Sr. Threat Response Specialist, Falcon Complete (Remote)

CrowdStrike Holdings, Inc.

Job Overview

Location

USA - Remote

Job Type

Full-time

Full Job Description

📋 Description

• Serve as the primary expert on emerging threats for the Falcon Complete Managed Detection and Response (MDR) team, providing real-time guidance during incident investigations involving Advanced Persistent Threats, Organized Crime, and Hacktivists.
• Proactively identify, assess, and mitigate new and evolving threat campaigns by staying current on global threat actor tactics, techniques, and procedures (TTPs), and integrating this intelligence into Falcon Complete’s threat response program.
• Collaborate with CrowdStrike threat intelligence teams to ensure the latest threat data is embedded into detection and response workflows across Endpoint, Identity, Cloud, and NG-SIEM platforms.
• Design and refine detection mechanisms by leveraging threat research to improve detection engineering across EDR and SIEM telemetry, enhancing the accuracy and speed of threat identification.
• Act as the go-to resource for security analysts, detection engineers, intelligence analysts, and automation teams, delivering expert insights on threat behavior, incident remediation, and security best practices.
• Develop and maintain comprehensive knowledge artifacts—including playbooks, response guides, and technical documentation—to support MDR operations and ensure alignment with current threat landscapes and technological advancements.
• Integrate threat intelligence into AI-driven automation systems and tooling, enabling scalable and efficient response capabilities through wiki-based knowledge articles, automated alerts, and AI-assisted analysis.
• Create customized tactical and strategic remediation plans for compromised organizations based on deep analysis of attack vectors and their manifestation in EDR and SIEM logs.
• Educate internal teams on emerging threats, security solution optimizations, and effective response techniques to elevate the collective expertise of the Falcon Complete Security Engineering organization.
• Contribute to organizational knowledge base enhancements by collaborating across teams to ensure accurate, timely, and accessible threat response resources are available to all analysts.
• Utilize scripting languages such as Python and PowerShell to automate threat analysis tasks and enhance operational efficiency in incident response workflows.
• Apply AI and automation tooling in both operational and intelligence contexts to improve threat detection accuracy, reduce mean time to respond, and scale security operations.
• Support incident response activities by analyzing compromised systems, tracing attacker movements, and recommending containment and eradication strategies based on observed adversary behavior.
• Maintain up-to-date expertise in attack vectors across Endpoint, Identity, Cloud, and NG-SIEM environments, ensuring response strategies remain effective against evolving adversary techniques.

🎯 Requirements

• Minimum of 5 years of experience in a response or research-focused security role, with at least 3 years supporting Incident Response, security operations, or MDR teams
• Experience conducting or managing incident response for targeted threats including Advanced Persistent Threats, Organized Crime, and Hacktivists
• Proven experience performing threat research to identify and cluster emerging threat campaigns
• Strong understanding of targeted attacks and ability to create customized tactical and strategic remediation plans for compromised organizations
• Significant experience utilizing cyber threat intelligence in a security operations environment
• Deep understanding of how attack vectors manifest in EDR and SIEM telemetry/logs and how to investigate them
• Knowledge of automation tools and scripting languages (e.g., Python, PowerShell)
• Experience using AI and automation tooling in an operational and intelligence capacity

🏖️ Benefits

• Market leader in compensation and equity awards
• Comprehensive physical and mental wellness programs
• Competitive vacation and holidays for recharge
• Paid parental and adoption leaves
• Professional development opportunities for all employees regardless of level or role
• Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
• Vibrant office culture with world class amenities
• Great Place to Work Certified™ across the globe

Skills & Technologies

Python

Senior

Remote

$125k-180k

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

AI Job Fit Analysis

Pro

See exactly how your profile matches this role — strengths, skill gaps, and what to do about them.

CrowdStrike Holdings, Inc.

Visit Website

About CrowdStrike Holdings, Inc.

CrowdStrike Holdings, Inc. provides cloud-delivered cybersecurity through the Falcon platform, combining next-generation antivirus, endpoint detection and response, threat hunting, and IT hygiene. Its AI-driven analytics correlate trillions of events weekly to identify malware-free intrusions, nation-state actors, and insider threats across endpoints, workloads, and identities. The company sells subscriptions, professional services, and threat intelligence to enterprises worldwide.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.