Sr. Cloud Security Consultant (Remote, DEU)

CrowdStrike is a global leader in cybersecurity. We protect people, processes and technologies that drive modern organizations. Since 2011, our mission has been to stop breaches with the world's most advanced AI-native platform. Our customers span all industries, and they rely on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We are a mission-driven company that values flexibility and autonomy to own one’s career. We seek talented CrowdStrikers with limitless passion, a relentless focus on innovation and a commitment to our customers, our community and each other.

CrowdStrike is looking for highly motivated, self-driven, technical cloud security consultants dedicated to making a difference in global security by protecting organizations against the most advanced adversaries. The Senior Cloud Security Consultant will identify and assess technical risks, providing meaningful and prioritized recommendations to enhance the security posture of cloud environments. The role offers opportunities to expand your skill set through a wide variety of impactful consulting engagements for many of the world’s leading organizations.

• Do you find yourself interested in and keeping up with the latest cloud platform feature announcements, as well as cloud vulnerabilities and breaches?
• Are you self-motivated and looking for an opportunity to rapidly accelerate your skills?
• Do you crave new and innovative work that actually matters to your customer?
• Do you have a technical Information Security background that you're not fully utilising?
• Are you capable of operating as an individual contributor and occasionally leading teams and interacting with customers?
• Do you love working around like-minded, smart people who you can learn from and mentor on a daily basis?

• Lead engagements and perform technical analysis looking for high-risk configurations, attack paths, and architectural flows that may expose cloud resources to cyber threats.
• Produce high-quality written and verbal reports, presentations, recommendations, and findings to key stakeholders including technical managers, security leaders, and legal.
• Contribute to tool development and methodologies to continuously improve and evolve service offerings.

Successful candidates will have skills and experience in one or more of the following areas:

• Cloud Knowledge: An in-depth understanding of one or more cloud platforms (AWS, Azure, and GCP), with a focus on identity, security, networking, compute, serverless, and storage services.
• Architecture: Knowledge of cloud architecture and design principles, including security and resiliency considerations.
• Logging & Monitoring: Understanding of logging, monitoring, and alerting to detect unauthorized access to cloud resources.
• Automation: Ability to create search queries and dashboards in analytics platforms and write automation scripts in Python or another scripting language.
• Protocols: Knowledge of API authentication and authorization, including identity protocols such as OAuth, SAML, and OpenID Connect.
• DevSecOps: Familiarity with modern cloud workloads and deployment models - DevSecOps, CI/CD pipelines, containers, and related security defenses and pitfalls.
• Configuration Analysis: Hands-on experience reviewing cloud security configurations, including configuration chaining and attack path mapping.
• Communication: Strong ability to communicate analysis findings to clients, including technical and executive audiences, and legal counsel.

• Capable of completing technical tasks without supervision.
• Desire to grow and expand both technical and soft skills.
• Strong project management skills.
• Contributing thought leader within the cloud security/incident response industry.
• Ability to foster a positive work environment and attitude.

• Cloud Incident Response: knowledge in AWS, Azure, M365, or GCP incident response methodologies.
• Incident Remediation: strong understanding of targeted attacks and able to create customised tactical and strategic remediation plans for compromised organizations related to major cloud platforms.
• Kubernetes (K8s): understanding of Kubernetes control plane and DevSecOps practices.

BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field. Applicants without a degree but with relevant work experience and/or training will be considered.

Holders of CISSP, CISA, CISM, CCSP, or any practitioner or security certifications in AWS, Azure and GCP or other cloud/SaaS platforms may be considered in lieu of or in addition to a degree.

#LI-AL1

#LI-Remote

• Remote-friendly and flexible work culture
• Market leader in compensation and equity awards
• Comprehensive physical and mental wellness programs
• Competitive vacation and holidays for recharge
• Paid parental and adoption leaves
• Professional development opportunities for all employees regardless of level or role
• Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
• Vibrant office culture with world class amenities
• Great Place to Work Certified™ across the globe

CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.

CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions -- including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs -- on valid job requirements.

If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.