CSPM Security Engineer 2

Summary

Join New Era Technology as a Senior Security Engineer to support a large information security program. You will focus on deploying and connecting CrowdStrike CSPM agents on Kubernetes clusters, configuring App Defense policies, and integrating with Falcon Horizon for EASM and SSPM across 7 business units. Responsibilities include designing system engineering diagrams, defining implementation configurations, developing change control plans, automating deployments via IaC, configuring CrowdStrike App Defense policies, and integrating with SIEM tools. You will also onboard SaaS applications, assist with metrics reporting and automation, and maintain documentation. This role requires 2-5+ years of cyber and information security experience, expertise in CrowdStrike CSPM and Kubernetes, and strong skills in documentation, communication, and collaboration.

Requirements

• 2-5+ years of cyber and information security and cloud security engineering experience
• 2-5+ years of CrowdStrike CSPM (Falcon Spotlight, Falcon Discover for Cloud, Falcon Horizon, Falcon Identity, and Falcon Adaptive Shield with a focus on Kubernetes platform protection, Falcon App Defense policy configuration, and Falcon Horizon) engineering and implementation experience
• Expert in CrowdStrike CSPM, Kubernetes, Application Security Posture Management (ASPM), External Attack Surface Management (EASM), SaaS Security Posture Management (SSPM) and EDR/CDR/MDR integration skills in deployment of Falcon agents and policy management on cloud service provider platforms
• Azure Sentinel connector implementation, consolidation and maintenance skills required
• Needs ability to integrate data source metrics into consolidated dashboards & reports
• Must be able to identify applicable best practices, standards and document the implementation
• Requires knowledge of endpoint / cloud automation tools utilized by the IT team for automation of agent deployment and remediation
• Requires metric reporting and automation skills as well as procedures for continued operation/maintenance
• Subject matter expert in Sentinel connectivity, log integration, metrics development and automation of reporting and dashboards
• Must be able to create and maintain documentation on the implementation and operational/maintenance processes
• Skilled in extracting configuration compliance metrics and automation of reporting and dashboards
• Ability to explain and write technical details to a non-technical audience and vice versa
• Ability to work autonomously and under pressure
• Ability to influence others and demonstrate leadership
• Excellent attention to detail
• Strong organizational skills
• Excellent analytical skills
• Excellent documentation skills; demonstrated proficiency in Microsoft Office including Word, Excel and PowerPoint
• Collaborative team worker – both in person and virtually using MS Teams or similar
• Ability to work as liaison between business and information security / information technology
• Flexibility to accommodate working across different time zones
• Excellent interpersonal communication skills with strong spoken and written English
• Business outcomes mindset
• Solid balance of strategic thinking with detail orientation
• Self-starter, ability to take initiative

Responsibilities

• Take solution architecture control designs and create system engineering diagrams for deployment to cloud service providers platform
• Define implementation configurations for deployment to cloud service providers and on-premise IT environments
• Develop change control, implementation and backout plans
• Automate via Infrastructure as Code (IaC) tools and implement CrowdStrike CSPM across prioritized cloud service providers via approved change control
• Configure CrowdStrike App Defense policies with testing and approved change control
• Link cloud-based and on-premise Falcon sensor agents to Horizon and integrate into Falcon Discover and Falcon Overwatch for cloud asset discovery and threat hunting
• Onboard SaaS applications to Falcon Horizon
• Assist with implementation of metrics reporting and automation as well as documenting procedures for continued operation/maintenance
• Assist with integration into SIEM tool (e.g., Azure Sentinel, CrowdStrike NG-SIEM)

Preferred Qualifications

• Cybersecurity certifications such as CISSP, CISM a plus
• Experience working at a company with a global footprint and a large enterprise environment