Threat Response Analyst
About the Role:
The CrowdStrike OverWatch Elite Team is seeking a motivated individual with very strong technical skills to work with a team of analysts and technical staff to understand and fulfill client requirements, exchange threat intelligence with clients and internal teams and brief clients on security threats and incident response. The OverWatch Elite team delivers White Glove service to augment OverWatch hunting and provides a personal, focused and attentive experience to customers that expect a top-tier, proactive, professional service.
To be successful in this role, you must be a motivated self-starter, be committed to ongoing self-education, possess strong customer service skills, excellent technical problem-solving skills and be obsessed with threat hunting and disrupting the adversary.
Responsibilities:
Generate high-quality customer deliverables to meet the criteria and expectations of the service such as:
hunting for threats, anomalies and cyber-related disruptions on customer endpoints
performing threat analysis, deep-dives and incident assessments
researching and assessing customer’s threats and IOCs
conducting ongoing customer environment assessments
authoring bespoke Falcon security reports for customer endpoints
holding quarterly customer security report calls
Provide subject matter expertise and insight to clients about industry attack trends and defenses by developing and maintaining deep awareness and understanding of evolving threats, adversaries and intrusion trends
Development and delivery of impactful threat briefings, reporting and presentations to customers by providing actionable intelligence
Collaborate interdepartmental teams to help detect new, interesting or unique threats and mitigations based on hunting observations
Build strong advisory relationships with customers and continuously exceeding client expectations
Guide clients through Threat Response findings and providing subject matter expertise for response activities such as taking remediation actions in situations that require action to be taken
Gather client input and feedback across client base to influence service roadmaps
Key Qualifications
Required:
Trustworthy, self-starter, collaborative, dependable, driven personality
Bachelor’s degree in information security or related discipline or the equivalent of 6 years or more in the industry as job experience
2 or more years of significant client-facing relationship management experience
Prior cyber experience in 4 or more of the following:
active threat hunting (open source or commercial tooling)
intrusion analysis
managed or enterprise information security services
incident response
endpoint forensics
malware analysis
penetration testing
network defense
Bonus points for experience with big-data processing tools such as Splunk, Logstash, Kibana, etc.
Solid understanding of common enterprise technologies, processes and technology
Strong written and verbal communication skills
Proven ability to convey extremely technical concepts to audiences with varying technical prowess
#LI-JW1
#LI-LM1
#LI-Remote