Sr. Threat Response Analyst (Remote)
About the Role:
The CrowdStrike OverWatch Elite team is seeking a motivated individual with strong technical skills and customer centric personality to act as a trusted advisor to OverWatch Elite’s managed threat hunting customers.
OverWatch Elite Threat Response Analysts act as a bolt-on to the Falcon OverWatch managed threat hunting service by collaborating with clients, exchanging threat intelligence with clients, providing threat briefings to a diverse audience, drafting communication around threat detections, performing hypothesis driven hunts, leading customer war rooms, and acting as liaison between customers and threat hunting teams.
The OverWatch Elite team delivers ‘White Glove’ service to augment OverWatch threat hunting and provides a personal consultative threat response experience to customers that expect a top-tier, proactive, professional service.
To be successful in this role, you must: be a motivated self-starter, be committed to ongoing self-education, possess strong customer service skills, be familiar with threat hunting operations, have excellent technical problem-solving skills, be obsessed with ‘WOWing’ the customer and stopping breaches.
This position is open to remote candidates located on the East or West Coast.
Responsibilities:
Generate high-quality customer deliverables to meet the criteria and expectations of the service such as:
Hunting for threats, anomalies and cyber-related disruptions on customer endpoints
Performing threat analysis, deep-dives and incident assessments
Researching and assessing customer’s threats and IOCs
Conducting ongoing customer environment assessments
Holding quarterly customer security report presentations
Conducting research and presenting threat briefings to a large audience
Provide subject matter expertise and insight to clients about industry attack trends and defenses by developing and maintaining deep awareness and understanding of evolving threats, adversaries and intrusion trends
Development and delivery of impactful threat briefings, reporting and presentations to customers by providing actionable intelligence
Collaborate interdepartmental teams to help detect new, interesting or unique threats and mitigations based on hunting observations
Build strong advisory relationships with customers and continuously exceeding client expectations
Guide clients through Threat Response findings and providing subject matter expertise for response activities
Gather client input and feedback across customer base to influence service roadmaps
Mentor threat response analysts
Lead strategic team projects
Act as a point of escalation for analysts within assigned region(s)
Key Qualifications
Required:
Trustworthy, self-starter, good communicator, collaborative, dependable, and driven personality
Bachelor’s degree in information security or related discipline or the equivalent of eight (8) years or more in the industry as job experience
Three (3) or more years of significant client-facing relationship management experience
Prior cyber experience in three (3) or more of the following:
Threat response
Intrusion analysis
Endpoint incident response (MAC, Linux, and/or Windows)
Malware analysis
Penetration testing
Threat hunting
Information security consulting
Intelligence
Bonus points for experience with big-data processing tools such as Splunk, Humio, Logstash, Kibana, etc.
Strong written and verbal communication skills
Proven ability to convey extremely technical concepts to audiences with varying technical prowess
Strong understanding of MITRE ATT&CK techniques / sub-techniques and ability to articulate TTPs to customers
Proven ability and confidence to tailor communication to a wide range of stakeholders from Security Analysts to CIOs
#LI-JW1
#LI-Remote
#LI-AI1
#LI-CL1