Partner with CrowdStrike and BlueVoyant MDR teams to develop malware analysis processes that enhance managed detection and response services. * Provide technical mentorship and guidance to analysts ...
Partner with CrowdStrike and BlueVoyant MDR teams to develop malware analysis processes that enhance managed detection and response services. * Provide technical mentorship and guidance to analysts ...
Partner with CrowdStrike and BlueVoyant MDR teams to develop malware analysis processes that enhance managed detection and response services. * Provide technical mentorship and guidance to analysts ...
Partner with CrowdStrike and BlueVoyant MDR teams to develop malware analysis processes that enhance managed detection and response services. * Provide technical mentorship and guidance to analysts ...
Director, Malware Analysis, Threat Intelligence
Washington, DC · On-site
$200 - $240/hr
Partner with CrowdStrike and BlueVoyant MDR teams to develop malware analysis processes that enhance managed detection and response services. * Provide technical mentorship and guidance to analysts ...
Director, Malware Analysis, Threat Intelligence
Washington, DC · On-site
$200 - $240/hr
Partner with CrowdStrike and BlueVoyant MDR teams to develop malware analysis processes that enhance managed detection and response services. * Provide technical mentorship and guidance to analysts ...
Senior Security Tools Engineer
Camp Springs, MD · On-site
$120K - $164K/yr
Hands-on experience with tools and platforms such as Splunk, Tenable Vulnerability Management, CrowdStrike, ForeScout, Zscaler, AWS, Jenkins, Sumo Logic, Ansible, Active Directory, VMware, and Cisco ...
Senior Security Tools Engineer
Camp Springs, MD · On-site
$120K - $164K/yr
Hands-on experience with tools and platforms such as Splunk, Tenable Vulnerability Management, CrowdStrike, ForeScout, Zscaler, AWS, Jenkins, Sumo Logic, Ansible, Active Directory, VMware, and Cisco ...
Senior Security Tools Engineer
$120K - $164K/yr
Hands-on experience with tools and platforms such as Splunk, Tenable Vulnerability Management, CrowdStrike, ForeScout, Zscaler, AWS, Jenkins, Sumo Logic, Ansible, Active Directory, VMware, and Cisco ...
Senior Security Tools Engineer
$120K - $164K/yr
Hands-on experience with tools and platforms such as Splunk, Tenable Vulnerability Management, CrowdStrike, ForeScout, Zscaler, AWS, Jenkins, Sumo Logic, Ansible, Active Directory, VMware, and Cisco ...
Principal Consultant - SIEM | Remote, USA
Arlington, VA · Remote
$134K - $184K/yr
Lead SIEM platform design, deployment, migration, and optimization efforts across Google SecOps, Microsoft Sentinel, CrowdStrike NGSIEM, and Palo Alto XSIAM. Assist with development of SIEM and SOC ...
Principal Consultant - SIEM | Remote, USA
Arlington, VA · Remote
$134K - $184K/yr
Lead SIEM platform design, deployment, migration, and optimization efforts across Google SecOps, Microsoft Sentinel, CrowdStrike NGSIEM, and Palo Alto XSIAM. Assist with development of SIEM and SOC ...
Splunk, Palo Alto Networks, or CrowdStrike. This is a remote role with opportunities to work across distributed teams in a fast-paced cybersecurity environment. Work you'll do As a SIEM Engineer on ...
Splunk, Palo Alto Networks, or CrowdStrike. This is a remote role with opportunities to work across distributed teams in a fast-paced cybersecurity environment. Work you'll do As a SIEM Engineer on ...
Senior Security Tools Engineer
$120K - $164K/yr
Hands-on experience with tools and platforms such as Splunk, Tenable Vulnerability Management, CrowdStrike, ForeScout, Zscaler, AWS, Jenkins, Sumo Logic, Ansible, Active Directory, VMware, and Cisco ...
