Incident Response Senior Consultant (Remote, JPN)

Senior Consultant

CrowdStrike is looking for highly motivated, self-driven, technical consultants dedicated to making a difference in global security by protecting organizations against the most advanced attackers in the world. Our CrowdStrike Services team offers opportunities to expand your skill set through a wide variety of engagements including front page incident response investigations for organizations you'll find on the annual Fortune 100 list.

Am I a Senior Consultant Candidate?

• Do you find yourself interested in and keeping up with the latest vulnerabilities and breaches?

• Are you self-motivated and looking for an opportunity to rapidly accelerate your skills?

• Do you crave new and innovative work that actually matters to your customer?

• Do you have an Incident Response or Information Security background that you're not fully utilizing?

• Are you capable of leading teams and interacting with customers?

• Do you love working around like-minded, smart people who you can learn from and mentor on a daily basis?

• Speak and write Japanese at a minimum high business Japanese level?

What You'll Do:

• Serve as technical lead incident response engagements.

• Develop and use new methods to hunt for bad actors across large sets of data.

• Work under the direction of outside counsel to conduct intrusion investigations.

• Perform host and/or network-based forensics across Windows, Mac, and Linux platforms.

• Produce high-quality written and verbal reports, presentations, recommendations, and findings to key stakeholders including customer management, regulators, and legal counsel.

• Demonstrate industry thought leadership through blog posts, CrowdCasts, and other public speaking events.

What You'll Need:

Successful candidates will have experience in one or more of the following areas:

• Incident Response: experience conducting or managing incident response investigations for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hacktivists.

• Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise.

• Network Forensic Analysis: strong knowledge of network protocols, network analysis tools like Bro/Zeek or Suricata, and ability to perform analysis of associated network logs.

• Reverse Engineering: ability to understand the capabilities of static and dynamic malware analysis.

• Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations.

• Network Operations and Architecture/Engineering: strong understanding of secure network architecture and strong background in performing network operations.

• Cloud Incident Response: knowledge in any of the following areas: AWS, Azure, GCP incident response methodologies.

• Communications: strong ability to communicate executive and/or detailed level findings to clients; ability to effectively communicate tasks, guidance, and methodology with internal teams.

• Team leadership experience in a matrixed consulting environment.

• Capable of completing technical tasks without supervision.

• Desire to grow and expand both technical and soft skills.

• Strong project management skills.

• Contributing thought leader within the incident response industry.

• Ability to foster a positive work environment and attitude.

• Ability to travel on short notice, up to 30% of the time.

Bonus Points:

• GIAC Certified Incident Handler (GCIH)

• GIAC Certified Forensic Analyst (GCFA) or GCFE

• Certified Information Systems Security Professional (CISSP)

• Certified Ethical Hacker (CEH)

• OSCP / OSCE (Offensive Security certifications for more offensive/technical IR work)

• Cloud incident response (AWS, Azure, GCP)

Education:

BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field. Applicants without a degree but with relevant work experience and/or training will be considered.

Benefits of Working at CrowdStrike:

• Market leader in compensation and equity awards

• Comprehensive physical and mental wellness programs

• Competitive vacation and holidays for recharge

• Paid parental and adoption leaves

• Professional development opportunities for all employees regardless of level or role

• Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections

• Vibrant office culture with world class amenities

• Great Place to Work Certified™ across the globe

CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.

CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.

If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at View email address on click.appcast.io for further assistance.