Crowdstrike

SkillBridge CSIRT, Incident Response Analyst (Remote)

California, United States

Not SpecifiedCompensation
InternshipExperience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, Information TechnologyIndustries

Job Description: Incident Response Analyst (DoD SkillBridge)

Employment Type: Full-time

Position Overview

CrowdStrike, a global leader in cybersecurity, is seeking a highly motivated and self-driven Incident Response Analyst to participate in its DoD SkillBridge / Career Skills Program (CSP). This internship offers an invaluable opportunity to support the Incident Response lifecycle by triaging and investigating detections, and taking appropriate actions such as live response, containment, and escalation. This role is part of our CSIRT team and is a remote position available to qualifying service members residing in the US.

About CrowdStrike

CrowdStrike protects the people, processes, and technologies that drive modern organizations. Since 2011, our mission has been to stop breaches, and we have redefined modern security with the world's most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe, and their lives moving forward. We are a mission-driven company that cultivates an inclusive culture, providing every CrowdStriker with the flexibility and autonomy to own their careers. We are always looking to add talented individuals with limitless passion, a relentless focus on innovation, and a fanatical commitment to our customers, community, and each other. The future of cybersecurity starts with you.

DoD SkillBridge / Career Skills Program (CSP) Information

This Job Description is for DoD SkillBridge participation and is not eligible for direct hire.

CrowdStrike’s DoD SkillBridge / CSP Internship is an approved SkillBridge Program under Dept. of Defense Instruction 1322.29 as enacted by 10 U.S.C. Sec 1143.

  • Eligibility: Restricted to members of the U.S. Armed Forces separating honorably with greater than 180 days of continuous Active Duty.
  • Period of Eligibility: Within the final 180 days of Active Duty service.
  • Completion: Must be completed prior to separation from Active Duty in the U.S. Armed Forces.
  • Open To: Members of all services, all ranks, and all experience levels. Service members should review the Job Description for specific requirements and qualifications.
  • Compensation: SkillBridge participants engage in full-time training (40-hour work week) under permissive temporary duty military orders. Participants will continue to receive all military wages and benefits as defined by the Department of Defense and are not eligible for compensation from CrowdStrike during the SkillBridge participation.
  • Compliance: DoD SkillBridge/CSP is fully compliant with FLSA, DBA, SCA, CSHSSA, and all other pertinent Federal and State labor laws.

For more employer information regarding DoD SkillBridge/CSP, please visit the Department of Defense DoD SkillBridge website at https://skillbridge.osd.mil/.

What You’ll Do

  • Support the Incident Response lifecycle via triage and investigation of detections.
  • Take appropriate action on detections, such as live response, containment, or escalation.
  • Develop detection criteria across a broad range of technologies and log sources.
  • Identify coverage and efficiency gaps in available data and tooling.
  • Provide information security reporting, including security metrics as required.
  • Participate in incident response and manage escalations as needed.
  • Provide after-hours support on an on-demand basis.
  • Drive efficient process development and documentation for all aspects of the Incident Response lifecycle.

What You’ll Need

  • Experience responding to security events, including front-line analysis and escalation of hacktivist, cybercrime, and APT activity.
  • Theoretical and practical knowledge of Mac, Linux, and Windows operating systems.
  • Theoretical and practical knowledge of TCP/IP networking and application layers.
  • Experience with access/application/system log analysis, IDS/IPS alerting and data flow, and SIEM-based workflows.
  • Experience with security data collection, processing, and correlation.
  • Additionally, all candidates must possess the following qualifications: Capable of completing...

Skills

Incident Response
Triage
Investigation
Detections
Live Response
Containment
Escalation
Cybersecurity
AI-native platform

Crowdstrike

Cloud-native endpoint security solutions provider

About Crowdstrike

CrowdStrike specializes in cybersecurity, focusing on protecting businesses from cyber threats through cloud-native endpoint security solutions. Their main product, the Falcon platform, includes services like Falcon Pro, which replaces traditional antivirus with next-generation antivirus that integrates threat intelligence, Falcon Insight for endpoint detection and response, and Falcon Device Control to manage connected devices. Unlike many competitors, CrowdStrike's services are subscription-based, allowing clients to choose different levels of protection based on their needs. The company serves a diverse clientele, including many Fortune 100 companies, and is recognized as a leader in the cybersecurity field, known for its effectiveness in threat detection and response.

Austin, TexasHeadquarters
2011Year Founded
$468MTotal Funding
IPOCompany Stage
Enterprise Software, CybersecurityIndustries
5,001-10,000Employees

Benefits

Competitive Employee Stock Purchase Plan
Remote-friendly culture
Market leader in compensation and equity awards
Competitive vacation and flexible working arrangements
Comprehensive health benefits + 401k plan
Paid Parental Leave, including adoption
Wellness programs
Professional development and mentorship opportunities
Open offices have stocked kitchens, coffee, soda and treats

Risks

Increased competition from companies like Lumos could challenge CrowdStrike's market share.
Recovery from last year's outage may still affect customer trust and future sales.
Pressure to demonstrate ROI by 2025 could challenge CrowdStrike's financial transparency.

Differentiation

CrowdStrike's Falcon platform offers cloud-native endpoint security solutions, a key differentiator.
The company serves 44 of the Fortune 100, showcasing its strong market presence.
CrowdStrike's proactive threat hunting sets it apart in cybersecurity threat detection.

Upsides

Partnership with SonicWall opens new SMB market segment for CrowdStrike.
Recognition as a leader in ransomware prevention boosts CrowdStrike's market credibility.
Gamified learning initiatives help address cybersecurity skills gap, benefiting future talent pipeline.

Land your dream remote job 3x faster with AI