Security Officer ensuring safety and support for patients, visitors, and staff at HSS. Engaging in routine patrols and responding to emergencies in a healthcare environment.
About the role
- Cyber Security Technical Lead creating a unified, automated defense posture with CrowdStrike. Focused on integrating security measures and optimizing technology at Fortive.
Responsibilities
- Lead the architectural design and lifecycle management of the Falcon ecosystem.
- Extensive engagement with EDR, continuous policy tuning, expert specialist, real time response, build custom IOA, specialist is Behavioral Analytical Thinking.
- Design and optimize CrowdStrike Next-Gen SIEM. Create custom parsers, complex queries, and dashboards to provide real-time visibility across multi-cloud and on-prem environments.
- Build and maintain sophisticated SOAR (Falcon Fusion/Workflow) playbooks to automate repetitive tasks, reduce Mean Time to Respond (MTTR), and streamline incident escalation.
- Ability to map Falcon detections to specific adversary tactics and techniques to understand the full scope of an intrusion.
- Work with stakeholders to implement DLP and DSPM strategies. Ensure that sensitive data is identified, mapped, and protected across SaaS, Cloud, and Endpoint environments.
- Conduct architectural threat modeling to identify gaps in detection coverage and recommend specific CrowdStrike modules or third-party integrations to mitigate risks.
- Define and enforce security configuration standards across the global endpoint fleet.
Requirements
- Bachelor’s degree in Business, Technical Communication, Information Technology, or related field.
- CISSP, CISM or equivalent certification (good to have)
- CCFA (Falcon Administrator) is very good to have
- Some cloud security certification (good to have)
- Expert-level knowledge of Falcon Insight (EDR), Falcon Next-Gen SIEM, and Falcon Fusion (SOAR).
- Deep understanding of AWS, Azure, or GCP security architectures and how they feed into a centralized SIEM.
- Ability to use Python, PowerShell, JavaScript, to interact with APIs (specifically the Falcon API).
- 7+ years in Cybersecurity
- At least 3+ years specifically focused on (preferably CrowdStrike) EDR, NG-SIEM & SOAR.
- Excellent written and verbal communication skills.
- Proficiency in documentation tools (e.g., Confluence, SharePoint, MS Office).
- Familiarity with Agile methodologies and risk management practices.
- Ability to manage multiple priorities in a fast-paced environment.
Benefits
- Health insurance
- Professional development opportunities
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Técnico de Segurança do Trabalho na Midea Carrier, responsável por garantir a saúde e segurança dos colaboradores. Participação em auditorias, inspeções e elaboração de políticas de segurança.
Analista de Cyber Security Sr. atuando em segurança em nuvem e testes de penetração para o setor aeronáutico na OnSet. Profissional com capacidade analítica e visão de segurança.
Mid - Level Security Design Specialist at Boeing working on enterprise directory services and providing technical support. Engaging in the design, implementation, and maintenance of Ping Directory - based infrastructure services.
Werkstudent im Corporate Security Team bei Uniper. Mitarbeit an Projekten zur Geschäftskontinuität und Sicherheitsmanagement.
Werkstudent in Corporate Security und Business Continuity Management bei Uniper. Unterstützung des Teams bei BCM - Projekten und Administration.
Internship in Cyber Security providing support for research and security development tasks in a collaborative environment. Involvement with cybersecurity topics and emerging technologies.
Associate Consultant in Security and Compliance Services for CBIZ. Engaging in IT and auditing functions to support cybersecurity and compliance efforts.
Corporate Auditor managing audits on application security and IT processes in a hybrid work environment. Coordinating with functional owners for implementation of recommendations.
Cloud IT Security Architect role at hubside enhancing information security in cloud environments. Engaging in IT projects with a focus on IT - Security strategies and operational security measures.