CrowdStrike has redefined security with the world’s most advanced cloud-native platform that protects and enables the people, processes and technologies that drive modern enterprise. Tested and proven, the world's largest organizations trust CrowdStrike to stop breaches with unparalleled protection against the most sophisticated cyberattacks. The CrowdStrike culture has been built upon our Core Values since the day we began. We are Fanatical About the Customer, Relentlessly Focused on Innovation and believe that our Limitless Passion drives Unlimited Potential for every CrowdStriker. As a purpose-built remote-first company, we believe cultivating a connected culture for every employee, no matter where they are in the world, is a key ingredient in building a high-performing, diverse team. We don’t have a mission statement. We’re on a mission—to stop breaches. Ready to join a mission that matters?

Next-Gen SIEM Associate Consultant

ConsultantConsultantFull TimeRemoteTeam 5,001-10,000Since 2011H1B SponsorCompany Site LinkedIn

Location

Texas

Posted

15 days ago

Salary

$70K - $95K / year

Bachelor Degree2 yrs expEnglishAWSAzureCloudGoogle Cloud PlatformLinuxPythonSplunkSQL

Job Description

• Serve as the primary technical advisor for assigned strategic customer accounts • Develop and maintain trusted advisor relationships with customer security teams and leadership • Understand customer security operations workflows, use cases, and business objectives • Mentor customer teams on SIEM best practices and threat hunting techniques • Guide customers through Next-Gen SIEM deployment, configuration, and integration • Optimize data ingestion strategies and log source configurations • Design and implement custom detection rules, correlation searches, and use cases • Develop dashboards, reports, and visualizations tailored to customer requirements • Assist with migration of detection content from legacy SIEM platforms (Splunk, QRadar, etc.) • Perform health checks and platform optimization reviews • Troubleshoot complex technical issues and coordinate with engineering teams as needed • Track and report on key performance indicators and success metrics • Identify opportunities for automation and workflow improvements • Contribute to internal knowledge base and best practices documentation

Job Requirements

2+ years of experience in security operations, SIEM administration, or security engineering
Familiarity with at least one major SIEM platform (Next-Gen SIEM, LogScale, Splunk, QRadar, Sentinel, Chronicle, etc.)
Understanding of query languages (SQL, SPL, KQL, CQL, or similar)
Experience with detection engineering and correlation rule development
Knowledge of common log sources (Windows, Linux, network devices, cloud platforms)
Familiarity with scripting/automation (Python, PowerShell, Bash)
Understanding of cloud security (AWS, Azure, GCP, OCI)
Familiarity with endpoint detection and response (EDR) concepts

Benefits

Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe