Identity Security Engineer – ITDR, CSPM
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
CrowdStrike Identity Security Engineer managing ITDR and CSPM capabilities for a federal agency. Leading threat detection and response efforts with extensive CrowdStrike platform experience.
Responsibilities:
- Own end-to-end strategy, implementation, and operational health of CrowdStrike Falcon Identity Protection and the CSPM capabilities within CrowdStrike Cloud Security
- Proactively identify identity-based threats, misconfigurations, and cloud security gaps; drive remediation to closure in accordance with client policies and procedures
- Configure, tune, and maintain identity protection policies, IOM and IOA policies, and risk-based authentication controls
- Serve as the escalation point and trusted technical advisor to client leadership on identity and cloud security matters
- Develop runbooks, detection logic, and automation to reduce manual effort and improve response times
- Monitor the threat landscape and translate emerging risks into actionable hardening recommendations
- Coordinate and lead governance calls with stakeholders; produce agenda, notes, and follow-up actions independently
- Partner with other cybersecurity teams to integrate CrowdStrike telemetry into broader security operations
- Produce metrics, dashboards, and executive-level reporting on identity and cloud security posture
- Apply deep knowledge of identity-based attack techniques — including lateral movement, credential theft, Kerberoasting, and pass-the-hash — to inform detection and response strategy
Requirements:
- 7+ years of cybersecurity experience with a minimum of 2–3 years of hands-on administration of the CrowdStrike Falcon platform
- Demonstrated expertise with CrowdStrike Falcon Identity Protection, including policy configuration, threat detection, and conditional access
- Strong working knowledge of CrowdStrike Cloud Security, specifically CSPM
- Deep understanding of identity and access management concepts: Active Directory, Azure AD/Entra ID, LDAP, Kerberos, SAML, and OAuth
- Hands-on cloud security experience with Microsoft Azure including IAM, network security, and posture management
- Solid understanding of privileged access management and identity-based attack techniques (lateral movement, credential theft, Kerberoasting, pass-the-hash)
- Proven ability to work autonomously, set priorities, and drive outcomes without close supervision
- Strong written and verbal communication skills, including ability to explain technical risk to non-technical stakeholders
- Background in consulting or client-facing delivery roles
- Bachelor's degree in a related field or equivalent practical experience (4 additional years of relevant experience)
- At least one of the following active certifications: CWNE, CNDA (EC-Council), CEH (EC-Council), GPPA (GIAC), GCUX (GIAC), GCWN (GIAC), GMON (GIAC), GSE (GIAC), ITIL v3 Foundations, CCSP (ISC2), CISSP (ISC2), CISSP-ISSAP (ISC2), CISSP-ISSEP (ISC2), SSCP (ISC2), GWEB (GIAC), GISF (GIAC), GISP (GIAC), GSSP-.NET (GIAC), GSSP-JAVA (GIAC), GSEC (GIAC), or GSLC (GIAC)
- US Citizenship or Permanent Residency required; must be eligible for and willing to obtain a public trust clearance
- All work must be performed within the continental United States
Benefits:
- Medical — Multiple POS health plan options including an HSA-compatible plan
- Dental — PPO coverage for preventive, basic, and major services
- Vision — Annual exam, frames, lenses, and contact lens allowance
- 401(k) — Employer match up to 5% of eligible compensation
- PTO — 15–25 days annually based on tenure
- Paid Federal Holidays — All 11 federal holidays observed
Similar Jobs
Contract Security, Compliance, Access Analyst
Program Analyst Senior managing compliance and security operations for IHS Electronic Health Records Modernization program. Collaborating with security teams and ensuring personnel access policies are met.
AWS Cloud Security, ICAM Specialist
AWS Cloud Security and ICAM Specialist supporting Case Management Modernization for the U.S. Courts. Designing and managing authentication frameworks within cloud environments.
Infrastructure Security Team Lead
Lead the Infrastructure Security Team at SOFTSWISS, an international iGaming company. Responsible for defining security strategies, priorities, and team development in a remote setting.
Senior Analyst, Information Security Compliance
Senior Analyst for managing information security compliance initiatives at Kontoor Brands. Collaborating with various teams to support regulatory compliance across iconic denim brands.
Corporate Security Engineer – IAC & Automation
Corporate Security Engineer leading design and optimization of security infrastructure at OnePay. Focusing on automation, data protection, and collaboration across IT and security teams.
Senior Manager – Offensive Security
Senior Manager leading offensive security services at Cyber Advisors, focusing on threat-driven risk assessments and remediation activities. Mentoring teams and enhancing security methodologies.
Senior Software Developer, Application Security
Senior Software Developer focusing on Application Security for healthcare technology projects. Responsible for implementing secure development practices and identifying security risks.
Ingeniero de Seguridad
Security Engineer at Stefanini with focus on security controls, incident responses, and compliance. Requires 4-6 years of experience in similar roles with strong technical skills.
Senior Application Security Architect – AppSec
Senior Security Architect at Stone Tech focusing on integrating security into application development lifecycle. Collaborating with development teams to prevent vulnerabilities and enhance security measures.
Senior Security & Compliance Analyst
Senior Security & Compliance Analyst at Headspace ensuring security capabilities and adherence to compliance frameworks. Collaborating with cross-functional teams to mitigate risks in technology stack.
IT and Information Security Coordinator
IT and Information Security Coordinator at Tenchi managing security and IT support roles. Focused on Third-Party Cyber Risk Management with a dedicated team across multiple countries.
Senior Enterprise Architect, Security
Senior or Principal Enterprise Architect at Workday leading security-focused strategic conversations with customers. Using deep technology expertise to translate complex concepts into clear business outcomes.
Infrastructure Security Engineer, Secret Clearance
Infrastructure Security Engineer managing security for Protected B classified environments. Responsible for implementing security controls for cloud deployments and ensuring compliance with Canadian government standards.
Learning Facilitator, Security and Property Protection
WBS TRAINING employee representing the area of security and protective services. Focusing on competency development of course participants in a home office setting.
Security Advisor – Control Assessor
Security Advisor performing control gap assessments and advising on compliance in cybersecurity. Collaborating with clients to improve security measures and deliver tailored solutions.
Vice President – Technology and Security
Vice President of Technology and Security leading the technology strategy at NSTXL. Overseeing cybersecurity, AI strategy, and enterprise systems for government and defense environments.
Identity Security Manager – GOV
Identity Security Manager leading IAM and PAM operations for PNC's secure payment integration technology. Overseeing access management and driving continuous improvement in security processes.
Identity & Devices Security Architect – Client Consulting
Security Architect at Cyclotron designing Microsoft 365 Identity and Device Management tools. Collaborate with clients to improve security posture across Microsoft ecosystems.
Director of AI Security
Senior Leader for Securing AI responsible for defining and executing AI security strategy. Overseeing risk management for AI systems across the enterprise for leading healthcare technologies.
Cybersecurity Engineer II
Cybersecurity Engineer II responsible for security oversight and compliance of enterprise products and information systems. Collaborating with teams to ensure best security practices and address vulnerabilities.