What you'd actually do

Work independently providing best-in-class delivery and integration services to a wide range of organizations and verticals

Act a trusted advisor to help lead customers to mature outcomes using next generation SIEM, log management, XDR and SOAR features and functionality

Provide knowledge transfer of Falcon LogScale NGSIEM to our customers

Skills

Required

log management/SIEM solutions (e.g., Falcon Next-Gen SIEM, Splunk, Chronicle, Exabeam, QRadar, Sumo Logic, etc.)
SOAR (e.g., CrowdStrike Fusion, Palo Alto XSOAR, Splunk SOAR, Tines, Swimlane etc.)
log analysis, data onboarding, parsing, developing searches, dashboards, and reviewing alerts
common cloud providers and their services such as AWS, GCP, and Azure
supporting traditional IT Security functions such as directory services, authentication, networking, data storage, endpoint security
Python
Powershell
Javascript
YAML
REST API
GO
Cribl
Postman
AI platform for development of integrations, synthesis of security data, assisting with code reviews
documentation and knowledge transfer
customer requirements translation to product feedback
Strong problem-solving, written and oral communication skills in English

Nice to have

pre-sales teams at a InfoSec software or services organization on technical scoping and requirements gathering
post-sales handoffs
Recent (last 3 years) industry certifications with SANS, ISC2, Amazon, Microsoft, Google and other organizations within the Information Security domain
Long term (6 months min) recent experience within a SOC performing analysis and triage of security incidents using a SIEM, Log Management and/or SOAR platform
Extensive applied knowledge and integration experience, with demonstrable use cases with a generative AI platform

What the JD emphasized

2+ years of experience working with log management/SIEM solutions

Intermediate (3+ years) knowledge of common cloud providers and their services such as AWS, GCP, and Azure

Intermediate (3+ years) knowledge of supporting traditional IT Security functions

Experience creating, interpreting and modifying configuration, automation and integration scripts

Experience using an AI platform for development of integrations, synthesis of security data, assisting with code reviews

Extensive applied knowledge and integration experience, with demonstrable use cases with a generative AI platform

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

CrowdStrike is looking for individuals across the industry to add their passion and experience in helping customers realize better security outcomes with log management and advanced data analytics. As a Consultant on the Platform Professional Services team focusing on Falcon Next-Gen SIEM, you’ll spearhead key efforts and become a trusted advisor to customers by answering technical questions, demonstrating Next-Gen SIEM capabilities, and laying out a technical vision of a Next-Gen SIEM roadmap for customers to follow. Working alongside other Falcon engineers and other cross functional teams, you’ll be a critical part of operationalizing Next-Gen SIEM within customer environments. You’ll work with the customer as they discover what Falcon NG-SIEM can do for them, help expand their use cases, and provide feedback timely to CrowdStrike Product Management teams. Simultaneously you’ll develop internal relationships to partner with key stakeholders to influence product enhancements that will meet customer needs.

The position is remote-friendly within Canada with the opportunity for limited travel onsite with customers.

What You'll Do:

Work independently providing best-in-class delivery and integration services to a wide range of organizations and verticals
Act a trusted advisor to help lead customers to mature outcomes using next generation SIEM, log management, XDR and SOAR features and functionality
Provide knowledge transfer of Falcon LogScale NGSIEM to our customers

What You'll Need:

We’re looking for a colleague with a great compassion for taking care of customers and their challenges combined with well-rounded technical, analytical, and customer service skills. We want someone who appreciates the importance of teamwork but will also benefit from your proactive approach to solving challenges and helping external and internal parties.
2+ years of experience working with log management/SIEM solutions (e..g, Falcon Next-Gen SIEM, Splunk, Chronicle, Exabeam, QRadar, Sumo Logic, etc) and SOAR (e.g., CrowdStrike Fusion, Palo Alto XSOAR, Splunk SOAR, Tines, Swimlane etc.) in a Security Operations role, a professional services consulting role or similar capacity
Knowledge of skills and best practices related to log analysis, data onboarding, parsing, developing searches, dashboards, and reviewing alerts
Intermediate (3+ years) knowledge of common cloud providers and their services such as AWS, GCP, and Azure, including hands on configuration of policies and integrations with applications
Intermediate (3+ years) knowledge of supporting traditional IT Security functions such as directory services, authentication, networking, data storage, endpoint security
Experience creating, interpreting and modifying configuration, automation and integration scripts with languages, tools and standards such as Python, Powershell, Javascript, YAML, REST API, GO, Cribl, Postman, etc.
Experience using an AI platform for development of integrations, synthesis of security data, assisting with code reviews
Experience developing documentation and transferring knowledge of deployments to customers and internal stakeholders
Experience translating your knowledge of customer requirements and experiences into feedback for internal product and engineering teams
Occasional travel may be required (<25%)
Strong problem-solving, written and oral communication skills in English

Bonus Points:

Experience working with pre-sales teams at a InfoSec software or services organization on technical scoping and requirements gathering, and with post-sales handoffs
Recent (last 3 years) industry certifications with SANS, ISC2, Amazon, Microsoft, Google and other organizations within the Information Security domain
Long term (6 months min) recent experience within a SOC performing analysis and triage of security incidents using a SIEM, Log Management and/or SOAR platform
Extensive applied knowledge and integration experience, with demonstrable use cases with a generative AI platform

#LI-Remote

#LI-DL1

**Benefits of Working at CrowdStrike: **

Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe

CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.

CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.

If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.

CrowdStrike Canada ULC is committed to equal pay for equal work in its compensation practices. The base salary range for this position in Canada is $90,000 - $135,000 CAD per year + variable/incentive compensation + equity + benefits. A candidate’s salary is determined by various factors including, but not limited to, relevant work experience, skills, certifications and location. This is Canadian-based employment, and it is expected that all employees maintain legal entitlement to work in Canada. Applicants selected to move forward in the hiring process are subject to background checks, including but not limited to criminal record, credit, and/or reference checks.