[Remote] Incident Response Principal Consultant - Weekend Shift (Remote)
Note: The job is a remote job and is open to candidates in USA. CrowdStrike is a global leader in cybersecurity dedicated to stopping breaches and protecting organizations. They are seeking a highly motivated Incident Response Principal Consultant to lead incident response engagements, develop methods to hunt for bad actors, and perform forensics across multiple platforms.
Responsibilities
- Lead incident response engagements
- Develop and use new methods to hunt for bad actors across large sets of data.
- Work under the direction of outside counsel to conduct intrusion investigations
- Perform host and/or network-based forensics across Windows, Mac, and Linux platforms.
- Perform basic malware analysis.
- Produce high-quality written and verbal reports, presentations, recommendations, and findings to key stakeholders including customer management, regulators, and legal counsel.
- Demonstrate industry thought leadership through blog posts, CrowdCasts, and other public speaking events.
Skills
- Team leadership experience in a matrixed consulting environment
- Incident Response: experience conducting or managing incident response investigations for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hacktivists.
- Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise.
- Network Forensic Analysis: strong knowledge of network protocols, network analysis tools like Bro/Zeek or Suricata, and ability to perform analysis of associated network logs.
- Reverse Engineering: ability to understand the capabilities of static and dynamic malware analysis.
- Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations.
- Network Operations and Architecture/Engineering: strong understanding of secure network architecture and strong background in performing network operations.
- Cloud Incident Response: knowledge in any of the following areas: AWS, Azure, GCP incident response methodologies.
- Communications: strong ability to communicate executive and/or detailed level findings to clients; ability to effectively communicate tasks, guidance, and methodology with internal teams.
- Capable of completing technical tasks without supervision.
- Desire to grow and expand both technical and soft skills.
- Strong project management skills.
- Contributing thought leader within the incident response industry.
- Ability to foster a positive work environment and attitude.
- Ability to travel on short notice, up to 30% of the time.
Education Requirements
- BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field.
Benefits
- Remote-friendly and flexible work culture
- Market leader in compensation and equity awards
- Comprehensive physical and mental wellness programs
- Competitive vacation and holidays for recharge
- Paid parental and adoption leaves
- Professional development opportunities for all employees regardless of level or role
- Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
- Vibrant office culture with world class amenities
- Great Place to Work Certified™ across the globe
Company Overview
Company H1B Sponsorship
