implementation of tools, policies and configurations to improve data security and business controls. Research new technologies and/or processes that will assist in achieving these goals. Qualifications - Bachelor’s Degree, Information Systems, Computer Science, Information Security or related field (Desired  - 7-10 years IT security or information security experience. - Proven ability to engage with Senior Management and regulators. - Knowledge of technical infrastructure, networks, databases and systems. - Knowledge and related experience in IT security issues and techniques. - Effective communication skills, focusing on presentation of technical information. - Strong analytical skills and attention to detail.  - Advanced technical degree and/or Security Certifications preferred.   Unitil is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.

• SOC Operations Support: Monitor security alerts and events within the SOC, contributing to real-time threat detection and response. Participate in incident triage, investigation, and resolution to ensure minimal downtime and data integrity. • Cybersecurity Configuration Management: Design, implement, and maintain secure configurations for hardware, software, and cloud environments. Ensure compliance with standards such as ISO 27001, NIST, or Singapore's Cybersecurity Act. • Troubleshooting and Problem Resolution: Diagnose and resolve complex security issues, including misconfigurations, unauthorized access attempts, and system anomalies. Use debugging tools and methodologies to root-cause problems and prevent recurrence. • Team Collaboration and Training: Work closely with SOC analysts and other departments to enhance overall security posture. Provide guidance and training to junior staff on cybersecurity engineering. • Continuous Improvement: Evaluate and recommend new tools, processes, and technologies to improve vulnerability scanning efficiency and SOC effectiveness. Participate in tabletop exercises and simulations to refine response protocols

Our Mission Our mission is to SAVE AND IMPROVE LIVES BY EMPOWERING HEALTHCARE CONSUMERS. Come be part of remarkable. Overview How you can make a difference The Cyber Defense Operations Team Principal (CDOT) serves as the senior technical authority within the Cyber Defense Operations Team, responsible for ensuring the accuracy, quality, and threat‑informed rigor of all escalations and investigations. This role leads the review of high‑risk activity across CDOT Escalations, Insider Threat, and Cloud/AI Response queues, and ensures alignment with the organization’s detection, response, and visibility strategy. The Principal partners closely with ATR, Cyber Defense Engineering, and the Cyber Visibility Principal to strengthen detection fidelity, improve operational workflows, and drive continuous improvement across the Cyber Defense ecosystem. What you’ll be doing Operations - Lead validation of all CDOT escalations to ensure accuracy, completeness, and threat‑informed decision‑making. - Own triage oversight for the CDOT Escalations, Insider Threat, and Cloud/AI Response queues, ensuring high‑risk activity receives appropriate scrutiny and routing. - Coordinate response actions across CDOT, ATR, IR, and partner teams for high‑severity events. - Ensure sensitive investigations follow legal, HR, and IR requirements. Detection - Validate detection fidelity across traditional, cloud, and AI‑driven signals, ensuring alignment with ATR’s threat‑informed detection strategy. - Review cloud‑specific detections (Azure AD, AWS, GCP, SaaS) for accuracy, coverage, and alignment to cloud attack paths. - Validate AI‑generated detections and behavioral analytics for accuracy, bias, and operational usefulness. - Identify and escalate visibility gaps—including cloud telemetry, identity logs, and AI anomaly signals—to the Cyber Visibility Principal. - Partner with Cyber Defense Engineering and the Visibility Principal to refine detection logic, improve signal quality, and build new controls where systemic issues are identified. Response - Lead triage and validation for cloud and AI‑driven escalations, including identity compromise, privilege escalation, token abuse, and anomalous workload activity. - Serve as the escalation authority for determining when events require ATR deep‑dive analysis or CIRP activation. - Ensure escalations involving cloud or AI signals include complete investigative context and meet elevated scrutiny standards. Playbooks - Ensure operational playbooks accurately reflect CDOT response procedures, including cloud and AI‑driven scenarios. - Collaborate with ATR, Cyber Defense Engineering, and the Visibility Principal to develop new playbooks where gaps exist or new capabilities emerge. - Validate SOAR playbooks for correctness, safety, and alignment with escalation thresholds. - Identify automation opportunities and partner with Cyber Defense Engineering to build safe, reliable automated controls. Quality - Perform regular QA reviews of CDOT investigations, escalations, and triage decisions to track and improve CDOT performance. - Define and uphold standards for investigative documentation, evidence handling, and escalation quality. - Provide technical coaching to analysts to strengthen investigation quality, hypothesis development, and threat‑informed reasoning. Threat Alignment - Maintain alignment between CDOT detection priorities and ATR’s threat‑informed roadmap, including cloud‑focused and AI‑enabled threats. - Ensure CDOT workflows reflect current adversary tradecraft and MITRE ATT&CK coverage (enterprise, cloud, and emerging AI‑related techniques). - Surface systemic detection, tooling, or workflow gaps to ATR, CDE, and Detection Engineering. Metrics & Continuous Improvement - Define and track metrics for detection quality, false‑positive reduction, cloud/AI detection accuracy, and escalation fidelity. - Provide leadership with insights on recurring detection failures, operational bottlenecks, and systemic issues. - Lead post‑incident detection reviews to ensure lessons learned translate into improved cloud and AI detection logic. Partnership - Partner with Cyber Defense Engineering and the Visibility Principal to identify and escalate opportunities for improvement in detection logic, telemetry coverage, and automation. - Collaborate with ATR, CDE, and Detection Engineering to build new controls, refine detection content, and improve