Quick apply
Senior Security Tools Engineer
$120K - $164K/yr
Hands-on experience with tools and platforms such as Splunk, Tenable Vulnerability Management, CrowdStrike, ForeScout, Zscaler, AWS, Jenkins, Sumo Logic, Ansible, Active Directory, VMware, and Cisco ...
Enterprise Cybersecurity Analyst
Mclean, VA · On-site
$99K - $225K/yr
Support mission-critical cybersecurity operations for Booz Allen's Impact Level 5 (IL5) environment by administering advanced security tools, including CrowdStrike Falcon EDR/AV, Tenable Cloud ...
Enterprise Cybersecurity Analyst
Mclean, VA · On-site
$99K - $225K/yr
Support mission-critical cybersecurity operations for Booz Allen's Impact Level 5 (IL5) environment by administering advanced security tools, including CrowdStrike Falcon EDR/AV, Tenable Cloud ...
Desktop Engineer - Tier 1
Washington, DC · On-site
$30/hr
Install and configure Microsoft 365 and CrowdStrike on devices pending upgrade. Tier 2 Support & Troubleshooting * Serve as an escalation point for issues beyond Tier 1 capability. * Troubleshoot ...
Desktop Engineer - Tier 1
Washington, DC · On-site
$30/hr
Install and configure Microsoft 365 and CrowdStrike on devices pending upgrade. Tier 2 Support & Troubleshooting * Serve as an escalation point for issues beyond Tier 1 capability. * Troubleshoot ...
Enterprise Cybersecurity Analyst
Mclean, VA · On-site +1
$99K - $225K/yr
Support mission-critical cybersecurity operations for Booz Allen's Impact Level 5 (IL5) environment by administering advanced security tools, including CrowdStrike Falcon EDR/AV, Tenable Cloud ...
Enterprise Cybersecurity Analyst
Mclean, VA · On-site +1
$99K - $225K/yr
Support mission-critical cybersecurity operations for Booz Allen's Impact Level 5 (IL5) environment by administering advanced security tools, including CrowdStrike Falcon EDR/AV, Tenable Cloud ...
Splunk, Palo Alto Networks, or CrowdStrike. This is a remote role with opportunities to work across distributed teams in a fast-paced cybersecurity environment. Work you'll do As a SIEM Engineer on ...
Splunk, Palo Alto Networks, or CrowdStrike. This is a remote role with opportunities to work across distributed teams in a fast-paced cybersecurity environment. Work you'll do As a SIEM Engineer on ...
Enterprise Cybersecurity Analyst
Mclean, VA · On-site
$99K - $225K/yr
Support mission-critical cybersecurity operations for Booz Allen's Impact Level 5 (IL5) environment by administering advanced security tools, including CrowdStrike Falcon EDR/AV, Tenable Cloud ...
Enterprise Cybersecurity Analyst
Mclean, VA · On-site
$99K - $225K/yr
Support mission-critical cybersecurity operations for Booz Allen's Impact Level 5 (IL5) environment by administering advanced security tools, including CrowdStrike Falcon EDR/AV, Tenable Cloud ...
IT Procurement Specialist
Columbia, MD · On-site
Own relationships with Microsoft CSP/Pax8, CrowdStrike, Adobe, Bluebeam, SonicWall, Cisco Meraki, Check Point, and other providers. * Negotiate renewals, multi-year agreements, co-term dates, and ...
IT Procurement Specialist
Columbia, MD · On-site
Own relationships with Microsoft CSP/Pax8, CrowdStrike, Adobe, Bluebeam, SonicWall, Cisco Meraki, Check Point, and other providers. * Negotiate renewals, multi-year agreements, co-term dates, and ...
Systems Engineer Principal with Security Clearance
Newington, VA · On-site
$155K - $175K/yr
Experience with endpoint security tools such as CrowdStrike or Trellix * Knowledge of Active Directory, DNS, and DHCP * Experience with application packaging tools such as Liquidware FlexApp ...
