Digital Forensic Lab Technician

#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We're looking for people with limitless passion, a relentless focus on innovation and a fanatical commitment to the customer to join us in shaping the future of cybersecurity. Consistently recognized as a top workplace, CrowdStrike is committed to cultivating an inclusive, remote-first culture that offers people the autonomy and flexibility to balance the needs of work and life while taking their career to the next level. Interested in working for a company that sets the standard and leads with integrity? Join us on a mission that matters - one team, one fight.

About the Role:

This is a Digital Forensic Lab Technician on the CrowdStrike Services TechOps team. Forensic Lab Technicians work to collaboratively support consultants to enable incident response and forensics analysis. Digital Forensic Lab Technicians are key contributors in the consulting team's ability to analyze evidence in a stable and secure environment.

Am I a Digital Forensic Lab Technician?
Are you an empathic engineer who believes that the value of a software product is held in the utility of that product to the customer and its users? Do you have many of the following technical skills and experiences:

• High attention to detail, and ability to work under time constraints and pressure.
• Comfort and experience working within the constraints of existing software applications and architectures.
• Experience with distributed and scalable systems.
• Experience with cloud native technologies.

Do you have some of the following soft skills too:

• You possess excellent written and verbal communication skills.
• You are able to be successful in a highly asynchronous environment.
• Ability to distill high level feature requests into concrete engineering requirements.
• Enjoy working with a diverse team.
• You are a self-starter and able to thrive and take responsibility for projects.

Do you realize that the following skills will get you bonus points during the interview process:

• You proactively seek to improve team productivity with automation
• You have a passion for reliability and quality
• You have a strong desire to continue to learn and grow
• You are knowledgeable in cybersecurity principles and best practices
• Passion to mentor and help others grow

What You'll Do:

• Be available to receive, image and begin the forensic process of physical devices sent to CrowdStrike while maintaining a chain of custody from receipt to disposition.

• Maintain, patch, and provision virtual machines in an isolated environment to safeguard integrity of digital evidence and guarantee a consistent and reliable experience.
• Provide support through a ticketing system for internal consultants.
• Facilitate consultants in delivering guidance to customers on the forensic imaging process.
• Participate in team discussions for system improvements and assist with planning future upgrades.
• Help improve internal processes and support task documentation.

What You'll Need:

• Virtual Infrastructure administration experience (VMware, Virtual Box, AWS, Azure)
• Familiarity with Windows and Linux system administration.
• Familiarity with Windows Active Directory Group Policy.
• Familiarity with networking principles.
• Authoring and debugging Python, PowerShell, and shell scripts.
• Professional experience in at least one programming language, preferably Python, with the ability to quickly learn and adapt to others.

Bonus Points:

• Experience using forensic image collections tools like FTK Imager, PALADIN, and Digital Collector
• Knowledge of Chain of Custody principals of both digital and physical evidence lifecycles
• Experience using AWS services like S3 and EC2, SQS and IAM
• Experience working with infrastructure as code like Terraform
• Experience with JAMF and MAC OS administration
• Experience with SCCM
• Experience supporting VMware Horizon VDI
• Familiarity with VMware vRA blueprints and workflows
• Familiarity with Elasticsearch, Splunk or LogScale

#LI-DL1

Benefits of Working at CrowdStrike:

• Remote-first culture
• Market leader in compensation and equity awards
• Competitive vacation and flexible working arrangements
• Comprehensive and inclusive health benefits
• Physical and mental wellness programs
• Paid parental leave, including adoption
• A variety of professional development and mentorship opportunities
• Offices with stocked kitchens when you need to fuel innovation and collaboration

We are committed to fostering a culture of belonging where everyone feels seen, heard, valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.

CrowdStrike is committed to maintaining an environment of Equal Opportunity and Affirmative Action. If you need reasonable accommodation to access the information provided on this website, please contact , for further assistance.

CrowdStrike participates in the E-Verify program.

Notice of E-Verify Participation

Right to Work