The Cloud Security Platform Engineer is responsible for supporting the deployment, configuration, and operationalization of CrowdStrike Falcon Platform cloud security modules within customer environments. This role focuses on implementation guidance, configuration, policy enablement, alerting workflows, dashboards, and operational best practices across cloud and SaaS platforms.
The engineer works closely with customer stakeholders to ensure successful adoption of one Falcon cloud module per engagement, operating within defined delivery terms and approved scope.
Supported Falcon Modules (One per Engagement)
Falcon Cloud Security Posture Management (FCS)
Falcon Cloud Workload Protection (FCS + Containers)
Falcon Application Security Posture Management (ASPM)
Falcon Shield (SSPM)
Key Responsibilities
General Responsibilities
Deliver platform aligned cloud security services within CrowdStrike Falcon
Conduct workshops, implementation sessions, and configuration reviews
Guide customers on best practices, dashboards, alerting, and remediation workflows
Collaborate with customer teams to validate requirements and approvals
Operate within defined operational services scope (no custom development)
Module Specific Responsibilities
Falcon Cloud Security Posture Management (FCS)
Deliver FCS workshops and common practices reviews
Guide cloud account registration for AWS, Azure, Google Cloud Platform, and OCI
Review Indicators of Misconfiguration (IOMs) and Indicators of Attack (IOAs)
Assist with detection policy reviews and remediation process definition
Configure dashboards and asset visibility for unmanaged or unprotected assets
Guide attack path analysis configuration and remediation strategy development
Provide guidance for AWS EC2 1Click sensor deployment
Falcon Cloud Workload Protection (FCS + Containers)
Support agent and sensor deployment across workloads and container environments
Guide configuration of container components and detection containers
Assist with image assessment framework setup (registries, CI/CD integration, vulnerability analysis)
Validate container monitoring, compliance tracking, and visibility
Advise on policy framework implementation and dashboard configuration
Guide setup of dashboards and reporting for workloads, images, vulnerabilities, and compliance
Review and configure Fusion workflows for workload and container alerts
Support Falcon API usage for integrations (no custom development)
Falcon Application Security Posture Management (ASPM)
Configure multicloud integration across AWS, Azure, Google Cloud Platform, and Kubernetes
Implement collectors and security signal integrations
Assist with service classification, automated tagging, and workflow configuration
Integrate third-party tools (e.g., Jira, Slack) for workflow automation
Advise on custom policy configuration, violation analysis, and remediation recommendations
Guide reporting framework setup, RBAC configuration, and SAML/SSO integration
Falcon Shield (SSPM)
Guide navigation, user settings, and access to Falcon Shield resources
Support SaaS application integration and connectivity validation
Assist with security posture check configuration and baseline metric reviews
Advise on alert channel configuration and escalation procedures
Guide ticketing workflow setup and tracking mechanisms
(Custom integrations require a separate Professional Services SOW)
Required Skills & Experience
Technical Skills
Hands-on experience with CrowdStrike Falcon Cloud Services
Experience with 2 or more of the listed modules:
Supported Falcon Modules (One per Engagement)
Falcon Cloud Security Posture Management (FCS)
Falcon Cloud Workload Protection (FCS + Containers)
Falcon Application Security Posture Management (ASPM)
Falcon Shield (SSPM)
Experience with cloud platforms: AWS, Azure, Google Cloud Platform (OCI a plus)
Familiarity with cloud security concepts:
CSPM, CWPP, CI/CD security
Container security (Kubernetes, image scanning)
SaaS Security Posture Management (SSPM)
Experience working with security dashboards, alerts, and remediation workflows
Understanding of IAM, RBAC, SAML/SSO integrations
Exposure to SOAR workflows and alert automation
Professional Skills
Strong customer-facing communication skills
Ability to lead workshops and technical review sessions
Experience working within defined service scope and delivery timelines
Comfortable coordinating with customer cloud, security, and DevOps teams
Engagement Parameters (Important)
Supports ONE Falcon cloud module per engagement
Delivery term: Up to 60 days
No custom development or unsupported integrations
Additional customization requires a separate Professional Services SOW
Ideal Background
Cloud Security Engineer
Cloud Platform Engineer (Security focused)
DevSecOps Engineer
Security Operations / Platform Enablement Engineer
Never miss an opportunity! Create an alert based on the job you applied for.
