Vigilance Proactive Services Consultant

About Us:

SentinelOne is defining the future of cybersecurity through our XDR platform that automatically prevents, detects, and responds to threats in real-time. Singularity XDR ingests data and leverages our patented AI models to deliver autonomous protection. With SentinelOne, organizations gain full transparency into everything happening across the network at machine speed – to defeat every attack, at every stage of the threat lifecycle. 

We are a values-driven team where names are known, results are rewarded, and friendships are formed. Trust, accountability, relentlessness, ingenuity, and OneSentinel define the pillars of our collaborative and unified global culture. We're looking for people that will drive team success and collaboration across SentinelOne. If you’re enthusiastic about innovative approaches to problem-solving, we would love to speak with you about joining our team!

About the Team:
SentinelOne’s Vigilance Digital Forensic & Incident Response (DFIR) team conducts digital forensic investigations, threat hunting operations, and proactive services for global clients. Our proactive and reactive services include incident readiness assessments, table-top exercises, purple-team activities, full-breach investigation, malware analysis, and hunting operations. The selected candidate will be an experienced educator of cyber-security principles and processes as well as an expert in the incident response life-cycle. The Proactive services lead will build creative and engaging opportunities for our customers to utilize retainer hours which are purchased as a part of their VigilancePro service. While this role does not require experience in incident response investigations, a desire to learn and support the DFIR team when necessary is required. 

Responsibilities:

• Engage customers world-wide by providing a menu of proactive services which include: table-top exercises, capture the flag events, purple-teaming, and platform training in deep visibility tactics for incident response. 
• Be a natural educator able to communicate both on a deeply technical and executive level. 
• Accountable to ensure excellence in every engagement, to include: scoping, engagement preparation, reporting, lessons learned, and all client communication.
• Communicate annually with customers to provide security reviews of their platform configurations and recent threats.
• Contribute to investigations where and when possible.
• Become a subject matter expert for EDR-driven incident response. 
• Provide detailed and impactful deliverables, to include lessons-learned and security improvement recommendations.
• Adopt and follow our core values amongst the team: 
• Trust – We earn our client’s trust via technical expertise and a customer-first mindset.
• Accountability – Every team member contributes to our group success via diligently fulfilling their assigned duties.
• Collaboration – The Vigilance DFIR team works closely together and with our threat intelligence, research, MDR, and product teams to make every engagement a success.
• Relentlessness – We will leave no stone unturned to provide outstanding service and fulfill our clients needs.
• Ingenuity – If no tool exists to enable our investigations and hunts, then we will create one.  There is always a way to improve existing methodologies.
• Community - The Vigilance team supports each other as we grow and improve ourselves and our service.

Required Knowledge & Experience:

• 2+ years of hands-on consulting experience in proactive services or security awareness training.
• An ideal candidate would have notable speaking and publications in the industry and or be an active participating member within the industry.
• Evident self-starter with intellectual curiosity and the ability to adapt to change.
• Experience with EDR/XDR platforms (SentinelOne preferred).
• Experience or knowledge of conducting endpoint based threat hunting (compromise assessments).
• Scripting ability (Python preferred).

#LI-AH1

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles.