CrowdStrike Consultant - Incident Response

Employment Type: Full-time

Position Overview

CrowdStrike is a global leader in cybersecurity, protecting the people, processes, and technologies that drive modern organizations. Our mission is to stop breaches, and we have redefined modern security with the world's most advanced AI-native platform. We serve customers across all industries, enabling them to keep their businesses running, their communities safe, and their lives moving forward. CrowdStrike is a mission-driven company that fosters a culture of flexibility and autonomy, empowering every CrowdStriker to own their careers. We seek talented individuals with limitless passion, a relentless focus on innovation, and a fanatical commitment to our customers, community, and each other. Join us and be part of a mission that matters – the future of cybersecurity starts with you.

About the Role

CrowdStrike is looking for highly motivated, self-driven technical consultants dedicated to making a difference in global security by protecting organizations against the most advanced attackers. Our CrowdStrike Services team offers opportunities to expand your skill set through a wide variety of engagements, including front-page incident response investigations for Fortune 100 organizations.

Am I a Consultant Candidate?

• Are you interested in and keeping up with the latest vulnerabilities and breaches?
• Are you self-motivated and looking for an opportunity to rapidly accelerate your skills?
• Do you crave new and innovative work that actually matters to your customer?
• Do you have an Incident Response or Information Security background that you’re not fully utilizing?
• Are you capable of operating as an individual contributor and interacting with customers?
• Do you love working around smart people who you can learn from and mentor on a daily basis?

Responsibilities

• Serve as part of the technical team on incident response engagements.
• Develop and use new methods to hunt for bad actors across large sets of data.
• Work under the direction of project leadership and outside counsel to conduct intrusion investigations.
• Perform host and/or network-based forensics across Windows, Mac, and Linux platforms.
• Support the production of high-quality written and verbal reports, presentations, recommendations, and findings to key stakeholders, including customer management, regulators, and legal counsel.

Requirements

Successful candidates will have knowledge of or experience in one or more of the following areas:

• Incident Response: Experience conducting or managing incident response investigations for organizations, investigating targeted threats such as Nation-State, E-Crime, and Hacktivists.
• Computer Forensic Analysis: A background using forensic analysis tools in incident response investigations to determine the extent and scope of compromise.
• Network Forensic Analysis: Strong knowledge of network protocols, network analysis tools like Bro/Zeek or Suricata, and ability to perform analysis of associated network logs.
• Reverse Engineering: Ability to understand the capabilities of static and dynamic malware analysis.
• Incident Remediation: Strong understanding of targeted attacks and ability to support creating customized tactical and strategic remediation plans for compromised organizations.
• Network Operations and Architecture/Engineering: Understanding of secure network architecture and strong background in performing network operations.
• Cloud Incident Response: Knowledge of AWS, Azure, or GCP incident response methodologies.
• Communications: Strong ability to communicate executive and/or detailed level findings to clients; ability to effectively communicate tasks, guidance, and methodology with internal teams.

Additionally, all candidates must possess the following qualifications:

• Capable of completing technical tasks with limited supervision.
• Desire to grow and expand both technical and soft skills.

Company Information

CrowdStrike is a global leader in cybersecurity, protecting the people, processes, and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe, and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.