Systems Engineer Principal with Security Clearance
Newington, VA · On-site
$155K - $175K/yr
Experience with endpoint security tools such as CrowdStrike or Trellix * Knowledge of Active Directory, DNS, and DHCP * Experience with application packaging tools such as Liquidware FlexApp ...
Senior DevSecops & IAM Engineer
Linthicum, MD · On-site
$113K - $155K/yr
Deploy and manage CNAPP and CSPM tools such as Wiz, Prisma Cloud, Ermetic, and CrowdStrike for continuous security posture monitoring. * Implement RBAC, MFA, and Zero Trust principles to strengthen ...
Quick apply
Senior DevSecops & IAM Engineer
Linthicum, MD · On-site
$113K - $155K/yr
Deploy and manage CNAPP and CSPM tools such as Wiz, Prisma Cloud, Ermetic, and CrowdStrike for continuous security posture monitoring. * Implement RBAC, MFA, and Zero Trust principles to strengthen ...
Workstation Endpoint Engineer II
$60K - $70K/yr
EDR deployment via Defender for Endpoint or CrowdStrike. * EDR deployment via Defender for Endpoint or CrowdStrike * Virtualization management using Azure Virtual Desktop or VMware. Compensation ...
Workstation Endpoint Engineer II
$60K - $70K/yr
EDR deployment via Defender for Endpoint or CrowdStrike. * EDR deployment via Defender for Endpoint or CrowdStrike * Virtualization management using Azure Virtual Desktop or VMware. Compensation ...
Splunk, Carbon Black, Cylance, McAfee, Tenable, FireEye, CrowdStrike, ELK. * SANS/GIAC: GCIH, GREM, GCED, GCDA. * Exposure to scripting or automation (e.g., Python, PowerShell) to improve SOC ...
Splunk, Carbon Black, Cylance, McAfee, Tenable, FireEye, CrowdStrike, ELK. * SANS/GIAC: GCIH, GREM, GCED, GCDA. * Exposure to scripting or automation (e.g., Python, PowerShell) to improve SOC ...
Lead the engineering, deployment, tuning, and scaling of CrowdStrike Falcon and/orMicrosoft Defender for Endpoint platforms, including EDR, hostfirewall, identity protection, policy management ...
Lead the engineering, deployment, tuning, and scaling of CrowdStrike Falcon and/orMicrosoft Defender for Endpoint platforms, including EDR, hostfirewall, identity protection, policy management ...
ServiceNow CMDB Technical Architect
Dulles, VA · Remote
$73 - $91.75/hr
Architect and govern CMDB data ingestion and integrations from multiple sources (e.g., ServiceNow Discovery, SCCM, Intune, JAMF, Tanium, CrowdStrike, Cloud platforms, third-party discovery tools)
Quick apply
ServiceNow CMDB Technical Architect
Dulles, VA · Remote
$73 - $91.75/hr
Architect and govern CMDB data ingestion and integrations from multiple sources (e.g., ServiceNow Discovery, SCCM, Intune, JAMF, Tanium, CrowdStrike, Cloud platforms, third-party discovery tools)
Crowdstrike information
Does CrowdStrike pay well?
Is it hard to get a job at CrowdStrike?
What is a CrowdStrike job?
A CrowdStrike job typically refers to a role at CrowdStrike, a cybersecurity company specializing in endpoint protection, threat intelligence, and cloud security. Employees work in various departments, including engineering, threat research, sales, and customer support, to enhance cybersecurity solutions. Common roles include cybersecurity analysts, incident responders, SOC analysts, and software engineers. These positions often involve working with advanced security technologies to protect organizations from cyber threats. CrowdStrike offers both remote and in-office opportunities, depending on the role.
Why did CrowdStrike fall?
What does a typical day look like for a CrowdStrike Security Analyst?
As a CrowdStrike Security Analyst, your day usually involves monitoring security alerts, analyzing suspicious activity, and responding to potential threats using advanced cybersecurity tools and platforms. You may participate in team meetings to discuss new attack trends and coordinate with IT staff to enhance security measures. The role often includes preparing detailed incident reports and working with colleagues to improve threat detection processes. You'll also spend time on continual learning and updating your skills, as cybersecurity is a rapidly evolving field.
