Provide rapid, high-level technical expertise to support the deployment, optimization, and operational management of the CrowdStrike Falcon platform during a focused surge period. Responsibilities include hands-on engineering, incident response support, integration work, documentation, and short‑term strategic enhancements to strengthen endpoint security posture.
Location: 100% Remote
Open to 1099
Key Responsibilities
•Providing expert guidance on best practices, configuration standards, and operational workflows for CrowdStrike Falcon
• Oversee rapid deployment, configuration, and sustainment of CrowdStrike agents, ensuring complete endpoint coverage across up to 4,000 devices.
• Support threat detection development and dashboarding of incident response activities remediation of threats detected by CrowdStrike.
• Conduct proactive threat hunting and malware analysis in partnership with SOC teams; recommend and refine detection logic as needed.
• Integrate CrowdStrike Falcon with enterprise security tools (SIEM/SOAR) using Python, PowerShell, or similar scripting languages.
• Provide mentorship and technical guidance to junior engineers to uphold consistent engineering standards and processes.
• Ensure endpoint security activities remain aligned with enterprise strategy, regulatory requirements, and compliance frameworks.
• Identify, design, and implement automation opportunities to streamline security operations and reduce manual workload.
• Maintain clear and accurate documentation, including SOPs, engineering notes, installation guides, and knowledge base articles.
• Manage multiple concurrent priorities with minimal oversight in a fast‑paced surge environment.
• Collaborate with senior engineers and application owners to troubleshoot complex issues across networks, systems, and applications.
• Perform architectural reviews of deployed sensors and recommend enhancements to maximize detection coverage and performance.
• Optimize the EDR solution, including tuning data outputs, developing automated workflows/playbooks, and ensuring seamless integration with enterprise systems.
• Configure CrowdStrike’s cloud-hosted SaaS environment to manage policies, reporting, threat response, and operational controls.
• Support backend system administration functions, including monitoring, file system management, disk operations, and automation via shell scripts.
• Produce clear follow-up reports covering technical findings, root cause analysis, remediation actions, and recommendations for process improvement.
Never miss an opportunity! Create an alert based on the job you applied for.
