Serve as the primary technical authority for CrowdStrike, guiding the team on best practices and technical standards.
Oversee the deployment and maintenance of CrowdStrike agents to ensure full coverage across all endpoints.
Lead and participate in the investigation and response to security incidents detected by CrowdStrike.
Perform threat hunting, conduct malware analysis, and help refine detection logic in collaboration with the SOC.
Integrate the CrowdStrike platform with other security tools, such as SIEM/SOAR platforms, using scripting languages like Python and PowerShell.
Mentor and guide junior engineers on technical standards, processes, and procedures.
Ensure the endpoint security strategy aligns with enterprise goals and that all solutions meet regulatory and compliance standards.
Identify and implement opportunities for automation to streamline security operations.
Maintain up-to-date documentation, standard operating procedures (SOPs), and knowledge base articles.
Manage multiple assignments, changing priorities, and work independently with little oversight.
Work closely with senior engineers, other team members and application owners to solve technical problems at the network, system and application levels.
Conduct periodic architectural reviews of installed sensors to assess effectiveness and propose optimal installation alternatives as required.
Deploy CrowdStrike Falcon Endpoint Detection and Response (EDR) detection agent up to 4K devices.
Reduce risk by ensuring coverage of malware detection for in-scope CrowdStrike EDR Agent capable devices.
Optimization of EDR solution, including refinement data produced, development of automated workflows or playbooks, and integration of the EDR data with Enterprise solutions, including SIEM solutions.
Configuring CrowdStrike cloud-hosted SaaS Solution, to manage policies, control reporting data, manage, and respond to threats.
Experience in backend solution, day to day system admin and monitoring, file system management and disk management and creation of shell scripts for the automation of tasks and the extraction of logs.
Provide follow-up reports (technical findings, feedback, resolution steps taken) for Root Cause analysis, engineering technical assessment and process improvement initiatives.

Requirements

BS degree in Science, Technology, Engineering or related field and 12-15 years of prior relevant experience with a focus on cybersecurity OR Masters with 10 years of prior relevant experience.
Experience leading cross-functional security initiatives and managing small teams or projects.
Extensive, hands-on experience with the CrowdStrike Falcon platform, including multiple modules (e.g., EDR, FIM, Identity Protection, Data Protection).
Expertise in endpoint security concepts and incident response processes.
Proficiency in scripting languages like Python, PowerShell, or Bash for automation and custom response actions.
Strong knowledge of security frameworks like NIST or MITRE ATT&CK.
Experience with SIEM integrations and threat analysis.
Solid understanding of operating systems (Windows, Linux, macOS).
Superior attention to detail with excellent written and verbal communication skills.
Excellent problem solving, research, and follow-up skills.
Self-motivation and ability to work independently.
Ability to obtain an Entry of Duty (EOD) Public Trust.
Candidate must, at a minimum, meet one of these certifications: CrowdStrike certifications (e.g., CCFR, CCFP).

Benefits

Competitive compensation
Health and Wellness programs
Income Protection
Paid Leave
Retirement

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

CrowdStrike FalconEDRmalware analysisthreat huntingscripting languagesPythonPowerShellSIEMautomationendpoint security

Soft Skills

leadershipproblem solvingattention to detailcommunicationself-motivationmentoringindependent workresearchfollow-upcollaboration

Certifications

CrowdStrike certificationsCCFRCCFP