Must Have Technical/Functional Skills
• 5+ years in detection engineering, threat hunting, or security operations.
• Deep expertise with CrowdStrike Falcon Endpoint, Next-Gen SIEM, CS IDP, FUSION, and SOAR platforms.
• Strong experience with cloud security (AWS, Azure).
• Proficiency in CrowdStrike Query Language (FQL/CQL) and scripting (Python, PowerShell).
• Proven ability to troubleshoot CrowdStrike sensor issues, agent health, and platform integration.
• Familiarity with MITRE ATT&CK, NIST 800-53, and modern detection frameworks.
• Expertise in Cribl and/or Cribl-like data optimization tools
• CrowdStrike certifications (e.g., CCFA, CCFH)
• Experience with threat intelligence platforms and adversary emulation.
• Familiarity with CI/CD pipelines, detection-as-code, and infrastructure-as-code practices Roles & Responsibilities
• Detection Engineering & Threat Monitoring
• Develop and maintain high-fidelity detection rules using CrowdStrike Falcon, Next-Gen SIEM, and FUSION.
• Leverage CS IDP to detect identity-based threats and lateral movement.
• Write and optimize queries using CrowdStrike Query Language (FQL/CQL) for threat hunting and detection
• validation.
• Build and tune detections for cloud environments (AWS, Azure, GCP) and integrate with cloud-native logging tools.
• Strong Experience in data engine tools like Cribl for SIEM integration, data processing, normalization, and enrichment to enhance SIEM capabilities.
• CrowdStrike Ecosystem Ownership
• Function as the primary SME for CrowdStrike, including Falcon, IDP, FUSION, and related modules.
• Troubleshoot and resolve sensor deployment issues, agent health problems, and telemetry gaps.
• Serve as the escalation point for CrowdStrike-related errors, automation failures, and detection tuning.
• Collaborate with CrowdStrike support and engineering teams to resolve complex issues and optimize platform performance.
• SOAR Automation & Incident Response
• Design and implement automated response playbooks using SOAR platforms to reduce dwell time and automate/streamline triage.
• Integrate detection outputs with incident response and/or other compliance frameworks as required.
• Threat Modeling & Use Case Development&nbs p;
• Conduct threat modeling for enterprise systems, cloud platforms, and business-critical applications.
• Translate MITRE ATT&CK techniques into actionable detection logic and use cases.
• Collaboration & Mentorship
• Work closely with infrastructure, compliance, and security operations teams to ensure secure operations.
• Mentor junior engineers and analysts on detection engineering, query development, and CrowdStrike best practices
• Knowledge of cybersecurity frameworks and best practices. Generic Managerial Skills, If any
• Team management skills
• Strong analytical and problem-solving skills.
• Excellent communication with both technical and non-technical stakeholders.
• Ability to work independently in a fast-paced environment.
...Northwell Health and the Department of Medicine is seeking a BC/BE Endocrinologists for sites located throughout Long Island, Queens, Westchester, and Staten Island. The Division of Endocrinology, Diabetes and Metabolism treats, prevents, and manages disease related...
...(EMR) Other EMR Practice Partner EMR Valid Registered Nurse (RN) in the State of Pennsylvania (PA) All of the following valid... ...surrounding areas. The role requires on-call availability on weekends and local travel to patient locations. The successful candidate...
Join to apply for the Background Investigator (1099) role at Brush Creek Solutions2 weeks ago Be among the first 25 applicantsJoin to apply... ...research, and prepare reports of investigation in compliance with federal standards, all laws, and other required federal agency...
...agency helping individuals and families create pathways out of homelessness, domestic violence and sexual assault leading to safe, stable,... ...in Arlington for families in crisis. What began then with one shelter and one response has grown into a series of pathways...
...National law firm with an office in downtown Phoenix seeks an entry level help desk technician to join our team. The successful candidate will... ...Must have one year of desk-side support as well as remote experience; Solid experience troubleshooting Windows and Windows...