Senior Security Engineer, Detection & Response (Eastern Preferred)
Docker- Full Time
- Senior (5 to 8 years)
Candidates should possess a Bachelor’s degree in a computer-related field and a minimum of 8 years of DevOps or Platform Engineering experience. US citizenship is required due to direct work on GovCloud, and familiarity with cloud platforms such as AWS, Azure, and GCP is essential. Strong programming skills in Python, Go, or similar languages are needed, along with experience utilizing tools like Terraform, Ansible, Git, and CI/CD pipelines. Knowledge of containerization technologies like Docker and Kubernetes is also required, as well as experience with log aggregation and processing, SIEM platforms, and Infrastructure as Code.
As a Platform Security Operations Engineer, you will support incident response and threat hunting teams by building, maintaining, and optimizing the infrastructure and tooling for effective threat detection, investigation, and response. Key responsibilities include implementing automated threat intelligence platforms, designing and maintaining threat hunting infrastructure, automating incident response workflows, supporting detection engineering workflows, building CI/CD pipelines for detection deployment, and maintaining emergency response platforms. You will also automate routine security operations tasks, develop custom integrations between security tools, build automated reporting and metrics collection, and provide analytical and communication skills to investigate, analyze, and solve complex security problems.
Cloud-native endpoint security solutions provider
CrowdStrike specializes in cybersecurity, focusing on protecting businesses from cyber threats through cloud-native endpoint security solutions. Their main product, the Falcon platform, includes services like Falcon Pro, which replaces traditional antivirus with next-generation antivirus that integrates threat intelligence, Falcon Insight for endpoint detection and response, and Falcon Device Control to manage connected devices. Unlike many competitors, CrowdStrike's services are subscription-based, allowing clients to choose different levels of protection based on their needs. The company serves a diverse clientele, including many Fortune 100 companies, and is recognized as a leader in the cybersecurity field, known for its effectiveness in threat detection and response.