CrowdStrike Falcon Platform Services Cybersecurity Engineer – NG-SIEM Focus - Remote (USA)

About us: At Echelon Risk + Cyber, we believe in defending the basic human right to security and privacy. We are looking for an exceptional SIEM Engineer to join our Managed Security Services team with specialized expertise in CrowdStrike's Next-Gen SIEM platform (powered by LogScale, formerly Humio). The engineer will work with clients of various industries, sizes, and composition.

Our next team member will be ready to roll up their sleeves and identify opportunities for our clients and for Echelon internally with unquestioned integrity. This team member will be passionate about cybersecurity and ready to use their knowledge to enhance the security posture of our clients and work alongside their Echelon team members to build creative solutions.

At Echelon, we believe in continually Turning-Pro. You will have the opportunity to engage with systems that are at the cutting edge of technology and team members that will challenge you with meaningful work. We allow our team members to build from the ground up and make an impact across the organization.

What You Will Do:

• Implement SIEM solutions, specifically CrowdStrike's Falcon Next-Gen SIEM and LogScale, including log configuration and ingestion, tool configuration, software and appliance deployment, and alert, dashboard, and parser creation and tuning.
• Support SOC efforts using MDR/EDR/SIEM platforms to detect, investigate and analyze events from CrowdStrike Falcon solutions and other security tools.
• Collaborate with client's team to develop and implement security monitoring strategies and improve incident response processes.
• Create and maintain documentation for security procedures, including detailed reports and analysis.
• Develop and define queries using the Falcon LogScale query language to detect anomalies and security threats.
• Deliver exceptional client service, including communicating with clients throughout the project life cycle to better understand client needs.
• Manage several engagements at once while remaining highly responsive and ensuring all deadlines are met.

Your knowledge, skills, and abilities:

• 4+ years of experience as a SIEM Engineer or similar role (e.g. SOC Engineer, Security Engineer). Next-Gen SIEM/LogScale experience is required.
• Hands on experience with other security tooling and CrowdStrike Falcon modules, such as, EDR/MDR, Cloud, Identity, CSPM, Vulnerability Management, Email Security, etc.

• Hands on experience with design and implementation of secure cloud policies and controls (Azure, AWS, and GCP).

• Degree in computer science, information security, or related discipline, or equivalent working experience with increasing responsibility and complexity.
• Hands-on experience with CrowdStrike Falcon LogScale, including tool administration and CrowdStrike Query Language (CQL) proficiency.
• Trained in the operation of CrowdStrike Falcon. One or more of the following CrowdStrike certifications:
• CrowdStrike Certified Falcon Administrator (CCFA)
• CrowdStrike Certified SIEM Engineer (CCSE)
• CrowdStrike Certified Identity Specialist (CCIS)
• CrowdStrike Certified Cloud Specialist (CCCS)
• CrowdStrike Certified Falcon Responder (CCFR)
• CrowdStrike Certified Falcon Hunter (CCFH)
• In-depth knowledge of security monitoring, incident response, and threat hunting techniques.
• Familiarity with security solutions and concepts such as SIEM, EDR, IDS/IPS, and Firewall.
• Familiarity with data management platforms including Cribl.
• Familiarity with common log formats and regular expressions.
• Strong attention to detail and superior analytical, technical, and problem-solving skills.
• Applicants must have authorization to work in the United States without current or future visa sponsorship.

Why Echelon?

We are committed to creating an inclusive environment for our team with unquestioned integrity. If you have a special need that requires accommodation, please let your recruiter know. One of our core values is "People with Personality" and we want to allow you the space to bring your full self to work.

We currently offer the following benefits:

• Access to medical, dental, and vision insurance through Cigna, with the majority of the employee cost covered by the employer.
• Employer funding to HSA accounts and FSA access.
• Access to a 401(k) through Vanguard with a guaranteed employer contribution
• Flexible vacation policy that allows you to manage your schedule and rest and recharge when you need to
• 11 holidays with flexibility based on what is important for you and those you love.
• Family-friendly benefits, extended parental leave for when you need to spend critical time with new family members, employer-paid short-term and long-term disability, employer-paid life insurance, and access to additional life insurance, hospital coverage, accidental coverage, discounted mental health support, and more
• Support on individual development through certifications, continued learning, conferences, and more

We value a diverse workforce and a culture of inclusivity and belonging. All employment decisions shall be made without regard to age, race, creed, color, religion, gender, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Echelon Risk + Cyber is an Equal Opportunity Employer.