What exactly does CrowdStrike do?
Why did Elon delete CrowdStrike?
Is CrowdStrike laying off employees?
Is CrowdStrike a good employer?
What is the CrowdStrike controversy?
What are the key skills and qualifications needed to thrive in the Crowdstrike position, and why are they important?
To thrive as a CrowdStrike Security Analyst, you need a solid foundation in cybersecurity principles, threat analysis, and incident response, typically supported by a degree in computer science or a related field. Familiarity with security information and event management (SIEM) platforms, endpoint detection and response (EDR) tools like CrowdStrike Falcon, and certifications such as CISSP or CEH are often expected. Exceptional problem-solving skills, attention to detail, and the ability to communicate technical information clearly are important soft skills for success. These competencies are crucial for effectively identifying, investigating, and mitigating cybersecurity threats in a dynamic work environment.

Full-time
Medical, Dental, Vision, Life, Retirement, PTO
This job post has expired 1 day ago. Applications are no longer accepted.
Job description
Kroll is seeking an experienced and innovative Malware Analysis Director to build and advance our malware analysis capabilities in support of our global Incident Response (IR), Managed Detection and Response (MDR), and Cyber Threat Intelligence (CTI) practices. This role will be responsible for developing automated malware analysis workflows and tooling that empower frontline responders, conducting deep technical investigations into sophisticated malware campaigns, and producing actionable intelligence that helps clients understand and mitigate evolving cyber threats.
The successful candidate will serve as a technical leader and trusted advisor, partnering closely with Incident Response consultants, Threat Intelligence analysts, CrowdStrike and BlueVoyant MDR teams, and other cyber specialists to improve Kroll's ability to identify, analyze, and respond to advanced malware threats. This individual will also contribute to Kroll's thought leadership efforts through technical blogs, research reports, threat advisories, and client-facing intelligence products.
This is a unique opportunity to shape the strategic direction of malware analysis within Kroll, develop new client-facing capabilities, and drive innovation across the cyber risk organization.
Key Responsibilities:
- Develop and maintain automated malware analysis workflows, tooling, and enrichment capabilities to accelerate incident investigations.
- Perform advanced static and dynamic malware analysis, reverse engineering, and behavioral analysis of malware affecting clients.
- Support global Incident Response engagements through malware triage, root cause analysis, attribution support, and threat actor investigations.
- Research emerging malware families, intrusion techniques, and threat actor tradecraft.
- Author technical research reports, threat intelligence products, blogs, and client advisories.
- Partner with CrowdStrike and BlueVoyant MDR teams to develop malware analysis processes that enhance managed detection and response services.
- Provide technical mentorship and guidance to analysts across CTI, MDR, and Incident Response teams.
- Develop detection opportunities, indicators of compromise (IOCs), and analytical methodologies based on malware findings.
- Collaborate with internal malware analysis practitioners and external industry peers to establish best practices and improve investigative capabilities.
- Evaluate and implement new technologies, sandboxes, automation platforms, and AI-enhanced analytical workflows to improve operational efficiency.
- Contribute to the development of new cyber intelligence and malware-focused service offerings.
Required Qualifications:
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, or a related field, or equivalent practical experience.
- 5+ years of experience in malware analysis, reverse engineering, digital forensics, incident response, threat intelligence, or a related cybersecurity discipline.
- Strong understanding of Windows internals and common malware execution techniques.
- Experience performing static and dynamic malware analysis in enterprise environments.
- Experience supporting Incident Response investigations involving malware, ransomware, or advanced persistent threats (APTs).
- Strong technical writing skills with the ability to communicate complex findings to both technical and executive audiences.
- Experience creating actionable intelligence products, technical reports, and client deliverables.
- Ability to independently conduct research and solve complex technical challenges.