operational workflows. - Support cross‑team coordination to ensure high‑severity issues receive appropriate leadership attention. What you will need to be successful - 7+ years of experience in Security Operations, Incident Response, Threat Detection, or related cyber defense functions. - Deep expertise in cloud security (Azure, AWS, GCP) and identity‑centric attack patterns. - Strong understanding of AI‑driven detection models, behavioral analytics, and anomaly‑based detection. - Demonstrated ability to lead complex investigations and validate high‑risk escalations. - Strong knowledge of MITRE ATT&CK (enterprise and cloud matrices). - Experience with SIEM, SOAR, EDR, and cloud telemetry sources. - Excellent communication skills, with the ability to translate technical findings into clear, actionable guidance. Preferred - Experience partnering with detection engineering, threat intelligence, or cyber visibility teams. - Experience developing operational playbooks and automation workflows. - Prior experience in a Principal, Lead Analyst, or senior escalation role within a SOC or Cyber Defense team. - Relevant certifications (GCIA, GCED, GCTI, GCIH, Azure/AWS security certifications, etc.) #LI-Remote This is a remote position. Salary Range $137,500.00 To $182,000.00 / year Benefits & Perks The actual compensation offer is determined based on job-related knowledge, education, skills, experience, and work location. This position will be eligible for performance-based incentives as part of the total compensation package, in addition to a full range of benefits including: - Medical, dental, and vision - HSA contribution and match - Dependent care FSA match - Uncapped paid time off - Paid parental leave - 401(k) match - Personal and healthcare financial literacy programs - Ongoing education & tuition assistance - Gym and fitness reimbursement - Wellness program incentives Onboarding & Travel This is a remote role, with an in-person onboarding training component. New team members must participate in Trailhead, HealthEquity’s immersive onboarding experience Trailhead is designed to foster meaningful connections, support your integration into the organization, and equip you with a strong understanding of our business. Trailhead participation is a key expectation of this role. Trailhead is held onsite at our headquarters once per quarter. HealthEquity covers all required travel and accommodations. This role may begin with a virtual, self-paced onboarding experience, followed by a mandatory onsite Trailhead session at a later date. HealthEquity is committed to providing reasonable accommodations to team members with qualifying disabilities. Should you be selected for this role and require an accommodation, we will put you in touch with our Benefits Team so you can begin the accommodation request process. Why work with HealthEquity HealthEquity has a vision that by 2030 we will make HSAs as wide-spread and popular as retirement accounts. We are passionate about providing a solution that allows American families to connect health and wealth. Join us and discover a work experience where the person is valued more than the position. Click here to learn more. You belong at HealthEquity! HealthEquity, Inc. is an equal opportunity employer, and we are committed to being an employer where no matter your background or identity – you feel welcome and included. We ensure equal opportunity for all applicants and employees without regard to race, age, color, religion, sex, sexual orientation, gender identity, national origin, status as a qualified individual with a disability, veteran status, or other legally protected characteristics. HealthEquity is a drug-free workplace. For more information about our EEO policy, or about HealthEquity’s applicant disability accommodation, drug-free-workplace, background check, and E-Verify policies, please visit our Careers page. HealthEquity uses Microsoft Copilot to transcribe screening interviews between candidates and their direct Talent Partner for note taking and interview summaries. By scheduling a screening interview with us, you consent to Microsoft Copilot’s AI technology recording and transcribing your interview with your Talent Partner. This information will be reviewed for accuracy and then used by HealthEquity to summarize the interview, ensure accuracy, and facilitate our hiring process. We take privacy seriously. You have the option to opt out. If you wish to opt out of this Microsoft Copilot transcription, please notify your Talent Partner in advance of the interview. If we do not receive an opt-out request from you, we will assume that you consent to the use of Microsoft Copilot. At HealthEquity, our goal is to save and improve lives by empowering healthcare consumers. This shared purpose inspires everything we do, including how we approach hiring. Our process is designed to get to know the real you: your skills, experiences, and potential to make a difference. We value honesty, originality, and the courage to do the right thing, even when it is not the easiest path. Showing up as your authentic self reflects these values and helps us build something truly remarkable together. As AI is becoming a common tool throughout the application process, we want to be clear about its appropriate use at HealthEquity. Using AI to support resume writing, research, or interview preparation is perfectly acceptable, provided the content is accurate and genuinely represents your qualifications and skills. For other key parts of our interview process, however, it is important that the ideas, communication, and work you share reflect your own voice, experiences, and thinking. We ask that you participate in our live interviews and complete any assessments without AI assistance unless instructions explicitly indicate otherwise or a specific exception is discussed and approved in advance. This approach ensures fairness, celebrates your individuality, and allows your authentic perspective to shine. Behaviors that do not align with these guidelines may result in disqualification from the hiring process or termination of employment if later discovered. We appreciate your understanding and look forward to learning about the unique contributions only you can bring to HealthEquity. HealthEquity is committed to your privacy as an applicant for employment. For information on our privacy policies and practices, please visit HealthEquity Privacy.