1396 IT & Software Developer jobs in the US
C / C++ Developer Jobs in the US
C / C++
.NET Developer Jobs in the US
C#.NET
Data Science & Engineering Jobs in the US
Data
Golang Developer Jobs in the US
Golang
Java Developer Jobs in the US
Java
JavaScript Developer Jobs in the US
JavaScript
Mobile app Developer Jobs in the US
Mobile
PHP Developer Jobs in the US
PHP
Python Developer Jobs in the US
Python
Ruby on Rails Developer Jobs in the US
Ruby
SAP Developer Jobs in the US
SAP
System Engineer Jobs in the US
System
DevOps Engineer Jobs in the US
DevOps
IT & ICT Jobs in the US
IT
Database Developer Jobs in the US
Database
QA, Software Tester Jobs in the US
QA, Test
Machine-Learning Developer Jobs in the US
ML, AI
Security Engineer Jobs in the US
Security
Network Engineer Jobs in the US
Network
GameDev Developer Jobs in the US
GameDev
Blockchain Developer Jobs in the US
Blockchain
UI / UX Designer Jobs in the US
UX, UI
Architect Specialist Jobs in the US
Architect
Product / Project Manager Jobs in the US
Business
IT Management Jobs in the US
Manager
IT Support Jobs in the US
Support
Rust Developer Jobs in the US
Rust
Hardware Engineer Jobs in the US
Hardware
No-Code Developer Jobs in the US
No-Code

HadenGrey jobs

CrowdStrike Service Owner

$110,000 - 150,000
HadenGrey
Greenwood Plaza Boulevard 5500, Denver + Remote (US)
$110,000 - 150,000
Company Size icon
Company Size
50-200
Company Type icon
Company Type
Services
Exp Level icon
Exp Level
Senior
Job Type icon
Job Type
Full-Time
Language icon
Language
English
Visa sponsorship icon
Visa sponsorship
No

Requirements

Must:
- We require 8+ years of cybersecurity experience, including at least 5 years of hands-on CrowdStrike Falcon work as an engineer, subject matter expert, or service owner. - We need deep knowledge of the Falcon platform, including Insight (EDR), Prevent (NGAV), Discover, Spotlight, Identity Protection, Cloud Security, LogScale or Next-Gen SIEM, OverWatch, and Falcon Fusion SOAR. - We expect strong detection engineering capability, including custom IOAs, FQL queries, LogScale CQL, Sigma rules, and MITRE ATT&CK mapping. - We require practical incident response leadership using Real Time Response, including custom scripting and large-scale host containment. - We need proficiency with the Falcon API and at least one scripting language, with Python preferred, for automation, integrations, and detection-as-code. - We require experience in a 24x7 service delivery environment such as MSSP, MDR, Falcon Complete, or a large enterprise SOC. - We expect strong client-facing communication skills, including executive-level presentations, QBR leadership, and the ability to translate technical findings into business risk. - We need a solid foundation across Windows, macOS, and Linux endpoints, plus exposure to AWS, Azure, and/or GCP workload protection. - We require at least one current CrowdStrike certification such as CCFA, CCFR, CCFH, or CCFC. - We prefer experience building or scaling a managed CrowdStrike practice within an MSSP or MDR provider. - We value prior exposure to Falcon Complete, OverWatch, or Counter Adversary Operations. - Additional EDR/XDR experience with SentinelOne Singularity, Microsoft Defender for Endpoint, or Palo Alto Cortex XDR is a plus. - Advanced certifications such as CCFC, GCIH, GCFA, GCFE, GNFA, OSCP, CISSP, or CISM are beneficial. - Knowledge of compliance frameworks including NIST CSF, NIST 800-53, ISO 27001, SOC 2, HIPAA, or PCI-DSS is an advantage. - Experience with SOAR platforms beyond Falcon Fusion, such as Tines, Torq, or Splunk SOAR, is desirable. - Kubernetes or container security experience using Falcon Cloud Security is a plus. - ITIL v4 Foundation or an equivalent service management certification is advantageous.

Technologies

API
AWS
Active Directory
Architect
Azure
Cloud
GCP
ITIL
JIRA
Kubernetes
Linux
macOS
Network
PagerDuty
Python

Responsibilities

- We own the design, governance, and ongoing improvement of our managed CrowdStrike Falcon service, including the service catalog, SLAs, runbooks, on-call coverage, and quality measures. - We architect Falcon deployments for new enterprise clients, covering sensor strategy, prevention policy tuning, exclusion standards, host group structure, update rings, and Identity Protection integration with Active Directory and Entra ID. - We develop, refine, and oversee custom IOAs, FQL, and LogScale CQL detections aligned to MITRE ATT&CK, maintaining a high-signal detection library with minimal false positives. - We lead complex incident response efforts, using Real Time Response, custom RTR scripts, host isolation, and Falcon Fusion SOAR playbooks to contain threats. - We conduct proactive threat hunts and adversary emulation exercises to improve detection and response readiness. - We build integrations between Falcon and our wider ecosystem, including Splunk, Microsoft Sentinel, ServiceNow, Jira, PagerDuty, and SOAR platforms such as Tines, Torq, and Falcon Fusion. - We create Python tooling and automation using the Falcon API for bulk actions and detection-as-code workflows. - We lead Quarterly Business Reviews, executive updates, and roadmap discussions with client CISOs and security leadership. - We translate endpoint telemetry into clear risk priorities and practical remediation plans. - We support pre-sales activity by partnering with Sales and Solution Architecture on scoping, technical validation, and proposal development for new CrowdStrike opportunities. - We represent the practice during client discovery sessions and technical proof-of-value discussions. - We mentor Tier 1, Tier 2, and Tier 3 analysts to strengthen team capability and consistency. - We author and maintain runbooks, onboarding guides, and detection standards that shape how the broader team operates. - We collaborate with our Identity, Cloud, and Network Security practice leads to deliver integrated security outcomes across the portfolio.

Description


We are Haden Grey, an MSSP built for the most demanding CISOs, and we are hiring a Senior CrowdStrike Service Owner to lead our managed CrowdStrike Falcon practice from a technical and service-delivery perspective. This is a senior individual contributor position for a deeply technical EDR specialist who will also serve as the client-facing authority for enterprise customers and their security leaders. You will report to the Director of Endpoint Security Services and work closely with our Identity, Cloud, and Network Security practice leads. We offer a full-time remote role with a pay range of $110,000 to $150,000 per year, along with benefits including health insurance, dental insurance, and a 401(k), plus bonus opportunities and yearly pay.
Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️

IT & Software developer jobs in the USDevOps Engineer jobs in the USRemote DevOps Engineer jobs
You can find DevOps salaries in the United States here.

How many DevOps jobs are in the United States?

Currently, there are 1396 DevOps openings. Check also: Cloud jobs, AWS jobs, Azure jobs, GCP jobs, Kubernetes jobs, Docker jobs, Terraform jobs - all with salary brackets.

Is the US a good place for DevOps?

The US is one of the best countries to work as a DevOps. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.

Which companies are hiring for DevOps jobs in the United States?

micro1, Scm Products, Inc., Turing, Exchanger Industries Ltd., Huron Technologies International INC, Connextek, GE Aerospace among others, are currently hiring for DevOps roles in the United States.

The company with most openings is Jobot as they are hiring for 134 different DevOps jobs in the United States. They are probably quite committed to find good DevOps.