[Hiring] Incident Response Consultant @CrowdStrike

Role Description

Weekend Work Schedule is Friday - Monday (10 hr work day/ 40 hr work week)

Am I an IR Consultant Candidate?

• Do you find yourself interested in and keeping up with the latest vulnerabilities and breaches?
• Are you self-motivated and looking for an opportunity to rapidly accelerate your skills?
• Do you crave new and innovative work that actually matters to your customer?
• Do you have an Incident Response or Information Security background that you’re not fully utilizing?
• Are you capable of leading teams and interacting with customers?
• Do you love working around like-minded, smart people who you can learn from and mentor on a daily basis?

What You'll Do:

• Lead incident response engagements.
• Develop and use new methods to hunt for bad actors across large sets of data.
• Work under the direction of outside counsel to conduct intrusion investigations.
• Perform host and/or network-based forensics across Windows, Mac, and Linux platforms.
• Perform basic malware analysis.
• Produce high-quality written and verbal reports, presentations, recommendations, and findings to key stakeholders including customer management, regulators, and legal counsel.
• Demonstrate industry thought leadership through blog posts, CrowdCasts, and other public speaking events.

Qualifications

• Team leadership experience in a matrixed consulting environment.
• Incident Response: experience conducting or managing incident response investigations for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hacktivists.
• Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise.
• Network Forensic Analysis: strong knowledge of network protocols, network analysis tools like Bro/Zeek or Suricata, and ability to perform analysis of associated network logs.
• Reverse Engineering: ability to understand the capabilities of static and dynamic malware analysis.
• Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations.
• Network Operations and Architecture/Engineering: fundamental understanding of secure network architecture and network operations.
• Cloud Incident Response: knowledge in any of the following areas: AWS, Azure, GCP incident response methodologies.
• Communications: strong ability to communicate executive and/or detailed level findings to clients; ability to effectively communicate tasks, guidance, and methodology with internal teams.

• Capable of completing technical tasks without supervision.
• Desire to grow and expand both technical and soft skills.
• Strong project management skills.
• Contributing thought leader within the incident response industry.
• Ability to foster a positive work environment and attitude.

Education

• BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field.
• Applicants without a degree but with relevant work experience and/or training will be considered.

Benefits

• Market leader in compensation and equity awards
• Comprehensive physical and mental wellness programs
• Competitive vacation and holidays for recharge
• Paid parental and adoption leaves
• Professional development opportunities for all employees regardless of level or role
• Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
• Vibrant office culture with world class amenities
• Great Place to Work Certified™ across the globe