Sr. Consultant, Incident Response (Remote, DEU)

CrowdStrike is looking for highly motivated, self-driven, technical consultants dedicated to making a difference in global security by protecting organisations against the most advanced attackers in the world. Our CrowdStrike Services team offers opportunities to expand your skill set through a wide variety of engagements including front page incident response investigations for organisations you’ll find on the annual Fortune 100 list.

Am I a Senior Consultant Candidate?

• Do you find yourself interested in and keeping up with the latest vulnerabilities and breaches?

• Are you self-motivated and looking for an opportunity to rapidly accelerate your skills?

• Do you crave new and innovative work that actually matters to your customer?

• Do you have an Incident Response or Information Security background that you’re not fully utilising?

• Are you capable of leading teams and interacting with customers?

• Do you love working around like-minded, smart people who you can learn from and mentor on a daily basis?

What You'll Do:

• Lead incident response engagements

• Develop and use new methods to hunt for bad actors across large sets of data.

• Work under the direction of outside counsel to conduct intrusion investigations

• Perform host and/or network-based forensics across Windows, Mac, and Linux platforms.

• Perform basic malware analysis.

• Produce high-quality written and verbal reports, presentations, recommendations, and findings to key stakeholders including customer management, regulators, and legal counsel .

• Demonstrate industry thought leadership through blog posts, CrowdCasts, and other public speaking events.

What You'll Need:

Successful candidates will have experience in one or more of the following areas:

• Team leadership experience in a matrixed consulting environment

• Incident Response: experience conducting or managing incident response investigations for organisations, investigating targeted threats such as the Advanced Persistent Threat, Organised Crime, and Hacktivists.

• Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise.

• Network Forensic Analysis: strong knowledge of network protocols, network analysis tools like Bro/Zeek or Suricata, and ability to perform analysis of associated network logs.

• Reverse Engineering: ability to understand the capabilities of static and dynamic malware analysis.

• Incident Remediation: strong understanding of targeted attacks and able to create customised tactical and strategic remediation plans for compromised organisations.

• Network Operations and Architecture/Engineering: strong understanding of secure network architecture and strong background in performing network operations.

• Cloud Incident Response: knowledge in any of the following areas: AWS, Azure, GCP incident response methodologies.

• Communications: strong ability to communicate executive and/or detailed level findings to clients; ability to effectively communicate tasks, guidance, and methodology with internal teams

Additionally, All Candidates Must Possess The Following Qualifications:

• Capable of completing technical tasks without supervision.

• Desire to grow and expand both technical and soft skills.

• Strong project management skills.

• Contributing thought leader within the incident response industry.

• Ability to foster a positive work environment and attitude.

• Ability to travel on short notice, up to 30% of the time.

Education:

BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field. Applicants without a degree but with relevant work experience and/or training will be considered.

#LI-Remote

#LI-GT1

#LI-JP2