Principal Consultant - Cloud Security Assessments (Remote)

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

About the Role:

CrowdStrike is looking for highly motivated, self-driven, Principal level Cloud Security Consultants dedicated to making a difference in global security by protecting organizations against the most advanced adversaries in the world. Our CrowdStrike Professional Services team offers opportunities to expand your skill set through a wide variety of impactful consulting engagements for many of the world's leading organizations. The Principal Cloud Security Consultant would be responsible for delivering cloud security assessments and providing actionable recommendations to enhance the security posture of customer cloud environments.

What You’ll Do:

• Actively contribute to a cloud assessment methodology - collaborate with leadership, research, and product teams to continuously improve and develop new analysis approaches.

• Leverage scientific thinking, analytics, and threat intelligence to identify viable attack paths and contextualize risk in client cloud environments based on resource configurations and business context.

• Develop tools, detections, and queries to work with large data sets at scale, including SIEM analytics, querying APIs, and automating repetitive tasks.

• Manage client engagements, lead internal teams, and provide regular status updates to clients regarding project status and findings.

• Analyze cloud security architecture and resource configurations to identify security weaknesses and misconfigurations that may expose cloud environments to threats.

• Review identity plane configurations and advise clients about hardening authentication and authorization controls, including hybrid identity.

• Conduct workshops with stakeholders to identify gaps in cloud security management practices and governance, including logging, workload security, DevSecOps, and network security.

• Write queries and simple scripts to interact with APIs exposed by security tools and cloud control plane services.

• Produce high-quality written and verbal reports, presentations, recommendations, and findings to key stakeholders including customer management, regulators, and legal counsel.

• Demonstrate industry thought leadership through blog posts, CrowdCasts, and other public speaking events.

What You’ll Need:

Successful candidates will have experience in one or more of the following areas:

• At least 6 years of hands-on experience in cloud engineering, DevOps, security, or cloud support roles.

• A strong understanding of one or more of the following cloud platforms: Azure, M365, AWS, GCP, or OCI.

• Familiarity with modern cloud workloads - DevOps, CICD pipelines, containers, and related security defenses and pitfalls.

• Strong analytical skills, attention to details, and critical thinking skills 

• Excellent communication skills, including a strong ability to communicate executive and/or detailed level findings to clients; ability to effectively communicate tasks, guidance, and methodology with internal teams.

Experience/training in the topics below is beneficial but not essential for consideration:

• Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations related to major cloud platforms.

• Cloud Incident Response: knowledge in AWS, Azure, M365, or GCP incident response methodologies.

• An understanding of Kubernetes management plane, deployment models within public cloud environments, and container security.

Additionally, all candidates must possess the following qualifications:

• Capable of completing technical tasks without supervision.

• Desire to grow and expand both technical and soft skills.

• Strong project management skills.

• Contributing thought leader within the cloud security/incident response industry.

• Ability to foster a positive work environment and attitude.

Education: 

BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field. Applicants without a degree but with relevant work experience and/or training will be considered.

Certifications:

Holders of a CISSP, CISA, CISM, CCSP, or any practitioner or security certifications in AWS, Azure and GCP may be considered in lieu of or in addition to a degree.

#LI-AC1

#LI-Remote

This role may require the candidate to periodically undergo and pass alcohol and/or drug test(s) during the course of employment.

Benefits of Working at CrowdStrike:

• Remote-friendly and flexible work culture

• Market leader in compensation and equity awards

• Comprehensive physical and mental wellness programs 

• Competitive vacation and holidays for recharge  

• Paid parental and adoption leaves

• Professional development opportunities for all employees regardless of level or role

• Employee Resource Groups, geographic neighbourhood groups and volunteer opportunities to build connections

• Vibrant office culture with world class amenities

• Great Place to Work Certified™ across the globe

Right to Work

CrowdStrike, Inc. is committed to equal pay for equal work in its compensation practices. The base salary range for this position in the U.S. is $125,000 - $190,000 per year + variable/incentive compensation + equity + benefits. A candidate's salary is determined by various factors including, but not limited to, relevant work experience, skills, certifications, job level, supervisory status, and location.

Expected Close Date of Job Posting is:12-03-2024