As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate an inclusive culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.
About the Role:
The Sr./Principal Consultant will perform Red Team activities simulating known and unknown threat actors to help CrowdStrike customers determine the impact and likelihood of threat actors to accomplish objective across the Kill Chain and MITRE ATT&CK Framework. The Sr./Principal Red Team Consultant is expected to be able to coordinate with senior leadership, plan, and oversee execution of assessments and assist the other CrowdStrike Services’ functions to help improve customers security defense. This person should be capable of supporting, managing, and mentoring less experienced red team members.
What You'll Do:
-
Act as a primary contact for coordination of Red Team activities as well as coordinating and leading all penetration testing activities
-
Develop reporting including mitigations strategies of results of Red Team activities for both management and technical audiences
-
Must be able to effectively communicate at all levels (executive leadership and technical support teams) within CrowdStrike
-
Organize resources to perform penetration assessments of operating systems, applications, databases and network infrastructure components to emulate threats
-
Work with a diverse team and lead/assist in developing and improving an information security program and information security resources
-
Must be able to work as an operator and project manager on various types of penetration testing offerings
-
You will utilize and develop both open-source and in-house toolkits and identify and implement long-term enhancements to the practice to better enable clients to stop breaches
What You'll Need:
-
Minimum 5 years of experience in a Red Team/Penetration Testing activities is highly preferred
-
Minimum 1 year of experience in a project management role is highly preferred
-
Advanced experience with Red Teaming (vulnerability/penetration testing/adversary emulation assessments)
-
Advanced experience in automation and scripting of applications and systems
-
Advanced experience with Security Assessment Tools (Cobalt Strike, other C2 Frameworks, Nessus, Burp)
-
Comprehensive understanding of the latest security methodologies, technologies, and best practices
-
Advanced knowledge of:
-
Windows OS
-
Linux/Unix and Mac operating systems is highly preferred
-
Testing cloud environments (e.g. Azure, AWS) is highly preferred
-
Social engineering (phishing, vishing) techniques is highly preferred
-
Firewalls, proxies, mail servers and web servers
-
Operational support for operating systems, applications and networks
-
-
Desirable certifications include: OSCP, OSEP, OSCE, CRTO, GPEN, GCIH, GXPN
-
Occasional travel may be required (<25%)
Bonus Points:
-
Published research work (i.e. blog, github, etc.)
-
Experience hosting lab environments (i.e. cloud ops roles, homelab, etc.)
-
Security community participation (conference speaker, tool development contributor, etc.)
Additionally, all candidates must possess the following qualifications:
-
5+ years cybersecurity industry experience overall, ideally in hands-on roles including security engineering, detection engineering, etc.
-
Experience in customer-facing project management with a keen eye toward customer service
-
Demonstrated ability to excel in a fast-paced professional services environment
-
Proven track record in technical and creative problem solving coupled with the analytical expertise to provide quick resolution to problems
-
Exceptional oral and written communication skills
-
Strong business acumen
-
Ability to foster a positive work environment and attitude
#LI-AC1
#LI-Remote
This role may require the candidate to periodically undergo and pass alcohol and/or drug test(s) during the course of employment.
Benefits of Working at CrowdStrike:
-
Remote-friendly and flexible work culture
-
Market leader in compensation and equity awards
-
Comprehensive physical and mental wellness programs
-
Competitive vacation and holidays for recharge
-
Paid parental and adoption leaves
-
Professional development opportunities for all employees regardless of level or role
-
Employee Resource Groups, geographic neighbourhood groups and volunteer opportunities to build connections
-
Vibrant office culture with world class amenities
-
Great Place to Work Certified™ across the globe
CrowdStrike is proud to be an equal opportunity and affirmative action employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at [email protected] for further assistance.
Find out more about your rights as an applicant.
CrowdStrike participates in the E-Verify program.
Notice of E-Verify Participation
Right to Work
CrowdStrike, Inc. is committed to fair and equitable compensation practices. The base salary range for this position in the U.S. is $125,000 - $190,000 per year + variable/incentive compensation + equity + benefits. A candidate's salary is determined by various factors including, but not limited to, relevant work experience, skills, certifications, job level, supervisory status, and location.
Expected Close Date of Job Posting is:12-25-2024
Top Skills
What We Do
CrowdStrike is the first cloud-native platform that protects endpoints, cloud workloads, identity and data. CrowdStrike: We Stop Breaches.
Why Work With Us
We have a culture that celebrates achievement, encourages flexibility and innovation and thrives on teamwork. We all work towards a single mission: to stop breaches. This common goal drives a sense of community and connection among our people across the globe.
Gallery
CrowdStrike Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.