Skip to content

Senior Technical Consultant - Network Security Operations

ThinkaheadRemote (US)July 10, 2026
Remote
Full-time
Network Security
Senior · 6+ yrs

AHEAD builds platforms for digital business. By weaving together advances in cloud infrastructure, automation and analytics, and software delivery, we help enterprises deliver on the promise of digital transformation.

At AHEAD, we prioritize creating a culture of belonging, where all perspectives and voices are represented, valued, respected, and heard. We create spaces to empower everyone to speak up, make change, and drive the culture at AHEAD. 

We are an equal opportunity employer, and do not discriminate based on an individual's race, national origin, color, gender, gender identity, gender expression, sexual orientation, religion, age, disability, marital status, or any other protected characteristic under applicable law, whether actual or perceived. 

We embrace all candidates that will contribute to the diversification and enrichment of ideas and perspectives at AHEAD. 

The Senior Technical Consultant is a cybersecurity professional with knowledge around the Extrahop Reveal(x) 360 Platform to support Enterprise Clients.  Responsible for the technical execution of Extrahop deployments with complex configurations and mentoring junior team members. As a Senior Technical Consultant, you will be a key player in implementing deployments from sensor placement through detection tuning, build the dashboards and integrations that turn wire data into decisions, and serve as the technical advisor too.

Responsibilities:

  1. Design and deploy ExtraHop sensor architectures across physical, virtual, and cloud environments, including sensor placement strategy for TAPs, SPAN ports, and VPC traffic mirroring in AWS and Azure
  2. Configure and design packetstores for retention, query performance, and compliance requirements, including sizing decisions for high-throughput environments
  3. Create custom detections and bundles tailored to client environments, moving beyond out-of-box detections to address specific threats and false-positive patterns
  4. Develop custom dashboards in Reveal(x) using metrics, devices, and applications views, translating wire data into views that map to client SOC workflows and executive reporting needs
  5. Build and maintain REST API integrations between ExtraHop and SIEM, SOAR, ticketing, and CMDB platforms, including custom triggers and open data stream configurations
  6. Conduct network visibility assessments for prospective and existing clients, identifying blind spots in east-west traffic, encrypted traffic decryption coverage, and segmentation gaps
  7. Collaborate with clients to optimize and fine tune their deployment and provide guidance to assist with the optimization of the platform.
  8. Act as a technical resource for troubleshooting and resolving complex Extrahop related issues during and post-implementation.
  9. Contribute to project documentation, ensuring clarity and completeness of Solution Designs and As-Built configurations.
  10. Mentor junior AHEAD consultants, sharing your Extrahop knowledge and fostering their technical development.

Qualifications:

  1. 6+ years of hands-on experience with ExtraHop Reveal(x) or Reveal(x) 360 in production environments or similar NDR solutions.
  2. Experience deploying and administering ExtraHop Reveal(x) Enterprise or Reveal(x) 360
  3. Demonstrated experience deploying and tuning ExtraHop sensors, recordstores, and packetstores, including sizing, retention configuration, and performance troubleshooting
  4. Strong grasp of wire data analysis: L2-L7 protocol behavior (TCP/IP, DNS, HTTP, etc), TLS/SSL decryption
  5. Experience building custom detections, bundles, and dashboards beyond default configurations
  6. Proficient in JavaScript and Python scripting for automation, customization, and workflow optimization
  7. Working knowledge of at least one major SIEM (Splunk, XSIAM, Crowdstrike or equivalent) and experience integrating ExtraHop as a data source
  8. Experienced in proactive threat hunting and incident investigations using the MITRE ATT&CK framework, Cyber Kill Chain, NIST Cybersecurity Framework (CSF), and CIS Critical Security Controls to identify adversary TTPs and strengthen detection and response capabilities.
  9. Experience with cloud traffic mirroring (AWS VPC Traffic Mirroring, Azure vTAP, or GCP Packet Mirroring) is a strong plus
  10. Solid Understanding of network security, cloud environments, Identity, Linux, Mac and Windows.
  11. Strong analytical and troubleshooting capabilities.
  12. Effective communication skills with the ability to engage with clients and Team members.
  13. ExtraHop certification (ECS or equivalent) preferred or relevant industry certifications ( CISSP, CYSA, CEH, Security+, Pentest+, OSCP) are a plus.

The compensation range indicated in this posting reflects the On-Target Earnings (“OTE”) for this role, which includes a base salary and any applicable target bonus amount. This OTE range may vary based on the candidate’s relevant experience, qualifications, and geographic location.  

Why AHEAD:

Through our daily work and internal groups like Moving Women AHEAD and RISE AHEAD, we value and benefit from diversity of people, ideas, experience, and everything in between.

We fuel growth by stacking our office with top-notch technologies in a multi-million-dollar lab, by encouraging cross department training and development, sponsoring certifications and credentials for continued learning.

USA Employment Benefits include: 

- Medical, Dental, and Vision Insurance 

- 401(k) 

- Paid company holidays 

- Paid time off 

- Paid parental and caregiver leave 

- Plus more! See benefits https://www.aheadbenefits.com/ for additional details. 

Use of AI:

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, assessing responses, or to capture recordings and create transcriptions or summaries during interviews. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans.

If you would like more information about how your data is processed, please refer to the Candidate Privacy Notice or contact us at [email protected]

You may opt-out of the review or analysis of your application and resume by AI tools by using the General Application. Please include the role you wish to apply for in the Additional Information field. You may also choose to opt-out of recording and transcription at any time, including after joining an interview.  Candidates will not be penalized for choosing to opt-out.

Job Details

Salary

$180,000 – $210,000/yr

Experience

Senior · 6+ yrs

Tools & Tech

AWS
Azure
CrowdStrike
ECS
GCP
JavaScript
Linux
Python
Splunk
Windows

Preferred Certs

CEH
CISSP
PenTest+
Security+
OSCP