- Strong collaboration and stakeholder engagement skills.
Preferred Technical Skills
Malware Analysis & Reverse Engineering
- Proficiency with:
- IDA Pro
- Ghidra
- Rust
- x64dbg
- WinDbg
- Binary Ninja
- Cutter/Rizin
- Experience analyzing:
- Ransomware
- Loaders and downloaders
- Info-stealers
- Banking trojans
- Linux malware
- Web shells
- Nation-state malware
- Advanced persistent threat toolsets
Programming & Automation
- Strong scripting and development skills in:
- Python
- PowerShell
- C#
- JavaScript
- Go (preferred)
- Experience building automated analysis pipelines and malware triage workflows.
- Familiarity with API integrations and workflow orchestration.
Threat Intelligence & Detection
- Knowledge of:
- MITRE ATT&CK
- YARA
- Sigma
- STIX/TAXII
- IOC management
- Experience creating:
- Detection content
- YARA rules
- Behavioral signatures
- Threat hunting methodologies
Security Platforms
- Experience working with:
- CrowdStrike Falcon
- Microsoft Defender
- SentinelOne
- BlueVoyant MDR
- Splunk
- Microsoft Sentinel
- Elastic
- Mandiant Advantage or similar threat intelligence platforms
Cloud & Enterprise Technologies
- Familiarity with:
- AWS
- Azure
- Google Cloud Platform
- Active Directory
- Entra ID
- Microsoft 365
- Enterprise network architectures
Preferred Certifications
- GREM (GIAC Reverse Engineering Malware)
- GCFA (GIAC Certified Forensic Analyst)
- GCTI (GIAC Cyber Threat Intelligence)
- GCIA (GIAC Certified Intrusion Analyst)
- CISSP
- CARTP, CRTO, or equivalent offensive security certifications
- Relevant CrowdStrike certifications
What Success Looks Like
Within the first 12-18 months, the successful candidate will have:
- Established automated malware analysis capabilities that measurably improve Incident Response efficiency.
- Built repeatable processes to support malware investigations across CTI, IR, and MDR teams.
- Produced impactful malware research and thought leadership content that enhances Kroll's market reputation.
- Improved support for clients leveraging CrowdStrike and BlueVoyant MDR services.
- Developed new analytical capabilities that increase visibility into sophisticated malware threats and drive better client outcomes.
- Become the technical focal point for malware-related investigations across Kroll's cyber risk business.
Your recruiter will be happy to walk you through your U.S.-specific benefits, which include:
- Healthcare Coverage: Comprehensive medical, dental, and vision plans.
- Time Off and Leave Policies: Generous paid time off (PTO), paid company holidays, generous parental and family leave.
- Protective Insurances: Life insurance, short- and long-term disability coverage, and accident protection.
- Compensation and Rewards: Competitive salary structures, performance-based incentives, and merit-based compensation reviews.
- Retirement Plans: 401(k) plans with company matching.
Please note that benefits may vary by region, department and role. We encourage you to speak with your recruiter to learn more about the specific benefits available for your position.
About Kroll
Join the global leader in risk and financial advisory solutions-Kroll. With a nearly century-long legacy, we blend trusted expertise with cutting-edge technology to navigate and redefine industry complexities. As a part of One Team, One Kroll, you'll contribute to a collaborative and empowering environment, propelling your career to new heights. Ready to build, protect, restore and maximize our clients' value? Your journey begins with Kroll.
In order to be considered for a position, you must formally apply via careers.kroll.com.
We are proud to be an equal opportunity employer and will consider all qualified applicants regardless of gender, gender identity, race, religion, color, nationality, ethnic origin, sexual orientation, marital status, veteran status, age or disability.
The current salary range for this position is $200,000 to $240,000
#DNI
About Kroll
Sourced by ZipRecruiter
Industry
Business management consulting
Company size
5,001 - 10,000 Employees
Headquarters location
New York, NY, US
Year founded
1932